Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 21, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
242681 7.5 危険 elkagroup - elkagroup Image Gallery における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4569 2012-06-26 16:19 2010-01-5 Show GitHub Exploit DB Packet Storm
242682 4.3 警告 Snitz - Snitz Forums 2000 におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4554 2012-06-26 16:19 2010-01-4 Show GitHub Exploit DB Packet Storm
242683 9.3 危険 cdmi - A2 Media Player Pro におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-4549 2012-06-26 16:19 2010-01-4 Show GitHub Exploit DB Packet Storm
242684 4.3 警告 cromosoft - Cromosoft Technologies Facil Helpdesk Lite の kbase/kbase.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4544 2012-06-26 16:19 2010-01-4 Show GitHub Exploit DB Packet Storm
242685 6.8 警告 cromosoft - Cromosoft Technologies Facil Helpdesk Lite の index.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2009-4543 2012-06-26 16:19 2010-01-4 Show GitHub Exploit DB Packet Storm
242686 6.8 警告 bpowerhouse - Mini CMS の page.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4540 2012-06-26 16:19 2010-01-4 Show GitHub Exploit DB Packet Storm
242687 4.3 警告 Alkacon Software - OpenCMS OAMP Comments モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4505 2012-06-26 16:19 2010-03-26 Show GitHub Exploit DB Packet Storm
242688 5 警告 Boa - Boa におけるウィンドウのタイトルを変更される脆弱性 CWE-20
不適切な入力確認 		CVE-2009-4496 2012-06-26 16:19 2010-01-13 Show GitHub Exploit DB Packet Storm
242689 5 警告 AOL - AOLserver におけるファイルを上書きされる脆弱性 CWE-20
不適切な入力確認 		CVE-2009-4494 2012-06-26 16:19 2010-01-13 Show GitHub Exploit DB Packet Storm
242690 5 警告 ACME Laboratories - thttpd におけるファイルを上書きされる脆弱性 CWE-20
不適切な入力確認 		CVE-2009-4491 2012-06-26 16:19 2010-01-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 21, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
268331 4.3 MEDIUM
Network 		netgear cm400_firmware
cm600_firmware
d1500_firmware
d500_firmware
dst6501_firmware
jnr1010_firmware
jwnr2000t_firmware
jwnr2010_firmware
plw1000_firmware
plw1010_firmware
wnr50… 		Certain NETGEAR devices are affected by CSRF. This affects CM400 before 2017-01-11, CM600 before 2017-01-11, D1500 before 2017-01-11, D500 before 2017-01-11, DST6501 before 2017-01-11, JNR1010v1 befo… CWE-352
 Origin Validation Error 		CVE-2016-11055 2024-11-21 11:45 2020-04-29 Show GitHub Exploit DB Packet Storm
268332 4.6 MEDIUM
Physics 		google android An issue was discovered on Samsung mobile devices with L(5.0/5.1) (with USB OTG MyFile2014_L_ESS support) software. There is a Factory Reset Protection (FRP) bypass. The Samsung ID is SVE-2015-5068 (… CWE-20
 Improper Input Validation  		CVE-2016-11040 2024-11-21 11:45 2020-04-7 Show GitHub Exploit DB Packet Storm
268333 7.5 HIGH
Network 		google android An issue was discovered on Samsung mobile devices with KK(4.4), L(5.0/5.1), and M(6.0) (AP + CP MDM9x35, or Qualcomm Onechip) software. There is a NULL pointer dereference issue in the IPC socket cod… CWE-476
 NULL Pointer Dereference 		CVE-2016-11039 2024-11-21 11:45 2020-04-7 Show GitHub Exploit DB Packet Storm
268334 9.8 CRITICAL
Network 		google android An issue was discovered on Samsung mobile devices with software through 2016-04-05 (incorporating the Samsung Professional Audio SDK). The Jack audio service doesn't implement access control for shar… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-11038 2024-11-21 11:45 2020-04-7 Show GitHub Exploit DB Packet Storm
268335 9.8 CRITICAL
Network 		google android An issue was discovered on Samsung mobile devices with M(6.0) software. There is a Factory Reset Protection (FRP) bypass. The Samsung ID is SVE-2016-6008 (August 2016). CWE-862
 Missing Authorization 		CVE-2016-11036 2024-11-21 11:45 2020-04-7 Show GitHub Exploit DB Packet Storm
268336 5.5 MEDIUM
Local 		google android An issue was discovered on Samsung mobile devices with software through 2016-05-27 (Exynos AP chipsets). A local graphics user can cause a Kernel Crash via the fb0(DECON) frame buffer interface. The … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-11035 2024-11-21 11:45 2020-04-7 Show GitHub Exploit DB Packet Storm
268337 6.5 MEDIUM
Network 		google android An issue was discovered on Samsung mobile devices with L(5.0/5.1) and M(6.0) software. The decode function in Qjpeg in Qt 5.7 allows attackers to trigger a system crash via a malformed image. The Sam… CWE-755
 Improper Handling of Exceptional Conditions 		CVE-2016-11034 2024-11-21 11:45 2020-04-7 Show GitHub Exploit DB Packet Storm
268338 9.8 CRITICAL
Network 		google android An issue was discovered on Samsung mobile devices with M(6.0) software. There is a heap-based buffer overflow in tlc_server. The Samsung IDs are SVE-2016-7220 and SVE-2016-7225 (November 2016). CWE-787
 Out-of-bounds Write 		CVE-2016-11033 2024-11-21 11:45 2020-04-7 Show GitHub Exploit DB Packet Storm
268339 5.3 MEDIUM
Network 		google android An issue was discovered on Samsung mobile devices with M(6.0) software. An attacker can disable all Sound functionality by broadcasting an unprotected intent. The Samsung IDs are SVE-2016-7179 and SV… CWE-20
 Improper Input Validation  		CVE-2016-11032 2024-11-21 11:45 2020-04-7 Show GitHub Exploit DB Packet Storm
268340 7.5 HIGH
Network 		google android An issue was discovered on Samsung mobile devices with KK(4.4), L(5.0/5.1), and M(6.0) software. AntService allows a system_server crash and reboot. The Samsung ID is SVE-2016-7044 (November 2016). CWE-20
 Improper Input Validation  		CVE-2016-11031 2024-11-21 11:45 2020-04-7 Show GitHub Exploit DB Packet Storm