Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 15, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
242331	2.6	注意	Dokeos	-	Dokeos におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-2006	2012-06-26 16:10	2009-06-8	Show	GitHub Exploit DB Packet Storm

242332	6.8	警告	Dokeos	-	Dokeos におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2009-2005	2012-06-26 16:10	2009-06-8	Show	GitHub Exploit DB Packet Storm

242333	7.5	危険	Dokeos	-	Dokeos の main/mySpace/myStudents.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-2004	2012-06-26 16:10	2009-06-8	Show	GitHub Exploit DB Packet Storm

242334	7.5	危険	ascadnetworks	-	Ascad Networks Password Protector SD における管理アクセス権を取得される脆弱性	CWE-287 不適切な認証	CVE-2009-2003	2012-06-26 16:10	2009-06-8	Show	GitHub Exploit DB Packet Storm

242335	9.3	危険	Andreas Gohr	-	DokuWiki の inc/init.php における任意のローカルファイルをインクルードされる脆弱性	CWE-94 コード・インジェクション	CVE-2009-1960	2012-06-26 16:10	2009-06-7	Show	GitHub Exploit DB Packet Storm

242336	7.5	危険	ahmet donmez	-	WebEyes Guest Book の yorum.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-1950	2012-06-26 16:10	2009-06-5	Show	GitHub Exploit DB Packet Storm

242337	6.8	警告	adaptbb	-	AdaptBB の latestposts.php における任意の PHP コードが実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-1946	2012-06-26 16:10	2009-06-5	Show	GitHub Exploit DB Packet Storm

242338	9.3	危険	aimp	-	AIMP におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-1944	2012-06-26 16:10	2009-06-5	Show	GitHub Exploit DB Packet Storm

242339	3.5	注意	Quiz Module Project	-	Drupal 用の Quiz モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-1942	2012-06-26 16:10	2009-06-3	Show	GitHub Exploit DB Packet Storm

242340	6.8	警告	cpcommerce	-	cpCommerce の _functions.php における任意の PHP コードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2009-1936	2012-06-26 16:10	2009-06-5	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
268251	7.5	HIGH Network	bouncycastle debian	legion-of-the-bouncy-castle-java-crytography-api debian_linux	In the Bouncy Castle JCE Provider version 1.55 and earlier the DSA key pair generator generates a weak private key if used with default values. If the JCA key pair generator is not explicitly initial…	CWE-310 Cryptographic Issues	CVE-2016-1000343	2024-11-21 11:43	2018-06-4	Show	GitHub Exploit DB Packet Storm

268252	7.5	HIGH Network	bouncycastle debian	legion-of-the-bouncy-castle-java-crytography-api debian_linux	In the Bouncy Castle JCE Provider version 1.55 and earlier ECDSA does not fully validate ASN.1 encoding of signature on verification. It is possible to inject extra elements in the sequence making up…	CWE-347 Improper Verification of Cryptographic Signature	CVE-2016-1000342	2024-11-21 11:43	2018-06-4	Show	GitHub Exploit DB Packet Storm

268253	5.9	MEDIUM Network	bouncycastle debian	legion-of-the-bouncy-castle-java-crytography-api debian_linux	In the Bouncy Castle JCE Provider version 1.55 and earlier DSA signature generation is vulnerable to timing attack. Where timings can be closely observed for the generation of signatures, the lack of…	CWE-361 7PK - Time and State	CVE-2016-1000341	2024-11-21 11:43	2018-06-4	Show	GitHub Exploit DB Packet Storm

268254	7.5	HIGH Network	bouncycastle	legion-of-the-bouncy-castle-java-crytography-api	In the Bouncy Castle JCE Provider versions 1.51 to 1.55, a carry propagation bug was introduced in the implementation of squaring for several raw math classes have been fixed (org.bouncycastle.math.r…	CWE-19 Data Processing Errors	CVE-2016-1000340	2024-11-21 11:43	2018-06-4	Show	GitHub Exploit DB Packet Storm

268255	5.3	MEDIUM Network	bouncycastle debian	legion-of-the-bouncy-castle-java-crytography-api debian_linux	In the Bouncy Castle JCE Provider version 1.55 and earlier the primary engine class used for AES was AESFastEngine. Due to the highly table driven approach used in the algorithm it turns out that if …	CWE-310 Cryptographic Issues	CVE-2016-1000339	2024-11-21 11:43	2018-06-4	Show	GitHub Exploit DB Packet Storm

268256	7.5	HIGH Network	bouncycastle redhat canonical netapp	legion-of-the-bouncy-castle-java-crytography-api satellite_capsule ubuntu_linux satellite 7-mode_transition_tool	In Bouncy Castle JCE Provider version 1.55 and earlier the DSA does not fully validate ASN.1 encoding of signature on verification. It is possible to inject extra elements in the sequence making up t…	CWE-347 Improper Verification of Cryptographic Signature	CVE-2016-1000338	2024-11-21 11:43	2018-06-2	Show	GitHub Exploit DB Packet Storm

268257	9.8	CRITICAL Network	jfrog	artifactory	Unrestricted file upload vulnerability in ui/artifact/upload in JFrog Artifactory before 4.16 allows remote attackers to (1) deploy an arbitrary servlet application and execute arbitrary code by uplo…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2016-10036	2024-11-21 11:43	2018-05-2	Show	GitHub Exploit DB Packet Storm

268258	9.8	CRITICAL Network	qualcomm	sd_425_firmware sd_430_firmware sd_450_firmware sd_625_firmware sd_650_firmware sd_652_firmware sd_820a_firmware sd_820_firmware	In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile and Snapdragon Mobile SD 425, SD 430, SD 450, SD 625, SD 650/52, SD 820, and SD 820A, when executing a T…	CWE-200 Information Exposure	CVE-2016-10430	2024-11-21 11:43	2018-04-18	Show	GitHub Exploit DB Packet Storm

268259	7.5	HIGH Network	qualcomm	sd_425_firmware sd_430_firmware sd_450_firmware sd_625_firmware sd_650_firmware sd_652_firmware sd_820_firmware sd_820a_firmware	In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile and Snapdragon Mobile SD 425, SD 430, SD 450, SD 625, SD 650/52, SD 820, and SD 820A, HMAC verification …	CWE-200 Information Exposure	CVE-2016-10428	2024-11-21 11:43	2018-04-18	Show	GitHub Exploit DB Packet Storm

268260	9.8	CRITICAL Network	qualcomm	sd_410_firmware sd_412_firmware sd_425_firmware sd_430_firmware sd_450_firmware sd_617_firmware sd_625_firmware sd_650_firmware sd_652_firmware sd_820a_firmware sd_810_f…	In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile and Snapdragon Mobile SD 410/12, SD 425, SD 430, SD 450, SD 617, SD 625, SD 650/52, SD 810, SD 820, and …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-10426	2024-11-21 11:43	2018-04-18	Show	GitHub Exploit DB Packet Storm