Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 19, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
242771 7.5 危険 campusvirtualcomputrade - Campus Virtual-LMS の news/index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-2148 2012-06-26 16:10 2009-06-22 Show GitHub Exploit DB Packet Storm
242772 7.5 危険 WordPress.org
firestats
edgewall		 - WordPress の FireStats プラグインにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-2144 2012-06-26 16:10 2009-06-13 Show GitHub Exploit DB Packet Storm
242773 7.5 危険 firestats
WordPress.org		 - WordPress の FireStats プラグインの firestats-wordpress.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2009-2143 2012-06-26 16:10 2009-06-13 Show GitHub Exploit DB Packet Storm
242774 9.3 危険 go-oo - Go-oo の cppcanvas/source/mtfrenderer/emfplus.cxx におけるヒープベースの脆弱性 CWE-119
バッファエラー 		CVE-2009-2140 2012-06-26 16:10 2009-09-21 Show GitHub Exploit DB Packet Storm
242775 6.8 警告 4homepages - 4images の global.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-2132 2012-06-26 16:10 2009-06-19 Show GitHub Exploit DB Packet Storm
242776 3.5 注意 4homepages - 4images におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-2131 2012-06-26 16:10 2009-06-19 Show GitHub Exploit DB Packet Storm
242777 5 警告 elvinbts - Elvin における inc/ 配下の login.ei の PHP ソースコードを読まれる脆弱性 CWE-200
情報漏えい 		CVE-2009-2130 2012-06-26 16:10 2009-06-19 Show GitHub Exploit DB Packet Storm
242778 6.8 警告 elvinbts - Elvin の login.php におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2009-2129 2012-06-26 16:10 2009-06-19 Show GitHub Exploit DB Packet Storm
242779 7.5 危険 elvinbts - Elvin の close_bug.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-2128 2012-06-26 16:10 2009-06-19 Show GitHub Exploit DB Packet Storm
242780 4.3 警告 elvinbts - Elvin の show_activity.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-2127 2012-06-26 16:10 2009-06-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
267451 5.9 MEDIUM
Network 		dbd-mysql_project dbd-mysql The DBD::mysql module before 4.039 for Perl, when using server-side prepared statement support, allows attackers to cause a denial of service (out-of-bounds read) via vectors involving an unaligned n… CWE-125
Out-of-bounds Read 		CVE-2016-1249 2024-11-21 11:46 2017-02-17 Show GitHub Exploit DB Packet Storm
267452 7.3 HIGH
Network 		netapp snapcenter_server NetApp SnapCenter Server 1.0 and 1.0P1 allows remote attackers to partially bypass authentication and then list and delete backups via unspecified vectors. CWE-287
Improper Authentication 		CVE-2016-1502 2024-11-21 11:46 2017-02-8 Show GitHub Exploit DB Packet Storm
267453 7.5 HIGH
Network 		dhcpcd_project dhcpcd dhcpcd before 6.10.0 allows remote attackers to cause a denial of service (invalid read and crash) via vectors related to the option length. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-1504 2024-11-21 11:46 2017-02-8 Show GitHub Exploit DB Packet Storm
267454 5.4 MEDIUM
Network 		apache guacamole Cross-site scripting (XSS) vulnerability in the file browser in Guacamole 0.9.8 and 0.9.9, when file transfer is enabled to a location shared by multiple users, allows remote authenticated users to i… CWE-79
Cross-site Scripting 		CVE-2016-1566 2024-11-21 11:46 2017-02-3 Show GitHub Exploit DB Packet Storm
267455 8.8 HIGH
Network 		snort snort Untrusted search path vulnerability in Snort 2.9.7.0-WIN32 allows remote attackers to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse tcapi.dll that is located in the same… CWE-426
 Untrusted Search Path 		CVE-2016-1417 2024-11-21 11:46 2017-01-24 Show GitHub Exploit DB Packet Storm
267456 7.8 HIGH
Local 		idrix truecrypt
veracrypt 		Untrusted search path vulnerability in the installer for TrueCrypt 7.2 and 7.1a, VeraCrypt before 1.17-BETA, and possibly other products allows local users to execute arbitrary code with administrato… CWE-426
 Untrusted Search Path 		CVE-2016-1281 2024-11-21 11:46 2017-01-24 Show GitHub Exploit DB Packet Storm
267457 3.7 LOW
Network 		ntp
ntpsec 		ntp
ntpsec 		ntpd in NTP 4.2.8p3 and NTPsec a5fb34b9cc89b92a8fef2f459004865c93bb7f92 relies on the underlying operating system to protect it from requests that impersonate reference clocks. Because reference cloc… CWE-254
 7PK - Security Features 		CVE-2016-1551 2024-11-21 11:46 2017-01-28 Show GitHub Exploit DB Packet Storm
267458 5.3 MEDIUM
Network 		ntp ntp An exploitable vulnerability exists in the message authentication functionality of libntp in ntp 4.2.8p4 and NTPSec a5fb34b9cc89b92a8fef2f459004865c93bb7f92. An attacker can send a series of crafted … CWE-200
Information Exposure 		CVE-2016-1550 2024-11-21 11:46 2017-01-7 Show GitHub Exploit DB Packet Storm
267459 6.5 MEDIUM
Network 		ntp ntp A malicious authenticated peer can create arbitrarily-many ephemeral associations in order to win the clock selection algorithm in ntpd in NTP 4.2.8p4 and earlier and NTPsec 3e160db8dc248a0bcb053b56a… CWE-19
 Data Processing Errors 		CVE-2016-1549 2024-11-21 11:46 2017-01-7 Show GitHub Exploit DB Packet Storm
267460 7.2 HIGH
Network 		ntp ntp An attacker can spoof a packet from a legitimate ntpd server with an origin timestamp that matches the peer->dst timestamp recorded for that server. After making this switch, the client in NTP 4.2.8p… CWE-19
 Data Processing Errors 		CVE-2016-1548 2024-11-21 11:46 2017-01-7 Show GitHub Exploit DB Packet Storm