Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 15, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
242411 7.5 危険 2daybiz - 2daybiz Business Community Script の admin/member_details.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-1651 2012-06-26 16:10 2009-05-16 Show GitHub Exploit DB Packet Storm
242412 6.8 警告 gowondesigns - Leap CMS における任意のコードを実行される脆弱性 CWE-Other
その他 		CVE-2009-1615 2012-06-26 16:10 2009-05-11 Show GitHub Exploit DB Packet Storm
242413 2.6 注意 gowondesigns - Leap CMS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-1614 2012-06-26 16:10 2009-05-11 Show GitHub Exploit DB Packet Storm
242414 6.8 警告 gowondesigns - Leap CMS の leap.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-1613 2012-06-26 16:10 2009-05-11 Show GitHub Exploit DB Packet Storm
242415 9.3 危険 baofeng - Baofeng Storm の MPS.StormPlayer ActiveX コントロールにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-1612 2012-06-26 16:10 2009-05-11 Show GitHub Exploit DB Packet Storm
242416 10 危険 electrasoft - ElectraSoft 32bit FTP におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-1611 2012-06-26 16:10 2009-05-11 Show GitHub Exploit DB Packet Storm
242417 6.8 警告 battleblog - Battle Blog の admin/uploadform.asp における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2009-1609 2012-06-26 16:10 2009-05-11 Show GitHub Exploit DB Packet Storm
242418 9.3 危険 dafolo - Dafolo DafoloControl ActiveX コントロールにおけるスタックベースおよびヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-1606 2012-06-26 16:10 2009-05-11 Show GitHub Exploit DB Packet Storm
242419 9.3 危険 アップル
アドビシステムズ		 - Apple Safari におけるドキュメントオブジェクトへのアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-1600 2012-06-26 16:10 2009-05-11 Show GitHub Exploit DB Packet Storm
242420 7.5 危険 armorlogic - Armorlogic Profense Web Application Firewall における特定の保護メカニズムを回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-1594 2012-06-26 16:10 2009-05-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
268051 8.1 HIGH
Network 		jdf-sass_project jdf-sass jdf-sass is a fork from node-sass, jdf use only. jdf-sass downloads executable resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execution (RCE)… CWE-310
Cryptographic Issues 		CVE-2016-10595 2024-11-21 11:44 2018-06-2 Show GitHub Exploit DB Packet Storm
268052 8.1 HIGH
Network 		ipip_project ipip ipip is a Node.js module to query geolocation information for an IP or domain, based on database by ipip.net. ipip downloads data resources over HTTP, which leaves it vulnerable to MITM attacks. CWE-310
Cryptographic Issues 		CVE-2016-10594 2024-11-21 11:44 2018-06-2 Show GitHub Exploit DB Packet Storm
268053 8.1 HIGH
Network 		jser-stat_project jser-stat jser-stat is a JSer.info stat library. jser-stat downloads data resources over HTTP, which leaves it vulnerable to MITM attacks. CWE-310
Cryptographic Issues 		CVE-2016-10592 2024-11-21 11:44 2018-06-2 Show GitHub Exploit DB Packet Storm
268054 8.1 HIGH
Network 		nwjs nw nw is an installer for nw.js. nw downloads zipped resources over HTTP, It may be possible to cause remote code execution (RCE) by swapping out the requested zip file with an attacker controlled binar… CWE-310
Cryptographic Issues 		CVE-2016-10588 2024-11-21 11:44 2018-06-2 Show GitHub Exploit DB Packet Storm
268055 8.1 HIGH
Network 		wasdk_project wasdk wasdk is a toolkit for creating WebAssembly modules. wasdk downloads binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execution (RCE) by… CWE-310
Cryptographic Issues 		CVE-2016-10587 2024-11-21 11:44 2018-06-2 Show GitHub Exploit DB Packet Storm
268056 8.1 HIGH
Network 		libxl_project libxl libxl provides Node bindings for the libxl library for reading and writing excel (XLS and XLSX) spreadsheets. libxl downloads zipped resources over HTTP, which leaves it vulnerable to MITM attacks. I… CWE-310
Cryptographic Issues 		CVE-2016-10585 2024-11-21 11:44 2018-06-2 Show GitHub Exploit DB Packet Storm
268057 8.1 HIGH
Network 		openlayers closure-util closure-utils is Utilities for Closure Library based projects. closure-utils downloads binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code … CWE-310
Cryptographic Issues 		CVE-2016-10583 2024-11-21 11:44 2018-06-2 Show GitHub Exploit DB Packet Storm
268058 8.1 HIGH
Network 		closurecompiler_project closurecompiler closurecompiler is a Closure Compiler for node.js. closurecompiler downloads binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execution … CWE-310
Cryptographic Issues 		CVE-2016-10582 2024-11-21 11:44 2018-06-2 Show GitHub Exploit DB Packet Storm
268059 8.1 HIGH
Network 		appgyver steroids Steroids is PhoneGap on Steroids, providing native UI elements, multiple WebViews and enhancements for better developer productivity. steroids downloads zipped resources over HTTP, which leaves it vu… CWE-310
Cryptographic Issues 		CVE-2016-10581 2024-11-21 11:44 2018-06-2 Show GitHub Exploit DB Packet Storm
268060 8.1 HIGH
Network 		nodewebkit_project nodewebkit nodewebkit is an installer for node-webkit. nodewebkit downloads zipped resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execution (RCE) by swa… CWE-310
Cryptographic Issues 		CVE-2016-10580 2024-11-21 11:44 2018-06-2 Show GitHub Exploit DB Packet Storm