Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 19, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
242641 7.5 危険 aj square - AJ Matrix DNA の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-2779 2012-06-26 16:10 2009-08-17 Show GitHub Exploit DB Packet Storm
242642 4.3 警告 garagesalesjunkie - GarageSales Script の visitor/view.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-2778 2012-06-26 16:10 2009-08-14 Show GitHub Exploit DB Packet Storm
242643 7.5 危険 desiscripts - Desi Short URL Script の index.php における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2009-2642 2012-06-26 16:10 2009-07-28 Show GitHub Exploit DB Packet Storm
242644 9.3 危険 日本エイサー - acerctrl.ocx の Acer LunchApp ActiveX コントロールにおける任意のコマンドを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2009-2627 2012-06-26 16:10 2009-08-19 Show GitHub Exploit DB Packet Storm
242645 5 警告 Firebird Project - Firebird SQL の fbserver.exe の src/remote/server.cpp におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2009-2620 2012-06-26 16:10 2009-07-29 Show GitHub Exploit DB Packet Storm
242646 7.5 危険 datachecknh - DataCheck Solutions V-SpacePal の login.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-2619 2012-06-26 16:10 2009-07-27 Show GitHub Exploit DB Packet Storm
242647 9.3 危険 baofeng - BaoFeng Storm の medialib.dll におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-2617 2012-06-26 16:10 2009-07-27 Show GitHub Exploit DB Packet Storm
242648 7.5 危険 datachecknh - DataCheck Solutions SitePal の z_admin_login.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-2616 2012-06-26 16:10 2009-07-27 Show GitHub Exploit DB Packet Storm
242649 4.3 警告 datachecknh - DataCheck Solutions SitePal におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-2615 2012-06-26 16:10 2009-07-27 Show GitHub Exploit DB Packet Storm
242650 7.5 危険 datachecknh - DataCheck Solutions LinkPal の z_admin_login.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-2614 2012-06-26 16:10 2009-07-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
267221 7.4 HIGH
Local 		canonical
linux 		ubuntu_linux
linux_kernel 		Race condition in arch/x86/mm/tlb.c in the Linux kernel before 4.4.1 allows local users to gain privileges by triggering access to a paging structure by a different CPU. CWE-362
Race Condition 		CVE-2016-2069 2024-11-21 11:47 2016-04-28 Show GitHub Exploit DB Packet Storm
267222 5.9 MEDIUM
Network 		canonical
samba 		ubuntu_linux
samba 		Samba 3.x and 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x before 4.4.2 does not require SMB signing within a DCERPC session over ncacn_np, which allows man-in-the-middle attackers to spoof SMB c… CWE-254
 7PK - Security Features 		CVE-2016-2115 2024-11-21 11:47 2016-04-25 Show GitHub Exploit DB Packet Storm
267223 5.9 MEDIUM
Network 		samba
canonical 		samba
ubuntu_linux 		The SMB1 protocol implementation in Samba 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x before 4.4.2 does not recognize the "server signing = mandatory" setting, which allows man-in-the-middle att… CWE-254
 7PK - Security Features 		CVE-2016-2114 2024-11-21 11:47 2016-04-25 Show GitHub Exploit DB Packet Storm
267224 7.4 HIGH
Network 		samba
canonical 		samba
ubuntu_linux 		Samba 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x before 4.4.2 does not verify X.509 certificates from TLS servers, which allows man-in-the-middle attackers to spoof LDAPS and HTTPS servers and … CWE-310
Cryptographic Issues 		CVE-2016-2113 2024-11-21 11:47 2016-04-25 Show GitHub Exploit DB Packet Storm
267225 5.9 MEDIUM
Network 		samba
canonical 		samba
ubuntu_linux 		The bundled LDAP client library in Samba 3.x and 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x before 4.4.2 does not recognize the "client ldap sasl wrapping" setting, which allows man-in-the-midd… CWE-254
 7PK - Security Features 		CVE-2016-2112 2024-11-21 11:47 2016-04-25 Show GitHub Exploit DB Packet Storm
267226 6.3 MEDIUM
Local 		samba
canonical 		samba
ubuntu_linux 		The NETLOGON service in Samba 3.x and 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x before 4.4.2, when a domain controller is configured, allows remote attackers to spoof the computer name of a se… CWE-254
 7PK - Security Features 		CVE-2016-2111 2024-11-21 11:47 2016-04-25 Show GitHub Exploit DB Packet Storm
267227 5.9 MEDIUM
Network 		samba
canonical 		samba
ubuntu_linux 		The NTLMSSP authentication implementation in Samba 3.x and 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x before 4.4.2 allows man-in-the-middle attackers to perform protocol-downgrade attacks by mo… CWE-254
 7PK - Security Features 		CVE-2016-2110 2024-11-21 11:47 2016-04-25 Show GitHub Exploit DB Packet Storm
267228 6.1 MEDIUM
Network 		blackberry enterprise_server Cross-site scripting (XSS) vulnerability in the Management Console in BlackBerry Enterprise Server (BES) 12 before 12.4.1 allows remote attackers to inject arbitrary web script or HTML via a crafted … CWE-79
Cross-site Scripting 		CVE-2016-1918 2024-11-21 11:47 2016-04-23 Show GitHub Exploit DB Packet Storm
267229 6.1 MEDIUM
Network 		blackberry enterprise_server Cross-site scripting (XSS) vulnerability in the Management Console in BlackBerry Enterprise Server (BES) 12 before 12.4.1 allows remote attackers to inject arbitrary web script or HTML via a crafted … CWE-79
Cross-site Scripting 		CVE-2016-1917 2024-11-21 11:47 2016-04-23 Show GitHub Exploit DB Packet Storm
267230 5.4 MEDIUM
Network 		blackberry enterprise_server Cross-site scripting (XSS) vulnerability in the Management Console in BlackBerry Enterprise Server (BES) 12 before 12.4.1 allows remote authenticated users to inject arbitrary web script or HTML by l… CWE-79
Cross-site Scripting 		CVE-2016-1916 2024-11-21 11:47 2016-04-23 Show GitHub Exploit DB Packet Storm