Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 14, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
242301	9.3	危険	OptiPNG	-	OptiPNG の lib/pngxtern/gif/gifread.c におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2009-0749	2012-06-26 16:10	2009-03-2	Show	GitHub Exploit DB Packet Storm

242302	7.5	危険	craftsilicon	-	Craft Silicon Banking@Home の Login.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-0741	2012-06-26 16:10	2009-02-25	Show	GitHub Exploit DB Packet Storm

242303	7.5	危険	frankmancuso	-	BlueBird Prelease の login.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-0740	2012-06-26 16:10	2009-02-25	Show	GitHub Exploit DB Packet Storm

242304	7.5	危険	frankmancuso	-	MyNews の login.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-0739	2012-06-26 16:10	2009-02-25	Show	GitHub Exploit DB Packet Storm

242305	7.5	危険	frankmancuso	-	Auth Php の login.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-0738	2012-06-26 16:10	2009-02-25	Show	GitHub Exploit DB Packet Storm

242306	9.3	危険	freearcadescript	-	Free Arcade Script の pages/play.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2009-0731	2012-06-26 16:10	2009-02-24	Show	GitHub Exploit DB Packet Storm

242307	6.8	警告	gigcalendar Mambo Foundation Joomla!	-	Mambo の gigcal コンポーネントにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-0730	2012-06-26 16:10	2009-02-24	Show	GitHub Exploit DB Packet Storm

242308	7.5	危険	gigcalendar Mambo Foundation Joomla!	-	Mambo の gigcal コンポーネントにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-0726	2012-06-26 16:10	2009-02-24	Show	GitHub Exploit DB Packet Storm

242309	7.5	危険	aspthai.net	-	ASPThai.Net Webboard の bview.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-0703	2012-06-26 16:10	2009-02-23	Show	GitHub Exploit DB Packet Storm

242310	6.8	警告	cybershade	-	Cybershade CMS の index.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2009-0701	2012-06-26 16:10	2009-02-23	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 14, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
267191	5.4	MEDIUM Network	cpanel	cpanel	cPanel before 60.0.25 allows self XSS in the tail_ea4_migration.cgi interface (SEC-172).	CWE-79 Cross-site Scripting	CVE-2016-10774	2024-11-21 11:44	2019-08-5	Show	GitHub Exploit DB Packet Storm

267192	8.8	HIGH Network	cpanel	cpanel	cPanel before 60.0.25 allows format-string injection in exception-message handling (SEC-171).	CWE-134 Use of Externally-Controlled Format String	CVE-2016-10773	2024-11-21 11:44	2019-08-5	Show	GitHub Exploit DB Packet Storm

267193	3.3	LOW Local	cpanel	cpanel	cPanel before 60.0.25 does not enforce feature-list restrictions when calling the multilang adminbin (SEC-168).	CWE-254 7PK - Security Features	CVE-2016-10772	2024-11-21 11:44	2019-08-5	Show	GitHub Exploit DB Packet Storm

267194	8.1	HIGH Network	cpanel	cpanel	cPanel before 60.0.25 allows file-create and file-chmod operations during ModSecurity Audit logfile processing (SEC-165).	CWE-20 Improper Input Validation	CVE-2016-10771	2024-11-21 11:44	2019-08-5	Show	GitHub Exploit DB Packet Storm

267195	6.5	MEDIUM Network	cpanel	cpanel	cPanel before 60.0.25 allows arbitrary file-overwrite operations during a Roundcube update (SEC-164).	CWE-20 Improper Input Validation	CVE-2016-10770	2024-11-21 11:44	2019-08-5	Show	GitHub Exploit DB Packet Storm

267196	6.1	MEDIUM Network	cpanel	cpanel	cPanel before 60.0.25 allows an open redirect via /cgi-sys/FormMail-clone.cgi (SEC-162).	CWE-601 Open Redirect	CVE-2016-10769	2024-11-21 11:44	2019-08-5	Show	GitHub Exploit DB Packet Storm

267197	6.5	MEDIUM Network	cpanel	cpanel	cPanel before 60.0.25 allows file-overwrite operations during preparation for MySQL upgrades (SEC-161).	CWE-20 Improper Input Validation	CVE-2016-10768	2024-11-21 11:44	2019-08-5	Show	GitHub Exploit DB Packet Storm

267198	5.4	MEDIUM Network	cpanel	cpanel	cPanel before 60.0.25 allows stored XSS in the WHM Repair Mailbox Permissions interface (SEC-159).	CWE-79 Cross-site Scripting	CVE-2016-10767	2024-11-21 11:44	2019-08-5	Show	GitHub Exploit DB Packet Storm

267199	8.8	HIGH Network	cpanel	cpanel	cPanel before 55.9999.141 allows attackers to bypass Two Factor Authentication via DNS clustering requests (SEC-93).	CWE-287 Improper Authentication	CVE-2016-10826	2024-11-21 11:44	2019-08-2	Show	GitHub Exploit DB Packet Storm

267200	6.5	MEDIUM Network	cpanel	cpanel	In cPanel before 55.9999.141, Scripts/addpop reveals a command-line password in a process list (SEC-75).	CWE-255 Credentials Management	CVE-2016-10821	2024-11-21 11:44	2019-08-2	Show	GitHub Exploit DB Packet Storm