Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 15, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
242331	9.3	危険	elecard	-	Elecard MPEG Player におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-0491	2012-06-26 16:10	2009-02-9	Show	GitHub Exploit DB Packet Storm

242332	9.3	危険	Audacity	-	Audacity の lib-src/allegro/strparse.cpp の String_parse::get_nonspace_quoted 関数におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-0490	2012-06-26 16:10	2009-02-9	Show	GitHub Exploit DB Packet Storm

242333	6.8	警告	armorlogic	-	Profense Web Application Firewall の ajax.html におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2009-0468	2012-06-26 16:10	2009-02-10	Show	GitHub Exploit DB Packet Storm

242334	4.3	警告	armorlogic	-	Profense Web Application Firewall の proxy.html におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-0467	2012-06-26 16:10	2009-02-10	Show	GitHub Exploit DB Packet Storm

242335	5.1	警告	Groone's World	-	Groone GBook の includes/header.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2009-0464	2012-06-26 16:10	2009-02-10	Show	GitHub Exploit DB Packet Storm

242336	6.8	警告	Groone's World	-	Groone GLinks の includes/header.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2009-0463	2012-06-26 16:10	2009-02-10	Show	GitHub Exploit DB Packet Storm

242337	7.5	危険	clicktech	-	ClickTech ClickCart の customer_login_check.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-0462	2012-06-26 16:10	2009-02-10	Show	GitHub Exploit DB Packet Storm

242338	2.6	注意	glFusion	-	glFusion の lib-comment.php の匿名のコメント機能におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-0455	2012-06-26 16:10	2009-02-10	Show	GitHub Exploit DB Packet Storm

242339	7.5	危険	DMXReady	-	DMXReady Online Notebook Manager における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-0454	2012-06-26 16:10	2009-02-10	Show	GitHub Exploit DB Packet Storm

242340	9.3	危険	blazevideo	-	BlazeVideo HDTV Player におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-0450	2012-06-26 16:10	2009-02-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
268331	7.5	HIGH Network	elastic	logstash	Logstash prior to version 2.1.2, the CSV output can be attacked via engineered input that will create malicious formulas in the CSV data.	CWE-88 Argument Injection	CVE-2016-1000222	2024-11-21 11:43	2017-06-17	Show	GitHub Exploit DB Packet Storm

268332	7.5	HIGH Network	elastic	logstash	Logstash prior to version 2.3.4, Elasticsearch Output plugin would log to file HTTP authorization headers which could contain sensitive information.	CWE-200 Information Exposure	CVE-2016-1000221	2024-11-21 11:43	2017-06-17	Show	GitHub Exploit DB Packet Storm

268333	6.1	MEDIUM Network	elastic	kibana	Kibana before 4.5.4 and 4.1.11 are vulnerable to an XSS attack that would allow an attacker to execute arbitrary JavaScript in users' browsers.	CWE-79 Cross-site Scripting	CVE-2016-1000220	2024-11-21 11:43	2017-06-17	Show	GitHub Exploit DB Packet Storm

268334	7.5	HIGH Network	elastic	kibana	Kibana before 4.5.4 and 4.1.11 when a custom output is configured for logging in, cookies and authorization headers could be written to the log files. This information could be used to hijack session…	CWE-285 Improper Authorization	CVE-2016-1000219	2024-11-21 11:43	2017-06-17	Show	GitHub Exploit DB Packet Storm

268335	8.8	HIGH Network	elastic	kibana_reporting	Kibana Reporting plugin version 2.4.0 is vulnerable to a CSRF vulnerability that could allow an attacker to generate superfluous reports whenever an authenticated Kibana user navigates to a specially…	CWE-352 Origin Validation Error	CVE-2016-1000218	2024-11-21 11:43	2017-06-17	Show	GitHub Exploit DB Packet Storm

268336	7.8	HIGH Local	flexerasoftware	flexnet_publisher	In FlexNet Publisher versions before Luton SP1 (11.14.1.1) running FlexNet Publisher Licensing Service on Windows platform, a boundary error related to a named pipe within the FlexNet Publisher Licen…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-10395	2024-11-21 11:43	2017-06-16	Show	GitHub Exploit DB Packet Storm

268337	7.8	HIGH Local	google	android	In all Android releases from CAF using the Linux kernel, a buffer overflow vulnerability exists in a syscall handler.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-10342	2024-11-21 11:43	2017-06-14	Show	GitHub Exploit DB Packet Storm

268338	7.8	HIGH Local	google	android	In all Android releases from CAF using the Linux kernel, 3rd party TEEs have more privilege than intended.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-10341	2024-11-21 11:43	2017-06-14	Show	GitHub Exploit DB Packet Storm

268339	7.8	HIGH Local	google	android	In all Android releases from CAF using the Linux kernel, an integer underflow leading to buffer overflow vulnerability exists in a syscall handler.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-10340	2024-11-21 11:43	2017-06-14	Show	GitHub Exploit DB Packet Storm

268340	7.1	HIGH Local	google	android	In all Android releases from CAF using the Linux kernel, HLOS can overwite secure memory or read contents of the keystore.	CWE-200 Information Exposure	CVE-2016-10339	2024-11-21 11:43	2017-06-14	Show	GitHub Exploit DB Packet Storm