Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 16, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
242221 5 警告 gizmo5 - Linux 上の Gizmo における任意のユーザの資格情報を取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2009-2381 2012-06-26 16:10 2009-07-8 Show GitHub Exploit DB Packet Storm
242222 4.3 警告 4homepages - 4images の includes/functions.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-2380 2012-06-26 16:10 2009-06-15 Show GitHub Exploit DB Packet Storm
242223 6.8 警告 BIGACE - BIGACE Web CMS の public/index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-2379 2012-06-26 16:10 2009-07-1 Show GitHub Exploit DB Packet Storm
242224 4.3 警告 avax-software - AVAX-software Avax Vector ActiveX の Avax Vector ActiveX コントロールにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-2377 2012-06-26 16:10 2009-07-8 Show GitHub Exploit DB Packet Storm
242225 7.5 危険 datachecknh - DataCheck Solutions ForumPal FE および ForumPal の login.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-2366 2012-06-26 16:10 2009-07-8 Show GitHub Exploit DB Packet Storm
242226 7.5 危険 datachecknh - DataCheck Solutions GalleryPal FE の login.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-2365 2012-06-26 16:10 2009-07-8 Show GitHub Exploit DB Packet Storm
242227 9.3 危険 dan cahill - NullLogic Groupware の pgsqlQuery 関数におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-2356 2012-06-26 16:10 2009-07-7 Show GitHub Exploit DB Packet Storm
242228 6.8 警告 eaccelerator - eAccelerator の encoder.php における 任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2009-2353 2012-06-26 16:10 2009-07-7 Show GitHub Exploit DB Packet Storm
242229 7.8 危険 Digium - Asterisk Open Source の IAX2 プロトコル実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2009-2346 2012-06-26 16:10 2009-09-8 Show GitHub Exploit DB Packet Storm
242230 7.5 危険 csphere - ClanSphere における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-2345 2012-06-26 16:10 2009-07-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 16, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
266991 8.8 HIGH
Network 		google chrome The Chrome Web Store inline-installation implementation in the Extensions subsystem in Google Chrome before 52.0.2743.82 does not properly consider object lifetimes during progress observation, which… CWE-416
 Use After Free 		CVE-2016-1708 2024-11-21 11:46 2016-07-24 Show GitHub Exploit DB Packet Storm
266992 6.5 MEDIUM
Network 		google chrome ios/web/web_state/ui/crw_web_controller.mm in Google Chrome before 52.0.2743.82 on iOS does not ensure that an invalid URL is replaced with the about:blank URL, which allows remote attackers to spoof… CWE-20
 Improper Input Validation  		CVE-2016-1707 2024-11-21 11:46 2016-07-24 Show GitHub Exploit DB Packet Storm
266993 9.6 CRITICAL
Network 		google chrome The PPAPI implementation in Google Chrome before 52.0.2743.82 does not validate the origin of IPC messages to the plugin broker process that should have come from the browser process, which allows re… CWE-20
 Improper Input Validation  		CVE-2016-1706 2024-11-21 11:46 2016-07-24 Show GitHub Exploit DB Packet Storm
266994 8.8 HIGH
Network 		google chrome Multiple unspecified vulnerabilities in Google Chrome before 52.0.2743.82 allow attackers to cause a denial of service or possibly have other impact via unknown vectors. NVD-CWE-noinfo
CVE-2016-1705 2024-11-21 11:46 2016-07-24 Show GitHub Exploit DB Packet Storm
266995 5.3 MEDIUM
Network 		cisco ios_xe
ios 		Cisco IOS 12.4 and 15.0 through 15.5 and IOS XE 3.13 through 3.17 allow remote authenticated users to cause a denial of service (device reload) via crafted attributes in a BGP message, aka Bug ID CSC… CWE-399
 Resource Management Errors 		CVE-2016-1459 2024-11-21 11:46 2016-07-18 Show GitHub Exploit DB Packet Storm
266996 8.8 HIGH
Network 		cisco webex_meetings_server Cross-site request forgery (CSRF) vulnerability in Cisco WebEx Meetings Server 2.7 allows remote attackers to hijack the authentication of arbitrary users, aka Bug ID CSCuy92706. CWE-352
 Origin Validation Error 		CVE-2016-1448 2024-11-21 11:46 2016-07-18 Show GitHub Exploit DB Packet Storm
266997 7.8 HIGH
Local 		cisco ios_xr The CLI in Cisco IOS XR 6.x through 6.0.1 allows local users to execute arbitrary OS commands in a privileged context by leveraging unspecified container access, aka Bug ID CSCuz62721. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-1456 2024-11-21 11:46 2016-07-16 Show GitHub Exploit DB Packet Storm
266998 6.5 MEDIUM
Network 		cisco asr_5000
asr_5000_software 		Cisco ASR 5000 devices with software 18.3 through 20.0.0 allow remote attackers to make configuration changes over SNMP by leveraging knowledge of the read-write community, aka Bug ID CSCuz29526. CWE-200
CWE-254
Information Exposure
 7PK - Security Features 		CVE-2016-1452 2024-11-21 11:46 2016-07-16 Show GitHub Exploit DB Packet Storm
266999 6.1 MEDIUM
Network 		cisco meeting_server Cross-site scripting (XSS) vulnerability in the web-based management interface in Cisco Meeting Server (formerly Acano Conferencing Server) 1.7 through 1.9 allows remote attackers to inject arbitrary… CWE-79
Cross-site Scripting 		CVE-2016-1451 2024-11-21 11:46 2016-07-16 Show GitHub Exploit DB Packet Storm
267000 7.5 HIGH
Network 		cisco webex_meetings_server Cisco WebEx Meetings Server 2.6 allows remote authenticated users to conduct command-injection attacks via vectors related to an upload's file type, aka Bug ID CSCuy92715. CWE-20
 Improper Input Validation  		CVE-2016-1450 2024-11-21 11:46 2016-07-16 Show GitHub Exploit DB Packet Storm