Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 24, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
242771 4.3 警告 BASE - BASE におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4839 2012-06-26 16:19 2010-05-6 Show GitHub Exploit DB Packet Storm
242772 7.5 危険 BASE - BASE の base_ag_common.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4838 2012-06-26 16:19 2010-05-6 Show GitHub Exploit DB Packet Storm
242773 4.3 警告 BASE - Basic Analysis におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4837 2012-06-26 16:19 2010-05-6 Show GitHub Exploit DB Packet Storm
242774 7.2 危険 deslock - DESlock+ の dlpcrypt.sys カーネルドライバにおける権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-4832 2012-06-26 16:19 2010-04-29 Show GitHub Exploit DB Packet Storm
242775 5 警告 8pixel - 8pixel.net Blog におけるデータベースがダウンロードされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-4825 2012-06-26 16:19 2010-04-27 Show GitHub Exploit DB Packet Storm
242776 4.3 警告 cPanel - cPanel の frontend/x3/files/fileop.html におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4823 2012-06-26 16:19 2010-04-27 Show GitHub Exploit DB Packet Storm
242777 5 警告 D-Link Systems, Inc. - D-Link DIR-615 におけるDNS 設定を変更される脆弱性 CWE-287
不適切な認証 		CVE-2009-4821 2012-06-26 16:19 2010-04-27 Show GitHub Exploit DB Packet Storm
242778 5 警告 ASP indir - Angelo-Emlak におけるデータベースをダウンロードされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-4820 2012-06-26 16:19 2010-04-27 Show GitHub Exploit DB Packet Storm
242779 6.8 警告 element-it - Element-IT Ultimate Uploader における任意のコードを実行される脆弱性 CWE-Other
その他 		CVE-2009-4817 2012-06-26 16:19 2010-04-27 Show GitHub Exploit DB Packet Storm
242780 5 警告 MegaLab.it - MegaLab The Uploader の api/download_checker.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-4816 2012-06-26 16:19 2010-04-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 24, 2026, 4:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
267041 5.4 MEDIUM
Network 		ibm connections Cross-site scripting (XSS) vulnerability in the Web UI in IBM Connections 4.0 through CR4, 4.5 through CR5, 5.0 before CR4, and 5.5 before CR1 allows remote authenticated users to inject arbitrary we… CWE-79
Cross-site Scripting 		CVE-2016-2997 2024-11-21 11:49 2016-09-1 Show GitHub Exploit DB Packet Storm
267042 5.4 MEDIUM
Network 		ibm connections Cross-site scripting (XSS) vulnerability in the Web UI in IBM Connections 4.0 through CR4, 4.5 through CR5, 5.0 before CR4, and 5.5 before CR1 allows remote authenticated users to inject arbitrary we… CWE-79
Cross-site Scripting 		CVE-2016-2995 2024-11-21 11:49 2016-09-1 Show GitHub Exploit DB Packet Storm
267043 5.4 MEDIUM
Network 		ibm connections Cross-site scripting (XSS) vulnerability in the Web UI in IBM Connections 5.0 before CR4 and 5.5 before CR1 allows remote authenticated users to inject arbitrary web script or HTML via unspecified ve… CWE-79
Cross-site Scripting 		CVE-2016-2956 2024-11-21 11:49 2016-09-1 Show GitHub Exploit DB Packet Storm
267044 5.4 MEDIUM
Network 		ibm connections Cross-site scripting (XSS) vulnerability in the Web UI in IBM Connections 5.0 before CR4 and 5.5 before CR1 allows remote authenticated users to inject arbitrary web script or HTML via unspecified ve… CWE-79
Cross-site Scripting 		CVE-2016-2954 2024-11-21 11:49 2016-09-1 Show GitHub Exploit DB Packet Storm
267045 6.5 MEDIUM
Network 		netapp clustered_data_ontap NetApp Clustered Data ONTAP before 8.2.4P4 and 8.3.x before 8.3.2P2 allows remote authenticated users to obtain sensitive cluster and tenant information via unspecified vectors. CWE-200
Information Exposure 		CVE-2016-3064 2024-11-21 11:49 2016-09-1 Show GitHub Exploit DB Packet Storm
267046 6.1 MEDIUM
Network 		fortinet fortimanager_firmware
fortianalyzer_firmware 		Cross-site scripting (XSS) vulnerability in the Web-UI in Fortinet FortiManager 5.x before 5.0.12 and 5.2.x before 5.2.6 and FortiAnalyzer 5.x before 5.0.13 and 5.2.x before 5.2.6 allows remote attac… CWE-79
Cross-site Scripting 		CVE-2016-3195 2024-11-21 11:49 2016-08-20 Show GitHub Exploit DB Packet Storm
267047 6.1 MEDIUM
Network 		fortinet fortimanager_firmware
fortianalyzer_firmware 		Cross-site scripting (XSS) vulnerability in the address added page in Fortinet FortiManager 5.x before 5.0.12 and 5.2.x before 5.2.6 and FortiAnalyzer 5.x before 5.0.13 and 5.2.x before 5.2.6 allows … CWE-79
Cross-site Scripting 		CVE-2016-3194 2024-11-21 11:49 2016-08-20 Show GitHub Exploit DB Packet Storm
267048 5.4 MEDIUM
Network 		fortinet fortimanager_firmware
fortianalyzer_firmware 		Cross-site scripting (XSS) vulnerability in the appliance web-application in Fortinet FortiManager 5.x before 5.0.12, 5.2.x before 5.2.6, and 5.4.x before 5.4.1 and FortiAnalyzer 5.x before 5.0.13, 5… CWE-79
Cross-site Scripting 		CVE-2016-3193 2024-11-21 11:49 2016-08-20 Show GitHub Exploit DB Packet Storm
267049 6.1 MEDIUM
Network 		apache openmeetings Cross-site scripting (XSS) vulnerability in the SWF panel in Apache OpenMeetings before 3.1.2 allows remote attackers to inject arbitrary web script or HTML via the swf parameter. CWE-79
Cross-site Scripting 		CVE-2016-3089 2024-11-21 11:49 2016-08-20 Show GitHub Exploit DB Packet Storm
267050 5.3 MEDIUM
Network 		microsoft internet_explorer
edge 		Microsoft Internet Explorer 9 through 11 and Edge allow remote attackers to determine the existence of files via a crafted webpage, aka "Internet Explorer Information Disclosure Vulnerability." CWE-200
Information Exposure 		CVE-2016-3329 2024-11-21 11:49 2016-08-10 Show GitHub Exploit DB Packet Storm