Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
242421 7.5 危険 Apache Software Foundation - Apache OFBiz の フォーラム実装におけるコンテンツを改ざんされる脆弱性 - CVE-2006-6588 2012-06-26 15:38 2006-12-15 Show GitHub Exploit DB Packet Storm
242422 6.8 警告 Apache Software Foundation - Apache OFBiz の ecommerce コンポーネントにおけるクロスサイトスクリプティングの脆弱性 - CVE-2006-6587 2012-06-26 15:38 2006-12-15 Show GitHub Exploit DB Packet Storm
242423 7.5 危険 brian drawert - Brian Drawert yaplap の ldap.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-6575 2012-06-26 15:38 2006-12-15 Show GitHub Exploit DB Packet Storm
242424 6 警告 シトリックス・システムズ - Citrix Access Gateway Advanced Edition および Citrix Access Gateway Advanced Edition with AAC におけるデータへのアクセス権を取得される脆弱性 - CVE-2006-6573 2012-06-26 15:38 2006-11-4 Show GitHub Exploit DB Packet Storm
242425 6.5 警告 シトリックス・システムズ - Citrix AAC Option および Access Gateway with Advanced Access Control におけるアクセスポリシーを回避される脆弱性 - CVE-2006-6572 2012-06-26 15:38 2006-11-4 Show GitHub Exploit DB Packet Storm
242426 6.8 警告 genesistrader - GenesisTrader の form.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-6571 2012-06-26 15:38 2006-12-15 Show GitHub Exploit DB Packet Storm
242427 7.5 危険 genesistrader - GenesisTrader の upload.php における任意のファイルをアップロードされる脆弱性 - CVE-2006-6570 2012-06-26 15:38 2006-12-15 Show GitHub Exploit DB Packet Storm
242428 7.8 危険 genesistrader - GenesisTrader の form.php における重要な情報を取得される脆弱性 - CVE-2006-6569 2012-06-26 15:38 2006-12-15 Show GitHub Exploit DB Packet Storm
242429 4 警告 FileZilla - FileZilla Server におけるサービス運用妨害 (DoS) の脆弱性 CWE-DesignError
CVE-2006-6565 2012-06-26 15:38 2006-12-15 Show GitHub Exploit DB Packet Storm
242430 4 警告 FileZilla - FileZilla Server におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2006-6564 2012-06-26 15:38 2006-12-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 26, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
287871 - aladdin
cisco
sonicwall
stonesoft 		safenet_securewire_access_gateway
adaptive_security_appliance
e-class_ssl_vpn
ssl_vpn
stonegate 		Multiple clientless SSL VPN products that run in web browsers, including Stonesoft StoneGate; Cisco ASA; SonicWALL E-Class SSL VPN and SonicWALL SSL VPN; SafeNet SecureWire Access Gateway; Juniper Ne… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2009-2631 2018-10-11 04:41 2009-12-4 Show GitHub Exploit DB Packet Storm
287872 - fetchmail fetchmail socket.c in fetchmail before 6.3.11 does not properly handle a '\0' character in a domain name in the subject's Common Name (CN) field of an X.509 certificate, which allows man-in-the-middle attacker… CWE-310
Cryptographic Issues 		CVE-2009-2666 2018-10-11 04:41 2009-08-8 Show GitHub Exploit DB Packet Storm
287873 - sun jdk
jre 		The audio system in Sun Java Runtime Environment (JRE) in JDK and JRE 6 before Update 15, and JDK and JRE 5.0 before Update 20, does not prevent access to java.lang.System properties by (1) untrusted… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2009-2670 2018-10-11 04:41 2009-08-6 Show GitHub Exploit DB Packet Storm
287874 - sun jdk
jre 		The SOCKS proxy implementation in Sun Java Runtime Environment (JRE) in JDK and JRE 6 before Update 15, and JDK and JRE 5.0 before Update 20, allows remote attackers to discover the username of the a… NVD-CWE-noinfo
CVE-2009-2671 2018-10-11 04:41 2009-08-6 Show GitHub Exploit DB Packet Storm
287875 - sun jdk
jre 		The proxy mechanism implementation in Sun Java Runtime Environment (JRE) in JDK and JRE 6 before Update 15, and JDK and JRE 5.0 before Update 20, does not prevent access to browser cookies by untrust… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2009-2672 2018-10-11 04:41 2009-08-6 Show GitHub Exploit DB Packet Storm
287876 - sun jdk
jre 		The proxy mechanism implementation in Sun Java Runtime Environment (JRE) in JDK and JRE 6 before Update 15, and JDK and JRE 5.0 before Update 20, allows remote attackers to bypass intended access res… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2009-2673 2018-10-11 04:41 2009-08-6 Show GitHub Exploit DB Packet Storm
287877 - sun jdk
jre 		Integer overflow in the unpack200 utility in Sun Java Runtime Environment (JRE) in JDK and JRE 6 before Update 15, and JDK and JRE 5.0 before Update 20, allows context-dependent attackers to gain pri… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2009-2675 2018-10-11 04:41 2009-08-6 Show GitHub Exploit DB Packet Storm
287878 - hp remote_graphics_software Unspecified vulnerability in the Sender module in HP Remote Graphics Software (RGS) 5.1.3 through 5.2.6 allows remote authenticated users to execute arbitrary code via unknown vectors. NVD-CWE-noinfo
CVE-2009-2683 2018-10-11 04:41 2009-09-30 Show GitHub Exploit DB Packet Storm
287879 - hp power_manager Stack-based buffer overflow in the login form in the management web server in HP Power Manager allows remote attackers to execute arbitrary code via the Login variable. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2009-2685 2018-10-11 04:41 2009-11-7 Show GitHub Exploit DB Packet Storm
287880 - hp cm8050_mfp
cm8060_mfp
color_laserjet_3000n
color_laserjet_3600n
color_laserjet_3800n
color_laserjet_4700n
color_laserjet_4730_mfp
color_laserjet_6040_mfp
color_laserjet_cm4730… 		Multiple cross-site scripting (XSS) vulnerabilities in Jetdirect and the Embedded Web Server (EWS) on certain HP LaserJet and Color LaserJet printers, and HP Digital Senders, allow remote attackers t… CWE-79
Cross-site Scripting 		CVE-2009-2684 2018-10-11 04:41 2009-10-13 Show GitHub Exploit DB Packet Storm