Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 21, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
242741 4.3 警告 Clixint Technologies - Image Hosting Script DPI の images.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4252 2012-06-26 16:18 2009-12-9 Show GitHub Exploit DB Packet Storm
242742 9.3 危険 コーレル株式会社 - Jasc Paint Shop Pro におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-4251 2012-06-26 16:18 2009-12-9 Show GitHub Exploit DB Packet Storm
242743 4.3 警告 korn19
CutePHP		 - CutePHP CuteNews および UTF-8 CuteNews におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4250 2012-06-26 16:18 2009-12-9 Show GitHub Exploit DB Packet Storm
242744 2.6 注意 CutePHP - CutePHP CuteNews におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4249 2012-06-26 16:18 2009-12-9 Show GitHub Exploit DB Packet Storm
242745 7.5 危険 Basic-CMS - SweetRice の as/lib/plugins.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-4231 2012-06-26 16:18 2009-12-8 Show GitHub Exploit DB Packet Storm
242746 7.5 危険 Activewebsoftwares - ActiveWebSoftwares Active Bids における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4229 2012-06-26 16:18 2009-12-8 Show GitHub Exploit DB Packet Storm
242747 6.8 警告 Basic-CMS - SweetRice における PHP リモートファイルインクルージョンの脆弱性 CWE-20
不適切な入力確認 		CVE-2009-4224 2012-06-26 16:18 2009-12-7 Show GitHub Exploit DB Packet Storm
242748 7.5 危険 gianni tommasi - KR-Web の adm/krgourl.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2009-4223 2012-06-26 16:18 2009-12-7 Show GitHub Exploit DB Packet Storm
242749 9.3 危険 サン・マイクロシステムズ
disa		 - Solaris x86 プラットフォームの U.S. DISA SRR スクリプトにおける権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-4211 2012-06-26 16:18 2009-12-4 Show GitHub Exploit DB Packet Storm
242750 7.5 危険 cmsnx - Million Dollar Text Links の admin.link.modify.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4206 2012-06-26 16:18 2009-12-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 21, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
267821 6.5 MEDIUM
Network 		novell netiq_idm_servicenow_driver An information leak in the NetIQ IDM ServiceNow Driver before 1.0.0.1 could expose cryptographic attributes to logged-in users. CWE-200
Information Exposure 		CVE-2016-1603 2024-11-21 11:46 2017-03-23 Show GitHub Exploit DB Packet Storm
267822 7.8 HIGH
Local 		suse linux_enterprise_server
linux_enterprise_desktop
suse_linux_enterprise_server 		A code injection in the supportconfig data collection tool in supportutils in SUSE Linux Enterprise Server 12 and 12-SP1 and SUSE Linux Enterprise Desktop 12 and 12-SP1 could be used by local attacke… CWE-94
Code Injection 		CVE-2016-1602 2024-11-21 11:46 2017-03-23 Show GitHub Exploit DB Packet Storm
267823 8.8 HIGH
Network 		netiq access_governance_suite A logged-in user in NetIQ Access Governance Suite 6.0 through 6.4 could escalate privileges to administrator. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-1597 2024-11-21 11:46 2017-03-23 Show GitHub Exploit DB Packet Storm
267824 9.8 CRITICAL
Network 		quagga
debian 		quagga
debian_linux 		It was discovered that the zebra daemon in Quagga before 1.0.20161017 suffered from a stack-based buffer overflow when processing IPv6 Neighbor Discovery messages. The root cause was relying on BUFSI… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-1245 2024-11-21 11:46 2017-02-23 Show GitHub Exploit DB Packet Storm
267825 5.9 MEDIUM
Network 		dbd-mysql_project dbd-mysql The DBD::mysql module before 4.039 for Perl, when using server-side prepared statement support, allows attackers to cause a denial of service (out-of-bounds read) via vectors involving an unaligned n… CWE-125
Out-of-bounds Read 		CVE-2016-1249 2024-11-21 11:46 2017-02-17 Show GitHub Exploit DB Packet Storm
267826 7.3 HIGH
Network 		netapp snapcenter_server NetApp SnapCenter Server 1.0 and 1.0P1 allows remote attackers to partially bypass authentication and then list and delete backups via unspecified vectors. CWE-287
Improper Authentication 		CVE-2016-1502 2024-11-21 11:46 2017-02-8 Show GitHub Exploit DB Packet Storm
267827 7.5 HIGH
Network 		dhcpcd_project dhcpcd dhcpcd before 6.10.0 allows remote attackers to cause a denial of service (invalid read and crash) via vectors related to the option length. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-1504 2024-11-21 11:46 2017-02-8 Show GitHub Exploit DB Packet Storm
267828 5.4 MEDIUM
Network 		apache guacamole Cross-site scripting (XSS) vulnerability in the file browser in Guacamole 0.9.8 and 0.9.9, when file transfer is enabled to a location shared by multiple users, allows remote authenticated users to i… CWE-79
Cross-site Scripting 		CVE-2016-1566 2024-11-21 11:46 2017-02-3 Show GitHub Exploit DB Packet Storm
267829 8.8 HIGH
Network 		snort snort Untrusted search path vulnerability in Snort 2.9.7.0-WIN32 allows remote attackers to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse tcapi.dll that is located in the same… CWE-426
 Untrusted Search Path 		CVE-2016-1417 2024-11-21 11:46 2017-01-24 Show GitHub Exploit DB Packet Storm
267830 7.8 HIGH
Local 		idrix truecrypt
veracrypt 		Untrusted search path vulnerability in the installer for TrueCrypt 7.2 and 7.1a, VeraCrypt before 1.17-BETA, and possibly other products allows local users to execute arbitrary code with administrato… CWE-426
 Untrusted Search Path 		CVE-2016-1281 2024-11-21 11:46 2017-01-24 Show GitHub Exploit DB Packet Storm