Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 24, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
242731	7.5	危険	esoftpro	-	Online Guestbook Pro の ogp_show.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-4935	2012-06-26 16:19	2010-07-12	Show	GitHub Exploit DB Packet Storm

242732	4.3	警告	esoftpro	-	Online Photo Pro の index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4934	2012-06-26 16:19	2010-07-12	Show	GitHub Exploit DB Packet Storm

242733	6.8	警告	bestwebsharing	-	Groovy Media Player におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-4931	2012-06-26 16:19	2010-07-12	Show	GitHub Exploit DB Packet Storm

242734	4.3	警告	esoftpro	-	Online Contact Manager および EContact PRO におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4926	2012-06-26 16:19	2010-07-12	Show	GitHub Exploit DB Packet Storm

242735	6.8	警告	creasito	-	Portale e-commerce Creasito における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-4925	2012-06-26 16:19	2010-07-12	Show	GitHub Exploit DB Packet Storm

242736	4.3	警告	dan pascu	-	Dan Pascu python-cjson における特定のクロスサイトスクリプティング攻撃を誘発する脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4924	2012-06-26 16:19	2010-07-2	Show	GitHub Exploit DB Packet Storm

242737	6.8	警告	dootzky	-	oBlog の admin/index.php における総当りパスワード推測攻撃を実行される脆弱性	CWE-287 不適切な認証	CVE-2009-4909	2012-06-26 16:19	2010-06-25	Show	GitHub Exploit DB Packet Storm

242738	4.3	警告	dootzky	-	oBlog におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4908	2012-06-26 16:19	2010-06-25	Show	GitHub Exploit DB Packet Storm

242739	6.8	警告	dootzky	-	oBlog におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2009-4907	2012-06-26 16:19	2010-06-25	Show	GitHub Exploit DB Packet Storm

242740	7.8	危険	シスコシステムズ	-	Cisco ASA 5580 シリーズの DTLS 実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2009-4923	2012-06-26 16:19	2009-04-6	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 24, 2026, 4:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
267071	7.8	HIGH Local	microsoft	live_meeting lync office windows_7 skype_for_business windows_server_2008 word_viewer windows_vista	The Windows font library in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Office 2007 SP3, Office 2010 SP2, Word Viewer, Skype for Business 2016, Lync 2013 SP1, Lync…	CWE-20 Improper Input Validation	CVE-2016-3303	2024-11-21 11:49	2016-08-10	Show	GitHub Exploit DB Packet Storm

267072	7.8	HIGH Local	microsoft	windows_rt_8.1 live_meeting windows_server_2012 lync office windows_7 windows_10 windows_8.1 skype_for_business windows_server_2008 word_viewer windows_vista	The Windows font library in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; Windows 10 Gold, 1511, and 16…	CWE-20 Improper Input Validation	CVE-2016-3301	2024-11-21 11:49	2016-08-10	Show	GitHub Exploit DB Packet Storm

267073	5.3	MEDIUM Network	microsoft	windows_rt_8.1 windows_server_2012 windows_7 windows_10 windows_8.1 windows_server_2008 windows_vista	Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 allow remote attackers to hi…	CWE-284 Improper Access Control	CVE-2016-3299	2024-11-21 11:49	2016-08-10	Show	GitHub Exploit DB Packet Storm

267074	7.5	HIGH Network	microsoft	edge internet_explorer	Microsoft Internet Explorer 11 and Edge allow remote attackers to execute arbitrary code via a crafted web page, aka "Microsoft Browser Memory Corruption Vulnerability," a different vulnerability tha…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-3289	2024-11-21 11:49	2016-08-10	Show	GitHub Exploit DB Packet Storm

267075	7.5	HIGH Network	microsoft	internet_explorer	Microsoft Internet Explorer 11 allows remote attackers to execute arbitrary code via a crafted web page, aka "Internet Explorer Memory Corruption Vulnerability," a different vulnerability than CVE-20…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-3288	2024-11-21 11:49	2016-08-10	Show	GitHub Exploit DB Packet Storm

267076	7.5	HIGH Network	microsoft	windows_server_2008 windows_server_2012 windows_rt windows_10 windows_8.1 windows_7 windows_rt_8.1 windows_vista	Kerberos in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; and Windows 10 Gold, 1511, and 1607 allows ma…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-3237	2024-11-21 11:49	2016-08-10	Show	GitHub Exploit DB Packet Storm

267077	6.2	MEDIUM Local	ibm	tivoli_storage_flashcopy_manager_for_sql_server tivoli_storage_manager_for_databases_data_protection_for_microsoft_sql_server	IBM Tivoli Storage Manager for Databases: Data Protection for Microsoft SQL Server (aka IBM Spectrum Protect for Databases) 6.3 before 6.3.1.7 and 6.4 before 6.4.1.9 and Tivoli Storage FlashCopy Mana…	CWE-200 Information Exposure	CVE-2016-3059	2024-11-21 11:49	2016-08-8	Show	GitHub Exploit DB Packet Storm

267078	5.4	MEDIUM Network	ibm	filenet_workplace	Cross-site scripting (XSS) vulnerability in IBM FileNet Workplace 4.0.2 allows remote authenticated users to inject arbitrary web script or HTML by uploading a file.	CWE-79 Cross-site Scripting	CVE-2016-3054	2024-11-21 11:49	2016-08-8	Show	GitHub Exploit DB Packet Storm

267079	6.5	MEDIUM Network	ibm	connections_portlets	Open redirect vulnerability in the Connections Portlets component 5.x before 5.0.2 for IBM WebSphere Portal allows remote attackers to redirect users to arbitrary web sites and conduct phishing attac…	CWE-284 Improper Access Control	CVE-2016-2989	2024-11-21 11:49	2016-08-8	Show	GitHub Exploit DB Packet Storm

267080	3.7	LOW Network	ibm	websphere_application_server	IBM WebSphere Application Server (WAS) 7.x before 7.0.0.43, 8.0.0.x before 8.0.0.13, 8.5.0.x before 8.5.5.10, 8.5.0.x and 16.0.0.x Liberty before Liberty Fix Pack 16.0.0.3, and 9.0.0.x before 9.0.0.1…	CWE-284 Improper Access Control	CVE-2016-2960	2024-11-21 11:49	2016-08-8	Show	GitHub Exploit DB Packet Storm