Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 18, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
242271	5	警告	ASP indir	-	UranyumSoft Listing Service におけるデータベースをダウンロードされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-4585	2012-06-26 16:19	2010-01-6	Show	GitHub Exploit DB Packet Storm

242272	7.5	危険	dbmasters	-	dB Masters Multimedia Links Directory の admin.php における管理者アクセス権を取得される脆弱性	CWE-287 不適切な認証	CVE-2009-4584	2012-06-26 16:19	2010-01-6	Show	GitHub Exploit DB Packet Storm

242273	4.3	警告	FacileForms Joomla! Mambo Foundation	-	Mambo および Joomla! 用の Facileforms コンポーネントにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4578	2012-06-26 16:19	2010-01-6	Show	GitHub Exploit DB Packet Storm

242274	4.3	警告	Drupal	-	Drupal 用の Randomizer モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4602	2012-06-26 16:19	2009-12-9	Show	GitHub Exploit DB Packet Storm

242275	7.5	危険	cmstactics Joomla!	-	Joomla! の beeheard コンポーネントにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-4576	2012-06-26 16:19	2010-01-6	Show	GitHub Exploit DB Packet Storm

242276	7.5	危険	elkagroup	-	elkagroup Image Gallery における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-4569	2012-06-26 16:19	2010-01-5	Show	GitHub Exploit DB Packet Storm

242277	4.3	警告	Snitz	-	Snitz Forums 2000 におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4554	2012-06-26 16:19	2010-01-4	Show	GitHub Exploit DB Packet Storm

242278	9.3	危険	cdmi	-	A2 Media Player Pro におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-4549	2012-06-26 16:19	2010-01-4	Show	GitHub Exploit DB Packet Storm

242279	4.3	警告	cromosoft	-	Cromosoft Technologies Facil Helpdesk Lite の kbase/kbase.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4544	2012-06-26 16:19	2010-01-4	Show	GitHub Exploit DB Packet Storm

242280	6.8	警告	cromosoft	-	Cromosoft Technologies Facil Helpdesk Lite の index.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2009-4543	2012-06-26 16:19	2010-01-4	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
268661	8.1	HIGH Network	shutterstock	ntfserver	ntfserver is a Network Testing Framework Server. ntfserver downloads binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execution (RCE) by…	CWE-310 Cryptographic Issues	CVE-2016-10650	2024-11-21 11:44	2018-05-30	Show	GitHub Exploit DB Packet Storm

268662	8.1	HIGH Network	broccoli-closure_project	broccoli-closure	broccoli-closure is a Closure compiler plugin for Broccoli. broccoli-closure before 1.3.1 downloads binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause…	CWE-310 Cryptographic Issues	CVE-2016-10635	2024-11-21 11:44	2018-05-30	Show	GitHub Exploit DB Packet Storm

268663	8.1	HIGH Network	scala-bin_project	scala-bin	scala-bin is a binary wrapper for Scala. scala-bin downloads binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execution (RCE) by swappin…	CWE-310 Cryptographic Issues	CVE-2016-10627	2024-11-21 11:44	2018-05-30	Show	GitHub Exploit DB Packet Storm

268664	8.1	HIGH Network	strider-sauce_project	strider-sauce	strider-sauce is Sauce Labs / Selenium support for Strider. strider-sauce downloads zipped resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code exe…	CWE-310 Cryptographic Issues	CVE-2016-10611	2024-11-21 11:44	2018-05-30	Show	GitHub Exploit DB Packet Storm

268665	8.1	HIGH Network	uxebu	webdrvr	webdrvr is a npm wrapper for Selenium Webdriver including Chromedriver / IEDriver / IOSDriver / Ghostdriver. webdrvr downloads binary resources over HTTP, which leaves it vulnerable to MITM attacks. …	CWE-310 Cryptographic Issues	CVE-2016-10601	2024-11-21 11:44	2018-05-30	Show	GitHub Exploit DB Packet Storm

268666	8.1	HIGH Network	interactivebrokers	ibapi	ibapi is an Interactive Brokers API addon for NodeJS. ibapi downloads binary resources over HTTP, which leaves it vulnerable to MITM attacks. Before 2.5.6, it may be possible to cause remote code exe…	CWE-310 Cryptographic Issues	CVE-2016-10593	2024-11-21 11:44	2018-05-30	Show	GitHub Exploit DB Packet Storm

268667	8.1	HIGH Network	prince_project	prince	Prince is a Node API for executing XML/HTML to PDF renderer PrinceXML via prince(1) CLI. prince downloads zipped resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to…	CWE-310 Cryptographic Issues	CVE-2016-10591	2024-11-21 11:44	2018-05-30	Show	GitHub Exploit DB Packet Storm

268668	8.1	HIGH Network	cue-sdk-node_project	cue-sdk-node	cue-sdk-node is a Corsair Cue SDK wrapper for node.js. cue-sdk-node downloads zipped resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execution…	CWE-310 Cryptographic Issues	CVE-2016-10590	2024-11-21 11:44	2018-05-30	Show	GitHub Exploit DB Packet Storm

268669	8.1	HIGH Network	spunjs	selenium-binaries	selenium-binaries downloads Selenium related binaries for your OS. selenium-binaries downloads binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remo…	CWE-310 Cryptographic Issues	CVE-2016-10589	2024-11-21 11:44	2018-05-30	Show	GitHub Exploit DB Packet Storm

268670	8.1	HIGH Network	macacajs	macaca-chromedriver	macaca-chromedriver is a Node.js wrapper for the selenium chromedriver. macaca-chromedriver before 1.0.29 downloads binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may be p…	CWE-310 Cryptographic Issues	CVE-2016-10586	2024-11-21 11:44	2018-05-30	Show	GitHub Exploit DB Packet Storm