Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 23, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
242881 7.5 危険 deluxebb - DeluxeBB における管理アクセス権を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-4465 2012-06-26 16:18 2009-12-30 Show GitHub Exploit DB Packet Storm
242882 4.3 警告 Activewebsoftwares - Active Business Directory の searchadvance.asp におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4464 2012-06-26 16:18 2009-12-30 Show GitHub Exploit DB Packet Storm
242883 4.3 警告 FlatPress - FlatPress におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4461 2012-06-26 16:18 2009-12-30 Show GitHub Exploit DB Packet Storm
242884 4.3 警告 FreePBX - FreePBX におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4458 2012-06-26 16:18 2009-12-29 Show GitHub Exploit DB Packet Storm
242885 7.5 危険 greendesktiny - Green Desktiny の news_detail.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4456 2012-06-26 16:18 2009-12-29 Show GitHub Exploit DB Packet Storm
242886 7.5 危険 Activewebsoftwares - Active Auction House における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4437 2012-06-26 16:18 2009-12-28 Show GitHub Exploit DB Packet Storm
242887 7.5 危険 Activewebsoftwares - Active Web Softwares eWebquiz における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4436 2012-06-26 16:18 2009-12-28 Show GitHub Exploit DB Packet Storm
242888 6.8 警告 compmaster.prv.pl - F3Site 2009 におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-4435 2012-06-26 16:18 2009-12-28 Show GitHub Exploit DB Packet Storm
242889 7.5 危険 codemight - CodeMight VideoCMS の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4432 2012-06-26 16:18 2009-12-28 Show GitHub Exploit DB Packet Storm
242890 7.5 危険 anything-digital
Joomla!		 - Joomla! の Anything Digital Development JCal Pro コンポーネントにおける PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2009-4431 2012-06-26 16:18 2009-12-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
267321 7.5 HIGH
Network 		oracle
isc
hp 		linux
vm_server
bind
hp-ux
solaris 		buffer.c in named in ISC BIND 9 before 9.9.9-P3, 9.10.x before 9.10.4-P3, and 9.11.x before 9.11.0rc3 does not properly construct responses, which allows remote attackers to cause a denial of service… CWE-20
 Improper Input Validation  		CVE-2016-2776 2024-11-21 11:48 2016-09-28 Show GitHub Exploit DB Packet Storm
267322 6.5 MEDIUM
Network 		mozilla firefox The mozilla::net::IsValidReferrerPolicy function in Mozilla Firefox before 49.0 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a Content Security … CWE-125
Out-of-bounds Read 		CVE-2016-2827 2024-11-21 11:48 2016-09-23 Show GitHub Exploit DB Packet Storm
267323 8.8 HIGH
Network 		ibm qradar_security_information_and_event_manager IBM Security QRadar SIEM 7.1.x and 7.2.x before 7.2.7 allows remote authenticated users to execute arbitrary OS commands as root via unspecified vectors. CWE-77
Command Injection 		CVE-2016-2875 2024-11-21 11:48 2016-08-8 Show GitHub Exploit DB Packet Storm
267324 7.8 HIGH
Local 		google android The Qualcomm GPU driver in Android before 2016-08-05 on Nexus 5, 5X, 6, 6P, and 7 (2013) devices allows attackers to gain privileges via a crafted application, aka Android internal bug 28026365 and Q… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-2504 2024-11-21 11:48 2016-08-6 Show GitHub Exploit DB Packet Storm
267325 7.3 HIGH
Network 		google android services/core/java/com/android/server/pm/PackageManagerService.java in the framework APIs in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-08-01 allows attacke… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-2497 2024-11-21 11:48 2016-08-6 Show GitHub Exploit DB Packet Storm
267326 6.5 MEDIUM
Network 		mozilla firefox Mozilla Firefox before 48.0 and Firefox ESR 45.x before 45.3 on Linux make cairo _cairo_surface_get_extents calls that do not properly interact with libav header allocation in FFmpeg 0.10, which allo… CWE-20
 Improper Input Validation  		CVE-2016-2839 2024-11-21 11:48 2016-08-5 Show GitHub Exploit DB Packet Storm
267327 8.8 HIGH
Network 		mozilla firefox Heap-based buffer overflow in the nsBidi::BracketData::AddOpening function in Mozilla Firefox before 48.0 and Firefox ESR 45.x before 45.3 allows remote attackers to execute arbitrary code via direct… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-2838 2024-11-21 11:48 2016-08-5 Show GitHub Exploit DB Packet Storm
267328 6.3 MEDIUM
Network 		mozilla
oracle 		firefox
linux 		Heap-based buffer overflow in the ClearKey Content Decryption Module (CDM) in the Encrypted Media Extensions (EME) API in Mozilla Firefox before 48.0 and Firefox ESR 45.x before 45.3 might allow remo… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-2837 2024-11-21 11:48 2016-08-5 Show GitHub Exploit DB Packet Storm
267329 8.8 HIGH
Network 		mozilla firefox Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 48.0 and Firefox ESR 45.x before 45.3 allow remote attackers to cause a denial of service (memory corruption and a… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-2836 2024-11-21 11:48 2016-08-5 Show GitHub Exploit DB Packet Storm
267330 8.8 HIGH
Network 		mozilla firefox Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 48.0 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly exe… NVD-CWE-noinfo
CVE-2016-2835 2024-11-21 11:48 2016-08-5 Show GitHub Exploit DB Packet Storm