Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 20, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
242681 9.3 危険 AOL - AOL の sb.dll における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2009-3658 2012-06-26 16:18 2009-10-9 Show GitHub Exploit DB Packet Storm
242682 6.4 警告 Drupal
316solutions		 - Drupal 用の Boost モジュールにおける新しい webroot ディレクトリを生成される脆弱性 CWE-Other
その他 		CVE-2009-3654 2012-06-26 16:18 2009-09-30 Show GitHub Exploit DB Packet Storm
242683 3.5 注意 Drupal
darren oh		 - Drupal 用モジュールの XML Sitemap の追加リンクインターフェースにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-3653 2012-06-26 16:18 2009-09-30 Show GitHub Exploit DB Packet Storm
242684 4.3 警告 Drupal
david strauss		 - Drupa のモジュールの Dex におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-3650 2012-06-26 16:18 2009-09-30 Show GitHub Exploit DB Packet Storm
242685 3.5 注意 Drupal
apsivam		 - Drupal のモジュールの Service Links におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-3648 2012-06-26 16:18 2009-10-9 Show GitHub Exploit DB Packet Storm
242686 5 警告 dxmsoft - Dxmsoft XM Easy Personal FTP Server におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2009-3643 2012-06-26 16:18 2009-10-9 Show GitHub Exploit DB Packet Storm
242687 7.5 危険 frontrange - FrontRange HEAT の Call Logging 機能における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-3642 2012-06-26 16:18 2009-10-9 Show GitHub Exploit DB Packet Storm
242688 4.3 警告 derrick oswald - HTML-Parser の decode_entities 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2009-3627 2012-06-26 16:18 2009-10-29 Show GitHub Exploit DB Packet Storm
242689 5 警告 freewebscriptz - HUBScript における設定情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2009-3600 2012-06-26 16:18 2009-10-8 Show GitHub Exploit DB Packet Storm
242690 4.3 警告 freewebscriptz - HUBScript の single_winner1.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-3599 2012-06-26 16:18 2009-10-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 20, 2026, 4:14 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
268351 5.4 MEDIUM
Network 		iodata wn-g300r2_firmware
wn-g300r3_firmware
wn-g300r_firmware 		Cross-site scripting (XSS) vulnerability on I-O DATA DEVICE WN-G300R devices with firmware 1.12 and earlier, WN-G300R2 devices with firmware 1.12 and earlier, and WN-G300R3 devices with firmware 1.01… CWE-79
Cross-site Scripting 		CVE-2016-1207 2024-11-21 11:45 2016-05-15 Show GitHub Exploit DB Packet Storm
268352 4.3 MEDIUM
Adjacent 		iodata wn-gdn\/r3_firmware The WPS implementation on I-O DATA DEVICE WN-GDN/R3, WN-GDN/R3-C, WN-GDN/R3-S, and WN-GDN/R3-U devices does not limit PIN guesses, which allows remote attackers to obtain network access via a brute-f… CWE-200
Information Exposure 		CVE-2016-1206 2024-11-21 11:45 2016-05-15 Show GitHub Exploit DB Packet Storm
268353 9.8 CRITICAL
Network 		ninjaforms ninja_forms The Ninja Forms plugin before 2.9.42.1 for WordPress allows remote attackers to conduct PHP object injection attacks via crafted serialized values in a POST request. CWE-20
 Improper Input Validation  		CVE-2016-1209 2024-11-21 11:45 2016-05-15 Show GitHub Exploit DB Packet Storm
268354 7.5 HIGH
Network 		apple
filemaker 		mac_os_x
filemaker 		The server in Apple FileMaker before 14.0.4 on OS X allows remote attackers to read PHP source code via unspecified vectors. CWE-200
Information Exposure 		CVE-2016-1208 2024-11-21 11:45 2016-05-15 Show GitHub Exploit DB Packet Storm
268355 9.8 CRITICAL
Network 		adobe acrobat
acrobat_dc
acrobat_reader_dc
reader 		Adobe Reader and Acrobat before 11.0.16, Acrobat and Acrobat Reader DC Classic before 15.006.30172, and Acrobat and Acrobat Reader DC Continuous before 15.016.20039 on Windows and OS X allow attacker… CWE-284
Improper Access Control 		CVE-2016-1117 2024-11-21 11:45 2016-05-11 Show GitHub Exploit DB Packet Storm
268356 9.8 CRITICAL
Network 		adobe acrobat
acrobat_dc
acrobat_reader_dc
reader 		Adobe Reader and Acrobat before 11.0.16, Acrobat and Acrobat Reader DC Classic before 15.006.30172, and Acrobat and Acrobat Reader DC Continuous before 15.016.20039 on Windows and OS X allow attacker… CWE-200
Information Exposure 		CVE-2016-1112 2024-11-21 11:45 2016-05-11 Show GitHub Exploit DB Packet Storm
268357 7.5 HIGH
Network 		microsoft
adobe 		internet_explorer
edge
flash_player 		Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash libraries in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, has unknown impact and attack… NVD-CWE-noinfo
CVE-2016-1110 2024-11-21 11:45 2016-05-11 Show GitHub Exploit DB Packet Storm
268358 7.5 HIGH
Network 		microsoft
adobe 		internet_explorer
edge
flash_player 		Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash libraries in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, has unknown impact and attack… NVD-CWE-noinfo
CVE-2016-1109 2024-11-21 11:45 2016-05-11 Show GitHub Exploit DB Packet Storm
268359 7.5 HIGH
Network 		microsoft
adobe 		internet_explorer
edge
flash_player 		Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash libraries in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, has unknown impact and attack… NVD-CWE-noinfo
CVE-2016-1108 2024-11-21 11:45 2016-05-11 Show GitHub Exploit DB Packet Storm
268360 7.5 HIGH
Network 		adobe
microsoft 		flash_player
internet_explorer
edge 		Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash libraries in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, has unknown impact and attack… NVD-CWE-noinfo
CVE-2016-1107 2024-11-21 11:45 2016-05-11 Show GitHub Exploit DB Packet Storm