Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
242551 6.8 警告 inverseflow
ace helpdesk
pmos helpdesk		 - PMOS Help Desk におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-6158 2012-06-26 15:37 2006-11-28 Show GitHub Exploit DB Packet Storm
242552 2.1 注意 cryptocard - CRYPTOCard CRYPTO-Server における資格情報を取得される脆弱性 - CVE-2006-6145 2012-06-26 15:37 2006-11-28 Show GitHub Exploit DB Packet Storm
242553 4.9 警告 アップル - Apple Mac OS X AppleTalk におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-6130 2012-06-26 15:37 2006-11-27 Show GitHub Exploit DB Packet Storm
242554 4.6 警告 アップル - Apple Mac OS X の fatfile_getarch2 における整数オーバーフローの脆弱性 - CVE-2006-6129 2012-06-26 15:37 2006-11-26 Show GitHub Exploit DB Packet Storm
242555 2.1 注意 アップル - Apple Mac OS X におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-6126 2012-06-26 15:37 2006-11-26 Show GitHub Exploit DB Packet Storm
242556 6.8 警告 biba software - SeleniumServer Web Server におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-6124 2012-06-26 15:37 2006-11-26 Show GitHub Exploit DB Packet Storm
242557 7.5 危険 creascripts - CreaScripts Creadirectory の search.asp における SQL インジェクションの脆弱性 - CVE-2006-6083 2012-06-26 15:37 2006-11-24 Show GitHub Exploit DB Packet Storm
242558 2.6 注意 Coppermine Photo Gallery - CPG における任意の変数を設定される脆弱性 - CVE-2006-6123 2012-06-26 15:37 2006-11-26 Show GitHub Exploit DB Packet Storm
242559 9.3 危険 日本エイサー - Acer Notebook の LunchApp.APlunch ActiveX コントロールにおける任意のコマンドを実行される脆弱性 - CVE-2006-6121 2012-06-26 15:37 2006-11-26 Show GitHub Exploit DB Packet Storm
242560 7.5 危険 fipsasp - fipsGallery の index1.asp における SQL インジェクションの脆弱性 - CVE-2006-6117 2012-06-26 15:37 2006-11-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 26, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
288081 - hp deskjet_6840 Cross-site scripting (XSS) vulnerability in refresh_rate.htm in the web interface on the HP Deskjet 6840 printer with firmware XF1M131A allows remote attackers to inject arbitrary web script or HTML … CWE-79
Cross-site Scripting 		CVE-2009-1333 2018-10-11 04:35 2009-04-17 Show GitHub Exploit DB Packet Storm
288082 - sun java Unspecified vulnerability in the Virtual Machine in Java SE Development Kit (JDK) and Java Runtime Environment (JRE) 6 Update 12 and earlier allows remote attackers to access files and execute arbitr… CWE-94
Code Injection 		CVE-2009-1102 2018-10-11 04:34 2009-03-26 Show GitHub Exploit DB Packet Storm
288083 - sun java Unspecified vulnerability in the Java Plug-in in Java SE Development Kit (JDK) and Java Runtime Environment (JRE) 5.0 Update 17 and earlier; 6 Update 12 and earlier; 1.4.2_19 and earlier; and 1.3.1_2… NVD-CWE-noinfo
CVE-2009-1103 2018-10-11 04:34 2009-03-26 Show GitHub Exploit DB Packet Storm
288084 - sun java The Java Plug-in in Java SE Development Kit (JDK) and Java Runtime Environment (JRE) 5.0 Update 17 and earlier; 6 Update 12 and earlier; and 1.4.2_19 and earlier does not prevent Javascript that is l… CWE-16
Configuration 		CVE-2009-1104 2018-10-11 04:34 2009-03-26 Show GitHub Exploit DB Packet Storm
288085 - sun java The Java Plug-in in Java SE Development Kit (JDK) and Java Runtime Environment (JRE) 6 Update 12, 11, and 10 allows user-assisted remote attackers to cause a trusted applet to run in an older JRE ver… NVD-CWE-Other
CVE-2009-1105 2018-10-11 04:34 2009-03-26 Show GitHub Exploit DB Packet Storm
288086 - sun jdk
jre 		The Java Plug-in in Java SE Development Kit (JDK) and Java Runtime Environment (JRE) 6 Update 12, 11, and 10 does not properly parse crossdomain.xml files, which allows remote attackers to bypass int… CWE-20
 Improper Input Validation  		CVE-2009-1106 2018-10-11 04:34 2009-03-26 Show GitHub Exploit DB Packet Storm
288087 - sun java The Java Plug-in in Java SE Development Kit (JDK) and Java Runtime Environment (JRE) 6 Update 12 and earlier, and 5.0 Update 17 and earlier, allows remote attackers to trick a user into trusting a si… NVD-CWE-Other
CVE-2009-1107 2018-10-11 04:34 2009-03-26 Show GitHub Exploit DB Packet Storm
288088 - emc replistor Multiple heap-based buffer overflows in EMC RepliStor 6.2 before SP5 and 6.3 before SP2 allow remote attackers to execute arbitrary code via a crafted message to (1) ctrlservice.exe or (2) rep_srv.ex… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2009-1119 2018-10-11 04:34 2009-04-16 Show GitHub Exploit DB Packet Storm
288089 - hannonhill cascade Hannon Hill Cascade Server 5.7 and other versions allows remote authenticated users to execute arbitrary programs or Java code via a crafted XSLT stylesheet with "extension elements and extension fun… CWE-94
Code Injection 		CVE-2009-1088 2018-10-11 04:33 2009-03-26 Show GitHub Exploit DB Packet Storm
288090 - rapidleech rapidleech Absolute path traversal vulnerability in upload.php in Rapidleech rev.36 and earlier allows remote attackers to read arbitrary files via a base64-encoded absolute path in the filename parameter. CWE-22
Path Traversal 		CVE-2009-1089 2018-10-11 04:33 2009-03-26 Show GitHub Exploit DB Packet Storm