Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 19, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
242531 6.8 警告 cpecreator - cP Creator の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-3330 2012-06-26 16:18 2009-09-23 Show GitHub Exploit DB Packet Storm
242532 9.3 危険 exeter - Winplot におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-3329 2012-06-26 16:18 2009-09-23 Show GitHub Exploit DB Packet Storm
242533 7.5 危険 cmscontrol - CMScontrol Content Management System の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-3326 2012-06-26 16:18 2009-09-23 Show GitHub Exploit DB Packet Storm
242534 7.5 危険 Joomla!
focusdev		 - Joomla! の Focusplus Developments surveymanager コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-3325 2012-06-26 16:18 2009-09-23 Show GitHub Exploit DB Packet Storm
242535 7.5 危険 andres g aragoneses - ProdLer の include/prodler.class.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2009-3324 2012-06-26 16:18 2009-09-23 Show GitHub Exploit DB Packet Storm
242536 7.5 危険 dimofinf - DCI-Designs Dawaween の poems.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-3319 2012-06-26 16:18 2009-09-23 Show GitHub Exploit DB Packet Storm
242537 7.5 危険 breedveld
Joomla!		 - Joomla! の album コンポーネントにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-3318 2012-06-26 16:18 2009-09-23 Show GitHub Exploit DB Packet Storm
242538 7.5 危険 ELITE LADDAERS - Elite Gaming Ladders の ladders.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-3314 2012-06-26 16:18 2009-09-23 Show GitHub Exploit DB Packet Storm
242539 6.5 警告 fmyclone - FMyClone における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-3313 2012-06-26 16:18 2009-09-23 Show GitHub Exploit DB Packet Storm
242540 7.5 危険 cfshopkart - ShopKart の index.cfm における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-3309 2012-06-26 16:18 2009-09-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
268311 8.4 HIGH
Local 		adobe acrobat
acrobat_dc
acrobat_reader
acrobat_reader_dc 		Untrusted search path vulnerability in Adobe Reader and Acrobat before 11.0.15, Acrobat and Acrobat Reader DC Classic before 15.006.30121, and Acrobat and Acrobat Reader DC Continuous before 15.010.2… CWE-20
 Improper Input Validation  		CVE-2016-1008 2024-11-21 11:45 2016-03-9 Show GitHub Exploit DB Packet Storm
268312 9.8 CRITICAL
Network 		adobe acrobat
acrobat_dc
acrobat_reader
acrobat_reader_dc 		Adobe Reader and Acrobat before 11.0.15, Acrobat and Acrobat Reader DC Classic before 15.006.30121, and Acrobat and Acrobat Reader DC Continuous before 15.010.20060 on Windows and OS X allow attacker… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-1007 2024-11-21 11:45 2016-03-9 Show GitHub Exploit DB Packet Storm
268313 8.8 HIGH
Network 		corega cg-wlbargmh_firmware
cg-wlbargnl_firmware 		Cross-site request forgery (CSRF) vulnerability on Corega CG-WLBARGMH and CG-WLBARGNL devices allows remote attackers to hijack the authentication of administrators for requests that perform administ… CWE-352
 Origin Validation Error 		CVE-2016-1158 2024-11-21 11:45 2016-03-4 Show GitHub Exploit DB Packet Storm
268314 6.1 MEDIUM
Network 		log-chat_project log-chat Cross-site scripting (XSS) vulnerability in log_chat.cgi in Script* Log-Chat before 2.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. CWE-79
Cross-site Scripting 		CVE-2016-1157 2024-11-21 11:45 2016-02-23 Show GitHub Exploit DB Packet Storm
268315 5.7 MEDIUM
Network 		linecorp line LINE 4.3.0.724 and earlier on Windows and 4.3.1 and earlier on OS X allows remote authenticated users to cause a denial of service (application crash) via a crafted post that is mishandled when displ… CWE-20
 Improper Input Validation  		CVE-2016-1156 2024-11-21 11:45 2016-02-20 Show GitHub Exploit DB Packet Storm
268316 9.1 CRITICAL
Network 		cuore ec-cube_help_plugin SQL injection vulnerability in the Help plug-in 1.3.5 and earlier in Cuore EC-CUBE allows remote attackers to execute arbitrary SQL commands via unspecified vectors. CWE-89
SQL Injection 		CVE-2016-1154 2024-11-21 11:45 2016-02-20 Show GitHub Exploit DB Packet Storm
268317 6.5 MEDIUM
Network 		cybozu office customapp in Cybozu Office 9.9.0 through 10.3.0 allows remote authenticated users to cause a denial of service via unspecified vectors, a different vulnerability than CVE-2015-8489. CWE-20
 Improper Input Validation  		CVE-2016-1153 2024-11-21 11:45 2016-02-17 Show GitHub Exploit DB Packet Storm
268318 5.4 MEDIUM
Network 		cybozu office Cybozu Office 9.9.0 through 10.3.0 allows remote authenticated users to bypass intended access restrictions, and read or write to plan data, via unspecified vectors, a different vulnerability than CV… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-1152 2024-11-21 11:45 2016-02-17 Show GitHub Exploit DB Packet Storm
268319 8.8 HIGH
Network 		cybozu office Multiple cross-site request forgery (CSRF) vulnerabilities in Cybozu Office 9.9.0 through 10.3.0 allow remote attackers to hijack the authentication of arbitrary users. CWE-352
 Origin Validation Error 		CVE-2016-1151 2024-11-21 11:45 2016-02-17 Show GitHub Exploit DB Packet Storm
268320 6.1 MEDIUM
Network 		cybozu office Cross-site scripting (XSS) vulnerability in Cybozu Office 9.0.0 through 10.3.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than C… CWE-79
Cross-site Scripting 		CVE-2016-1150 2024-11-21 11:45 2016-02-17 Show GitHub Exploit DB Packet Storm