Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 24, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
242921 2.6 注意 CutePHP - CutePHP CuteNews におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4249 2012-06-26 16:18 2009-12-9 Show GitHub Exploit DB Packet Storm
242922 7.5 危険 Basic-CMS - SweetRice の as/lib/plugins.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-4231 2012-06-26 16:18 2009-12-8 Show GitHub Exploit DB Packet Storm
242923 7.5 危険 Activewebsoftwares - ActiveWebSoftwares Active Bids における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4229 2012-06-26 16:18 2009-12-8 Show GitHub Exploit DB Packet Storm
242924 6.8 警告 Basic-CMS - SweetRice における PHP リモートファイルインクルージョンの脆弱性 CWE-20
不適切な入力確認 		CVE-2009-4224 2012-06-26 16:18 2009-12-7 Show GitHub Exploit DB Packet Storm
242925 7.5 危険 gianni tommasi - KR-Web の adm/krgourl.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2009-4223 2012-06-26 16:18 2009-12-7 Show GitHub Exploit DB Packet Storm
242926 9.3 危険 サン・マイクロシステムズ
disa		 - Solaris x86 プラットフォームの U.S. DISA SRR スクリプトにおける権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-4211 2012-06-26 16:18 2009-12-4 Show GitHub Exploit DB Packet Storm
242927 7.5 危険 cmsnx - Million Dollar Text Links の admin.link.modify.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4206 2012-06-26 16:18 2009-12-4 Show GitHub Exploit DB Packet Storm
242928 7.5 危険 Arab Portal - Arab Portal の admin/aclass/admin_func.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4203 2012-06-26 16:18 2009-12-4 Show GitHub Exploit DB Packet Storm
242929 9.3 危険 assistanttools - Mp3 Tag Assistant Professional におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-4201 2012-06-26 16:18 2009-12-4 Show GitHub Exploit DB Packet Storm
242930 6.5 警告 cupidsystems - MyMiniBill の my_orders.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4198 2012-06-26 16:18 2009-12-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 24, 2026, 4:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
267471 7.8 HIGH
Local 		google android libs/binder/IPCThreadState.cpp in Binder in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-05-01 mishandles object references, which allows attackers to gain pr… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-2440 2024-11-21 11:48 2016-05-9 Show GitHub Exploit DB Packet Storm
267472 8.8 HIGH
Adjacent 		google android Buffer overflow in btif/src/btif_dm.c in Bluetooth in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-05-01 allows remote attackers to execute arbitrary code via… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-2439 2024-11-21 11:48 2016-05-9 Show GitHub Exploit DB Packet Storm
267473 7.8 HIGH
Local 		google android The NVIDIA video driver in Android before 2016-05-01 on Nexus 9 devices allows attackers to gain privileges via a crafted application, aka internal bug 27436822. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-2437 2024-11-21 11:48 2016-05-9 Show GitHub Exploit DB Packet Storm
267474 7.8 HIGH
Local 		google android The NVIDIA video driver in Android before 2016-05-01 on Nexus 9 devices allows attackers to gain privileges via a crafted application, aka internal bug 27299111. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-2436 2024-11-21 11:48 2016-05-9 Show GitHub Exploit DB Packet Storm
267475 7.8 HIGH
Local 		google android The NVIDIA video driver in Android before 2016-05-01 on Nexus 9 devices allows attackers to gain privileges via a crafted application, aka internal bug 27297988. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-2435 2024-11-21 11:48 2016-05-9 Show GitHub Exploit DB Packet Storm
267476 7.8 HIGH
Local 		google android The NVIDIA video driver in Android before 2016-05-01 on Nexus 9 devices allows attackers to gain privileges via a crafted application, aka internal bug 27251090. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-2434 2024-11-21 11:48 2016-05-9 Show GitHub Exploit DB Packet Storm
267477 7.8 HIGH
Local 		google android The Qualcomm TrustZone component in Android before 2016-05-01 on Nexus 6 and Android One devices allows attackers to gain privileges via a crafted application, aka internal bug 25913059. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-2432 2024-11-21 11:48 2016-05-9 Show GitHub Exploit DB Packet Storm
267478 7.8 HIGH
Local 		google android The Qualcomm TrustZone component in Android before 2016-05-01 on Nexus 5, Nexus 6, Nexus 7 (2013), and Android One devices allows attackers to gain privileges via a crafted application, aka internal … CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-2431 2024-11-21 11:48 2016-05-9 Show GitHub Exploit DB Packet Storm
267479 7.8 HIGH
Local 		google android libbacktrace/Backtrace.cpp in debuggerd in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-05-01 allows attackers to gain privileges via an application containin… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-2430 2024-11-21 11:48 2016-05-9 Show GitHub Exploit DB Packet Storm
267480 9.8 CRITICAL
Network 		google android libFLAC/stream_decoder.c in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-05-01 does not prevent free operations on uninitialized memory, which … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-2429 2024-11-21 11:48 2016-05-9 Show GitHub Exploit DB Packet Storm