Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 22, 2026, 4:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
242761 5 警告 GNU Project - GNU C Library の strfmon 実装における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2009-4880 2012-06-26 16:19 2010-06-1 Show GitHub Exploit DB Packet Storm
242762 5 警告 frederico caldeira knabben - FCKeditor.Java におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2009-4875 2012-06-26 16:19 2010-05-26 Show GitHub Exploit DB Packet Storm
242763 7.5 危険 abushhab - Alwasel における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4862 2012-06-26 16:19 2010-05-11 Show GitHub Exploit DB Packet Storm
242764 7.5 危険 demarque - Typing Pal の demo.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4860 2012-06-26 16:19 2010-05-11 Show GitHub Exploit DB Packet Storm
242765 4.3 警告 ecomstudio - PHP Photo Vote の login.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4857 2012-06-26 16:19 2010-05-11 Show GitHub Exploit DB Packet Storm
242766 4.3 警告 ecomstudio - PHP Easy Shopping Cart の subitems.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4856 2012-06-26 16:19 2010-05-11 Show GitHub Exploit DB Packet Storm
242767 4.3 警告 festic - SemanticScuttle におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4852 2012-06-26 16:19 2010-05-7 Show GitHub Exploit DB Packet Storm
242768 9.3 危険 awingsoft - Awingsoft Awakening Winds3D Viewer プラグインにおける任意のプログラムを実行される脆弱性 CWE-119
バッファエラー 		CVE-2009-4850 2012-06-26 16:19 2010-05-7 Show GitHub Exploit DB Packet Storm
242769 4 警告 deliantra - Deliantra Server におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2009-4847 2012-06-26 16:19 2010-05-7 Show GitHub Exploit DB Packet Storm
242770 6.8 警告 deliantra - Deliantra Server におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-4846 2012-06-26 16:19 2010-05-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 22, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
268091 7.8 HIGH
Local 		debian
fedoraproject
perl
opensuse
apache 		debian_linux
fedora
perl
leap
spamassassin 		(1) cpan/Archive-Tar/bin/ptar, (2) cpan/Archive-Tar/bin/ptardiff, (3) cpan/Archive-Tar/bin/ptargrep, (4) cpan/CPAN/scripts/cpan, (5) cpan/Digest-SHA/shasum, (6) cpan/Encode/bin/enc2xs, (7) cpan/Encod… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-1238 2024-11-21 11:46 2016-08-2 Show GitHub Exploit DB Packet Storm
268092 7.8 HIGH
Local 		novell filr Novell Filr 1.2 before Hot Patch 6 and 2.0 before Hot Patch 2 uses world-writable permissions for /etc/profile.d/vainit.sh, which allows local users to gain privileges by replacing this file's conten… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-1611 2024-11-21 11:46 2016-08-1 Show GitHub Exploit DB Packet Storm
268093 7.5 HIGH
Network 		novell filr Directory traversal vulnerability in the email-template feature in Novell Filr before 1.2 Security Update 3 and 2.0 before Security Update 2 allows remote attackers to bypass intended access restrict… CWE-22
Path Traversal 		CVE-2016-1610 2024-11-21 11:46 2016-08-1 Show GitHub Exploit DB Packet Storm
268094 5.4 MEDIUM
Network 		novell filr Multiple cross-site scripting (XSS) vulnerabilities in Novell Filr before 1.2 Security Update 3 and 2.0 before Security Update 2 allow remote authenticated users to inject arbitrary web script or HTM… CWE-79
Cross-site Scripting 		CVE-2016-1609 2024-11-21 11:46 2016-08-1 Show GitHub Exploit DB Packet Storm
268095 8.8 HIGH
Network 		novell filr vaconfig/time in Novell Filr before 1.2 Security Update 3 and 2.0 before Security Update 2 allows remote authenticated users to execute arbitrary commands via shell metacharacters in the ntpServer pa… CWE-284
Improper Access Control 		CVE-2016-1608 2024-11-21 11:46 2016-08-1 Show GitHub Exploit DB Packet Storm
268096 7.2 HIGH
Network 		novell filr Multiple cross-site request forgery (CSRF) vulnerabilities in the administrative interface in Novell Filr before 2.0 Security Update 2 allow remote attackers to hijack the authentication of administr… CWE-352
 Origin Validation Error 		CVE-2016-1607 2024-11-21 11:46 2016-08-1 Show GitHub Exploit DB Packet Storm
268097 6.5 MEDIUM
Network 		netiq sentinel Directory traversal vulnerability in the ReportViewServlet servlet in the server in NetIQ Sentinel 7.4.x before 7.4.2 allows remote attackers to read arbitrary files via a PREVIEW value for the fileT… CWE-22
Path Traversal 		CVE-2016-1605 2024-11-21 11:46 2016-08-1 Show GitHub Exploit DB Packet Storm
268098 7.5 HIGH
Network 		cisco asyncos Cisco AsyncOS on Email Security Appliance (ESA) devices through 9.7.0-125 allows remote attackers to bypass malware detection via a crafted attachment in an e-mail message, aka Bug ID CSCuz14932. CWE-20
 Improper Input Validation  		CVE-2016-1461 2024-11-21 11:46 2016-08-1 Show GitHub Exploit DB Packet Storm
268099 6.5 MEDIUM
Adjacent 		cisco videoscape_session_resource_manager Cisco Videoscape Session Resource Manager (VSRM) allows remote attackers to cause a denial of service (device restart) by sending a traffic flood to upstream devices, aka Bug ID CSCva01813. CWE-399
 Resource Management Errors 		CVE-2016-1467 2024-11-21 11:46 2016-07-28 Show GitHub Exploit DB Packet Storm
268100 6.5 MEDIUM
Adjacent 		cisco nx-os Cisco Nexus 1000v Application Virtual Switch (AVS) devices before 5.2(1)SV3(1.5i) allow remote attackers to cause a denial of service (ESXi hypervisor crash and purple screen) via a crafted Cisco Dis… CWE-399
 Resource Management Errors 		CVE-2016-1465 2024-11-21 11:46 2016-07-28 Show GitHub Exploit DB Packet Storm