Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 22, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
242791 5 警告 cnr.somee - CNR Hikaye Portal におけるデータベースをダウンロードされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-4765 2012-06-26 16:19 2010-04-13 Show GitHub Exploit DB Packet Storm
242792 9.3 危険 マイクロソフト
アドビシステムズ		 - Adobe Reader におけるユーザに任意のコードを実行させる脆弱性 CWE-94
コード・インジェクション 		CVE-2009-4764 2012-06-26 16:19 2010-04-5 Show GitHub Exploit DB Packet Storm
242793 9.3 危険 dicas - dicas Mpegable Player におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-4758 2012-06-26 16:19 2010-03-29 Show GitHub Exploit DB Packet Storm
242794 9.3 危険 evils-world - BrotherSoft EW-MusicPlayer におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-4757 2012-06-26 16:19 2010-03-29 Show GitHub Exploit DB Packet Storm
242795 9.3 危険 beatport - Beatport Player の TraktorBeatport.exe におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-4756 2012-06-26 16:19 2010-03-29 Show GitHub Exploit DB Packet Storm
242796 7.5 危険 andrew charlton
WordPress.org		 - WordPress の My Category Order プラグインの mycategoryorder.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4748 2012-06-26 16:19 2010-03-26 Show GitHub Exploit DB Packet Storm
242797 4.3 警告 dreamlevels - Dreamlevels DreamPoll の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4746 2012-06-26 16:19 2010-03-26 Show GitHub Exploit DB Packet Storm
242798 7.5 危険 dreamlevels - Dreamlevels DreamPoll の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4745 2012-06-26 16:19 2010-03-26 Show GitHub Exploit DB Packet Storm
242799 4.3 警告 AfterLogic - AfterLogic WebMail Pro の history-storage.aspx におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4743 2012-06-26 16:19 2010-03-26 Show GitHub Exploit DB Packet Storm
242800 7.5 危険 Docebo - Docebo における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4742 2012-06-26 16:19 2010-03-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 22, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
268031 3.7 LOW
Network 		ntp
ntpsec 		ntp
ntpsec 		ntpd in NTP 4.2.8p3 and NTPsec a5fb34b9cc89b92a8fef2f459004865c93bb7f92 relies on the underlying operating system to protect it from requests that impersonate reference clocks. Because reference cloc… CWE-254
 7PK - Security Features 		CVE-2016-1551 2024-11-21 11:46 2017-01-28 Show GitHub Exploit DB Packet Storm
268032 5.3 MEDIUM
Network 		ntp ntp An exploitable vulnerability exists in the message authentication functionality of libntp in ntp 4.2.8p4 and NTPSec a5fb34b9cc89b92a8fef2f459004865c93bb7f92. An attacker can send a series of crafted … CWE-200
Information Exposure 		CVE-2016-1550 2024-11-21 11:46 2017-01-7 Show GitHub Exploit DB Packet Storm
268033 6.5 MEDIUM
Network 		ntp ntp A malicious authenticated peer can create arbitrarily-many ephemeral associations in order to win the clock selection algorithm in ntpd in NTP 4.2.8p4 and earlier and NTPsec 3e160db8dc248a0bcb053b56a… CWE-19
 Data Processing Errors 		CVE-2016-1549 2024-11-21 11:46 2017-01-7 Show GitHub Exploit DB Packet Storm
268034 7.2 HIGH
Network 		ntp ntp An attacker can spoof a packet from a legitimate ntpd server with an origin timestamp that matches the peer->dst timestamp recorded for that server. After making this switch, the client in NTP 4.2.8p… CWE-19
 Data Processing Errors 		CVE-2016-1548 2024-11-21 11:46 2017-01-7 Show GitHub Exploit DB Packet Storm
268035 5.3 MEDIUM
Network 		ntp ntp An off-path attacker can cause a preemptible client association to be demobilized in NTP 4.2.8p4 and earlier and NTPSec a5fb34b9cc89b92a8fef2f459004865c93bb7f92 by sending a crypto NAK packet to a vi… CWE-20
 Improper Input Validation  		CVE-2016-1547 2024-11-21 11:46 2017-01-7 Show GitHub Exploit DB Packet Storm
268036 5.9 MEDIUM
Network 		cisco content_security_management_appliance
email_security_appliance
web_security_appliance 		A vulnerability in the update functionality of Cisco AsyncOS Software for Cisco Email Security Appliance (ESA), Cisco Web Security Appliance (WSA), and Cisco Content Management Security Appliance (SM… CWE-310
Cryptographic Issues 		CVE-2016-1411 2024-11-21 11:46 2016-12-14 Show GitHub Exploit DB Packet Storm
268037 8.1 HIGH
Network 		dbd-mysql_project dbd-mysql There is a vulnerability of type use-after-free affecting DBD::mysql (aka DBD-mysql or the Database Interface (DBI) MySQL driver for Perl) 3.x and 4.x before 4.041 when used with mysql_server_prepare… CWE-416
 Use After Free 		CVE-2016-1251 2024-11-21 11:46 2016-11-30 Show GitHub Exploit DB Packet Storm
268038 7.8 HIGH
Local 		f5
fedoraproject 		nginx
fedora 		The nginx package before 1.6.2-5+deb8u3 on Debian jessie, the nginx packages before 1.4.6-1ubuntu3.6 on Ubuntu 14.04 LTS, before 1.10.0-0ubuntu0.16.04.3 on Ubuntu 16.04 LTS, and before 1.10.1-0ubuntu… CWE-59
Link Following 		CVE-2016-1247 2024-11-21 11:46 2016-11-30 Show GitHub Exploit DB Packet Storm
268039 7.8 HIGH
Local 		vim
debian 		vim
debian_linux 		vim before patch 8.0.0056 does not properly validate values for the 'filetype', 'syntax' and 'keymap' options, which may result in the execution of arbitrary code if a file with a specially crafted m… CWE-20
 Improper Input Validation  		CVE-2016-1248 2024-11-21 11:46 2016-11-24 Show GitHub Exploit DB Packet Storm
268040 6.1 MEDIUM
Network 		cisco email_security_appliance A vulnerability in the display of email messages in the Messages in Quarantine (MIQ) view in Cisco AsyncOS for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote attacker to … CWE-79
Cross-site Scripting 		CVE-2016-1423 2024-11-21 11:46 2016-10-28 Show GitHub Exploit DB Packet Storm