Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 24, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
242881	7.5	危険	deluxebb	-	DeluxeBB における管理アクセス権を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-4465	2012-06-26 16:18	2009-12-30	Show	GitHub Exploit DB Packet Storm

242882	4.3	警告	Activewebsoftwares	-	Active Business Directory の searchadvance.asp におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4464	2012-06-26 16:18	2009-12-30	Show	GitHub Exploit DB Packet Storm

242883	4.3	警告	FlatPress	-	FlatPress におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4461	2012-06-26 16:18	2009-12-30	Show	GitHub Exploit DB Packet Storm

242884	4.3	警告	FreePBX	-	FreePBX におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4458	2012-06-26 16:18	2009-12-29	Show	GitHub Exploit DB Packet Storm

242885	7.5	危険	greendesktiny	-	Green Desktiny の news_detail.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-4456	2012-06-26 16:18	2009-12-29	Show	GitHub Exploit DB Packet Storm

242886	7.5	危険	Activewebsoftwares	-	Active Auction House における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-4437	2012-06-26 16:18	2009-12-28	Show	GitHub Exploit DB Packet Storm

242887	7.5	危険	Activewebsoftwares	-	Active Web Softwares eWebquiz における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-4436	2012-06-26 16:18	2009-12-28	Show	GitHub Exploit DB Packet Storm

242888	6.8	警告	compmaster.prv.pl	-	F3Site 2009 におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2009-4435	2012-06-26 16:18	2009-12-28	Show	GitHub Exploit DB Packet Storm

242889	7.5	危険	codemight	-	CodeMight VideoCMS の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-4432	2012-06-26 16:18	2009-12-28	Show	GitHub Exploit DB Packet Storm

242890	7.5	危険	anything-digital Joomla!	-	Joomla! の Anything Digital Development JCal Pro コンポーネントにおける PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2009-4431	2012-06-26 16:18	2009-12-28	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 24, 2026, 4:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
267981	7.7	HIGH Local	hp	system_management_homepage	HPE System Management Homepage before 7.5.4 allows local users to obtain sensitive information or modify data via unspecified vectors.	NVD-CWE-noinfo	CVE-2016-1996	2024-11-21 11:47	2016-03-18	Show	GitHub Exploit DB Packet Storm

267982	9.8	CRITICAL Network	hp	system_management_homepage	HPE System Management Homepage before 7.5.4 allows remote attackers to execute arbitrary code via unspecified vectors.	NVD-CWE-noinfo	CVE-2016-1995	2024-11-21 11:47	2016-03-18	Show	GitHub Exploit DB Packet Storm

267983	6.5	MEDIUM Network	hp	system_management_homepage	HPE System Management Homepage before 7.5.4 allows remote authenticated users to obtain sensitive information via unspecified vectors.	CWE-200 Information Exposure	CVE-2016-1994	2024-11-21 11:47	2016-03-18	Show	GitHub Exploit DB Packet Storm

267984	8.1	HIGH Network	hp	system_management_homepage	HPE System Management Homepage before 7.5.4 allows remote authenticated users to obtain sensitive information or modify data via unspecified vectors.	NVD-CWE-noinfo	CVE-2016-1993	2024-11-21 11:47	2016-03-18	Show	GitHub Exploit DB Packet Storm

267985	6.5	MEDIUM Network	hp	enterprise_security_manager_express enterprise_security_manager	HPE ArcSight ESM before 6.8c, and ArcSight ESM Express before 6.9.1, allows remote authenticated users to obtain sensitive information via unspecified vectors.	CWE-200 Information Exposure	CVE-2016-1992	2024-11-21 11:47	2016-03-17	Show	GitHub Exploit DB Packet Storm

267986	5.4	MEDIUM Network	vmware	vrealize_business_advanced_and_enterprise	Cross-site scripting (XSS) vulnerability in VMware vRealize Business Advanced and Enterprise 8.x before 8.2.5 on Linux allows remote authenticated users to inject arbitrary web script or HTML via uns…	CWE-79 Cross-site Scripting	CVE-2016-2075	2024-11-21 11:47	2016-03-16	Show	GitHub Exploit DB Packet Storm

267987	8.0	HIGH Network	microfocus	arcsight_enterprise_security_manager	HPE ArcSight ESM 5.x before 5.6, 6.0, 6.5.x before 6.5C SP1 Patch 2, and 6.8c before P1, and ArcSight ESM Express before 6.9.1, allows remote authenticated users to conduct unspecified "file download…	NVD-CWE-noinfo	CVE-2016-1991	2024-11-21 11:47	2016-03-16	Show	GitHub Exploit DB Packet Storm

267988	7.8	HIGH Local	microfocus	arcsight_enterprise_security_manager	HPE ArcSight ESM 5.x before 5.6, 6.0, 6.5.x before 6.5C SP1 Patch 2, and 6.8c before P1, and ArcSight ESM Express before 6.9.1, allows local users to gain privileges for command execution via unspeci…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-1990	2024-11-21 11:47	2016-03-16	Show	GitHub Exploit DB Packet Storm

267989	9.8	CRITICAL Network	hp	network_automation	HPE Network Automation 9.22 through 9.22.02 and 10.x before 10.00.02 allows remote attackers to execute arbitrary code or obtain sensitive information via unspecified vectors, a different vulnerabili…	NVD-CWE-noinfo	CVE-2016-1989	2024-11-21 11:47	2016-03-15	Show	GitHub Exploit DB Packet Storm

267990	9.8	CRITICAL Network	hp	network_automation	HPE Network Automation 9.22 through 9.22.02 and 10.x before 10.00.02 allows remote attackers to execute arbitrary code or obtain sensitive information via unspecified vectors, a different vulnerabili…	NVD-CWE-noinfo	CVE-2016-1988	2024-11-21 11:47	2016-03-15	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed