Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 21, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
242771 9.3 危険 Mozilla Foundation
didier ernotte		 - Firefox の infoRSS におけるクロスドメインスクリプティング攻撃を実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2009-4101 2012-06-26 16:18 2009-07-3 Show GitHub Exploit DB Packet Storm
242772 7.5 危険 Joomla!
g4j.laoneo		 - Joomla! 用 Google Calendar GCalendar コンポーネンにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4099 2012-06-26 16:18 2009-11-29 Show GitHub Exploit DB Packet Storm
242773 7.5 危険 companionway - myPhile における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2009-4095 2012-06-26 16:18 2009-11-29 Show GitHub Exploit DB Packet Storm
242774 7.5 危険 designforjoomla
Joomla!		 - Joomla! 用の D4J eZine コンポーネントにおける PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2009-4094 2012-06-26 16:18 2009-11-29 Show GitHub Exploit DB Packet Storm
242775 7.5 危険 e107.org - e107 の検索機能における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4084 2012-06-26 16:18 2009-11-29 Show GitHub Exploit DB Packet Storm
242776 4.3 警告 e107.org - e107 におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4083 2012-06-26 16:18 2009-11-29 Show GitHub Exploit DB Packet Storm
242777 4.4 警告 DAG - dstat における権限を取得される脆弱性 CWE-Other
その他 		CVE-2009-4081 2012-06-26 16:18 2009-11-29 Show GitHub Exploit DB Packet Storm
242778 7.5 危険 GForge Group - GForge における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4070 2012-06-26 16:18 2009-11-24 Show GitHub Exploit DB Packet Storm
242779 9.3 危険 Krzysztof Kowalczyk
ccxvii		 - SumatraPDF で使用される MuPDF の pdf_shade4.c におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-4117 2012-06-26 16:18 2009-11-30 Show GitHub Exploit DB Packet Storm
242780 3.5 注意 CutePHP - CutePHP CuteNews におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-4116 2012-06-26 16:18 2009-11-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 21, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
268001 5.3 MEDIUM
Network 		cisco network_analysis_module_software Cisco Prime Network Analysis Module (NAM) before 6.2(1-b) miscalculates IPv6 payload lengths, which allows remote attackers to cause a denial of service (mond process crash and monitoring outage) via… CWE-20
 Improper Input Validation  		CVE-2016-1370 2024-11-21 11:46 2016-06-3 Show GitHub Exploit DB Packet Storm
268002 7.5 HIGH
Network 		gnu
opensuse
fedoraproject 		glibc
leap
opensuse
fedora 		Stack-based buffer overflow in the glob implementation in GNU C Library (aka glibc) before 2.24, when GLOB_ALTDIRFUNC is used, allows context-dependent attackers to cause a denial of service (crash) … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-1234 2024-11-21 11:46 2016-06-2 Show GitHub Exploit DB Packet Storm
268003 7.5 HIGH
Network 		cisco ios
ios_xe
ios_xr
nx-os 		The Neighbor Discovery (ND) protocol implementation in the IPv6 stack in Cisco IOS XE 2.1 through 3.17S, IOS XR 2.0.0 through 5.3.2, and NX-OS allows remote attackers to cause a denial of service (pa… CWE-20
 Improper Input Validation  		CVE-2016-1409 2024-11-21 11:46 2016-05-30 Show GitHub Exploit DB Packet Storm
268004 7.5 HIGH
Network 		cisco ucs_invicta_c3124sa_appliance Cisco UCS Invicta 4.3, 4.5, and 5.0.1 on Invicta appliances and Invicta Scaling System uses the same hardcoded GnuPG encryption key across different customers' installations, which allows remote atta… CWE-200
Information Exposure 		CVE-2016-1404 2024-11-21 11:46 2016-05-30 Show GitHub Exploit DB Packet Storm
268005 6.5 MEDIUM
Network 		cisco firepower_management_center The web interface in Cisco Firepower Management Center 5.4.0 through 6.0.0.1 allows remote authenticated users to modify pages by placing crafted code in a parameter value, aka Bug ID CSCuy76517. CWE-94
Code Injection 		CVE-2016-1413 2024-11-21 11:46 2016-05-28 Show GitHub Exploit DB Packet Storm
268006 7.5 HIGH
Network 		cisco webex_meeting_center Cisco WebEx Meeting Center Original Release Base allows remote attackers to obtain sensitive information about username validity by (1) attending or (2) hosting a meeting, aka Bug ID CSCux84312. CWE-200
Information Exposure 		CVE-2016-1410 2024-11-21 11:46 2016-05-28 Show GitHub Exploit DB Packet Storm
268007 6.5 MEDIUM
Network 		cisco adaptive_security_appliance_software Cisco Adaptive Security Appliance (ASA) Software 9.0 through 9.5.1 mishandles IPsec error processing, which allows remote authenticated users to cause a denial of service (memory consumption) via cra… CWE-399
 Resource Management Errors 		CVE-2016-1379 2024-11-21 11:46 2016-05-28 Show GitHub Exploit DB Packet Storm
268008 6.5 MEDIUM
Network 		cisco adaptive_security_appliance_software The XML parser in Cisco Adaptive Security Appliance (ASA) Software through 9.5.2 allows remote authenticated users to cause a denial of service (instability, memory consumption, or device reload) by … CWE-119
CWE-399
Incorrect Access of Indexable Resource ('Range Error') 
 Resource Management Errors 		CVE-2016-1385 2024-11-21 11:46 2016-05-27 Show GitHub Exploit DB Packet Storm
268009 7.5 HIGH
Network 		cisco ios_xr Cisco IOS XR through 5.3.2 mishandles Local Packet Transport Services (LPTS) flow-base entries, which allows remote attackers to cause a denial of service (session drop) by making many connection att… CWE-20
 Improper Input Validation  		CVE-2016-1407 2024-11-21 11:46 2016-05-25 Show GitHub Exploit DB Packet Storm
268010 8.8 HIGH
Network 		cisco evolved_programmable_network_manager
prime_infrastructure 		The API web interface in Cisco Prime Infrastructure before 3.1 and Cisco Evolved Programmable Network Manager before 1.2.4 allows remote authenticated users to bypass intended RBAC restrictions and o… CWE-284
Improper Access Control 		CVE-2016-1406 2024-11-21 11:46 2016-05-25 Show GitHub Exploit DB Packet Storm