Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 19, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
242611	4.3	警告	elkagroup	-	elka CMS の Search 機能におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-2930	2012-06-26 16:10	2009-08-21	Show	GitHub Exploit DB Packet Storm

242612	7.5	危険	digitalspinners	-	DigitalSpinners DS CMS の DetailFile.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-2927	2012-06-26 16:10	2009-08-21	Show	GitHub Exploit DB Packet Storm

242613	7.8	危険	djcalendar	-	DJCalendar の DJcalendar.cgi におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2009-2925	2012-06-26 16:10	2009-08-21	Show	GitHub Exploit DB Packet Storm

242614	5	警告	bitmixsoft	-	BitmixSoft PHP-Lance におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2009-2923	2012-06-26 16:10	2009-08-21	Show	GitHub Exploit DB Packet Storm

242615	4.3	警告	elvinbts	-	Elvin におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-2920	2012-06-26 16:10	2009-08-21	Show	GitHub Exploit DB Packet Storm

242616	3.5	注意	BoonEx	-	Boonex Orca におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-2919	2012-06-26 16:10	2009-08-21	Show	GitHub Exploit DB Packet Storm

242617	9.3	危険	2kgames	-	2K Games Vietcong の logs.dl の CNS_AddTxt 関数におけるフォーマットストリングの脆弱性	CWE-134 書式文字列の問題	CVE-2009-2916	2012-06-26 16:10	2009-08-21	Show	GitHub Exploit DB Packet Storm

242618	7.5	危険	2fly	-	2FLY Gift Delivery System の 2fly_gift.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-2915	2012-06-26 16:10	2009-08-21	Show	GitHub Exploit DB Packet Storm

242619	7.5	危険	clone2009	-	Ebay Clone における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-2894	2012-06-26 16:10	2009-08-20	Show	GitHub Exploit DB Packet Storm

242620	6.8	警告	arabless	-	SaphpLesson の admin/login.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-2883	2012-06-26 16:10	2009-08-20	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
267171	7.8	HIGH Local	apple	tvos iphone_os mac_os_x watchos	The Disk Images subsystem in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1 allows attackers to execute arbitrary code in a privileged context or cause a den…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-1808	2024-11-21 11:47	2016-05-20	Show	GitHub Exploit DB Packet Storm

267172	5.1	MEDIUM Local	apple	mac_os_x watchos tvos iphone_os	Race condition in the Disk Images subsystem in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1 allows local users to obtain sensitive information from kernel …	CWE-362 Race Condition	CVE-2016-1807	2024-11-21 11:47	2016-05-20	Show	GitHub Exploit DB Packet Storm

267173	7.8	HIGH Local	apple	mac_os_x	Crash Reporter in Apple OS X before 10.11.5 allows attackers to execute arbitrary code in a privileged context via a crafted app.	CWE-284 Improper Access Control	CVE-2016-1806	2024-11-21 11:47	2016-05-20	Show	GitHub Exploit DB Packet Storm

267174	7.8	HIGH Local	apple	mac_os_x	CoreStorage in Apple OS X before 10.11.5 allows attackers to execute arbitrary code in a privileged context via a crafted app.	CWE-284 Improper Access Control	CVE-2016-1805	2024-11-21 11:47	2016-05-20	Show	GitHub Exploit DB Packet Storm

267175	7.8	HIGH Local	apple	mac_os_x	The Multi-Touch subsystem in Apple OS X before 10.11.5 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-1804	2024-11-21 11:47	2016-05-20	Show	GitHub Exploit DB Packet Storm

267176	7.8	HIGH Local	apple	watchos iphone_os mac_os_x tvos	CoreCapture in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1 allows attackers to execute arbitrary code in a privileged context or cause a denial of service…	CWE-476 NULL Pointer Dereference	CVE-2016-1803	2024-11-21 11:47	2016-05-20	Show	GitHub Exploit DB Packet Storm

267177	5.5	MEDIUM Local	apple	iphone_os mac_os_x tvos watchos	CCCrypt in CommonCrypto in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1 mishandles return values during key-length calculations, which allows attackers to …	CWE-200 Information Exposure	CVE-2016-1802	2024-11-21 11:47	2016-05-20	Show	GitHub Exploit DB Packet Storm

267178	7.5	HIGH Network	apple	mac_os_x iphone_os tvos	The CFNetwork Proxies subsystem in Apple iOS before 9.3.2, OS X before 10.11.5, and tvOS before 9.2.1 mishandles URLs in http and https requests, which allows remote attackers to obtain sensitive inf…	CWE-200 Information Exposure	CVE-2016-1801	2024-11-21 11:47	2016-05-20	Show	GitHub Exploit DB Packet Storm

267179	8.8	HIGH Network	apple	mac_os_x	Captive Network Assistant in Apple OS X before 10.11.5 mishandles a custom URL scheme, which allows user-assisted remote attackers to execute arbitrary code via unspecified vectors.	CWE-20 Improper Input Validation	CVE-2016-1800	2024-11-21 11:47	2016-05-20	Show	GitHub Exploit DB Packet Storm

267180	7.8	HIGH Local	apple	mac_os_x	Audio in Apple OS X before 10.11.5 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-1799	2024-11-21 11:47	2016-05-20	Show	GitHub Exploit DB Packet Storm