Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 15, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
242441 7.5 危険 boxalino - Boxalino の client/desktop/default.htm におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-1479 2012-06-26 16:10 2009-10-22 Show GitHub Exploit DB Packet Storm
242442 10 危険 aten - ATEN KH1516i IP KVM スイッチ上の https Web インターフェースにおける https セッションを解読される脆弱性 CWE-310
暗号の問題 		CVE-2009-1477 2012-06-26 16:10 2009-05-27 Show GitHub Exploit DB Packet Storm
242443 7.2 危険 darren reed - Darren Reed IPFilter の lib/load_http.c におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-1476 2012-06-26 16:10 2009-05-26 Show GitHub Exploit DB Packet Storm
242444 7.6 危険 aten - ATEN KH1516i IP KVM スイッチにおけるクッキーを取得される脆弱性 CWE-310
暗号の問題 		CVE-2009-1474 2012-06-26 16:10 2009-05-27 Show GitHub Exploit DB Packet Storm
242445 10 危険 aten - ATEN KH1516i IP KVM スイッチの Windows クライアントプログラムにおける中間者攻撃を実行される脆弱性 CWE-310
暗号の問題 		CVE-2009-1473 2012-06-26 16:10 2009-05-27 Show GitHub Exploit DB Packet Storm
242446 10 危険 aten - ATEN KH1516i IP KVM スイッチの Java クライアントプログラムにおけるスイッチへ接続されているマシンへのアクセス権を取得される脆弱性 CWE-310
暗号の問題 		CVE-2009-1472 2012-06-26 16:10 2009-05-27 Show GitHub Exploit DB Packet Storm
242447 4.3 警告 evolution-extreme - Nuke Evolution Xtreme の player.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-1457 2012-06-26 16:10 2009-04-28 Show GitHub Exploit DB Packet Storm
242448 6.8 警告 Andrew Simpson - WebCollab におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2009-1455 2012-06-26 16:10 2009-04-28 Show GitHub Exploit DB Packet Storm
242449 4.3 警告 Andrew Simpson - WebCollab の tasks.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-1454 2012-06-26 16:10 2009-04-28 Show GitHub Exploit DB Packet Storm
242450 6.8 警告 anoochit chalothorn - Tiny Blogr の class.eport.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-1453 2012-06-26 16:10 2009-04-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
267381 8.8 HIGH
Network 		ideracorp webyog_monyog_ultimate A vulnerability, which was classified as critical, was found in MONyog Ultimate 6.63. This affects an unknown part of the component Cookie Handler. The manipulation of the argument HasServerEdit/IsAd… CWE-565
 Reliance on Cookies without Validation and Integrity Checking 		CVE-2016-15002 2024-11-21 11:45 2022-06-10 Show GitHub Exploit DB Packet Storm
267382 7.4 HIGH
Network 		oauth-ruby_project oauth-ruby lib/oauth/consumer.rb in the oauth-ruby gem through 0.5.4 for Ruby does not verify server X.509 certificates if a certificate bundle cannot be found, which allows man-in-the-middle attackers to spoof… CWE-295
Improper Certificate Validation  		CVE-2016-11086 2024-11-21 11:45 2020-09-25 Show GitHub Exploit DB Packet Storm
267383 6.5 MEDIUM
Network 		expresstech quiz_and_survey_master php/qmn_options_questions_tab.php in the quiz-master-next plugin before 4.7.9 for WordPress allows CSRF, with resultant stored XSS, via the question_name parameter because js/admin_question.js mishan… CWE-352
CWE-79
 Origin Validation Error
Cross-site Scripting 		CVE-2016-11085 2024-11-21 11:45 2020-08-17 Show GitHub Exploit DB Packet Storm
267384 6.1 MEDIUM
Network 		mattermost mattermost_server An issue was discovered in Mattermost Server before 2.1.0. It allows XSS via CSRF. CWE-352
 Origin Validation Error 		CVE-2016-11084 2024-11-21 11:45 2020-06-20 Show GitHub Exploit DB Packet Storm
267385 6.1 MEDIUM
Network 		mattermost mattermost_server An issue was discovered in Mattermost Server before 2.2.0. It allows XSS because it configures files to be opened in a browser window. CWE-79
Cross-site Scripting 		CVE-2016-11083 2024-11-21 11:45 2020-06-20 Show GitHub Exploit DB Packet Storm
267386 6.1 MEDIUM
Network 		mattermost mattermost_server An issue was discovered in Mattermost Server before 2.2.0. It allows XSS via a crafted link. CWE-79
Cross-site Scripting 		CVE-2016-11082 2024-11-21 11:45 2020-06-20 Show GitHub Exploit DB Packet Storm
267387 4.3 MEDIUM
Network 		mattermost mattermost_server An issue was discovered in Mattermost Server before 2.2.0. It allows unintended access to information stored by a web browser. CWE-200
Information Exposure 		CVE-2016-11081 2024-11-21 11:45 2020-06-20 Show GitHub Exploit DB Packet Storm
267388 4.3 MEDIUM
Network 		mattermost mattermost_server An issue was discovered in Mattermost Server before 3.0.0. It offers superfluous APIs for a Team Administrator to view account details. CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2016-11080 2024-11-21 11:45 2020-06-20 Show GitHub Exploit DB Packet Storm
267389 6.1 MEDIUM
Network 		mattermost mattermost_server An issue was discovered in Mattermost Server before 3.0.0. It allows XSS via a redirect URL. CWE-79
Cross-site Scripting 		CVE-2016-11079 2024-11-21 11:45 2020-06-20 Show GitHub Exploit DB Packet Storm
267390 6.5 MEDIUM
Network 		mattermost mattermost_server An issue was discovered in Mattermost Server before 3.0.0. It potentially allows attackers to obtain sensitive information (credential fields within config.json) via the System Console UI. CWE-200
Information Exposure 		CVE-2016-11078 2024-11-21 11:45 2020-06-20 Show GitHub Exploit DB Packet Storm