Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 26, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
242971 9.3 危険 evils-world - BrotherSoft EW-MusicPlayer におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-4757 2012-06-26 16:19 2010-03-29 Show GitHub Exploit DB Packet Storm
242972 9.3 危険 beatport - Beatport Player の TraktorBeatport.exe におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-4756 2012-06-26 16:19 2010-03-29 Show GitHub Exploit DB Packet Storm
242973 7.5 危険 andrew charlton
WordPress.org		 - WordPress の My Category Order プラグインの mycategoryorder.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4748 2012-06-26 16:19 2010-03-26 Show GitHub Exploit DB Packet Storm
242974 4.3 警告 dreamlevels - Dreamlevels DreamPoll の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4746 2012-06-26 16:19 2010-03-26 Show GitHub Exploit DB Packet Storm
242975 7.5 危険 dreamlevels - Dreamlevels DreamPoll の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4745 2012-06-26 16:19 2010-03-26 Show GitHub Exploit DB Packet Storm
242976 4.3 警告 AfterLogic - AfterLogic WebMail Pro の history-storage.aspx におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4743 2012-06-26 16:19 2010-03-26 Show GitHub Exploit DB Packet Storm
242977 7.5 危険 Docebo - Docebo における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4742 2012-06-26 16:19 2010-03-26 Show GitHub Exploit DB Packet Storm
242978 7.5 危険 Allomani - Allomani Audio & Video Library の login.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4735 2012-06-26 16:19 2010-03-18 Show GitHub Exploit DB Packet Storm
242979 7.5 危険 Allomani - Allomani Movies Library の login.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4734 2012-06-26 16:19 2010-03-18 Show GitHub Exploit DB Packet Storm
242980 7.5 危険 boldfx - Model Agency Manager PRO の photos.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4731 2012-06-26 16:19 2010-03-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 26, 2026, 4:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
268351 9.8 CRITICAL
Network 		cisco wireless_lan_controller_software Buffer overflow in the redirection functionality in Cisco Wireless LAN Controller (WLC) Software 7.2 through 7.4 before 7.4.140.0(MD) and 7.5 through 8.0 before 8.0.115.0(ED) allows remote attackers … CWE-399
 Resource Management Errors 		CVE-2016-1363 2024-11-21 11:46 2016-04-21 Show GitHub Exploit DB Packet Storm
268352 7.5 HIGH
Network 		cisco aireos Cisco AireOS 4.1 through 7.4.120.0, 7.5.x, and 7.6.100.0 on Wireless LAN Controller (WLC) devices allows remote attackers to cause a denial of service (device reload) via a crafted HTTP request, aka … CWE-399
 Resource Management Errors 		CVE-2016-1362 2024-11-21 11:46 2016-04-21 Show GitHub Exploit DB Packet Storm
268353 7.5 HIGH
Network 		cisco ios
ios_xe 		The NTP implementation in Cisco IOS 15.1 and 15.5 and IOS XE 3.2 through 3.17 allows remote attackers to modify the system time via crafted packets, aka Bug ID CSCux46898. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-1384 2024-11-21 11:46 2016-04-21 Show GitHub Exploit DB Packet Storm
268354 9.8 CRITICAL
Network 		debian
suse
opensuse
canonical
google 		debian_linux
linux_enterprise
leap
ubuntu_linux
chrome 		Multiple unspecified vulnerabilities in Google Chrome before 50.0.2661.75 allow attackers to cause a denial of service or possibly have other impact via unknown vectors. NVD-CWE-noinfo
CVE-2016-1659 2024-11-21 11:46 2016-04-18 Show GitHub Exploit DB Packet Storm
268355 4.3 MEDIUM
Network 		novell
opensuse
google
debian 		suse_package_hub_for_suse_linux_enterprise
leap
chrome
debian_linux 		The Extensions subsystem in Google Chrome before 50.0.2661.75 incorrectly relies on GetOrigin method calls for origin comparisons, which allows remote attackers to bypass the Same Origin Policy and o… CWE-200
CWE-284
Information Exposure
Improper Access Control 		CVE-2016-1658 2024-11-21 11:46 2016-04-18 Show GitHub Exploit DB Packet Storm
268356 4.3 MEDIUM
Network 		debian
novell
opensuse
google 		debian_linux
suse_package_hub_for_suse_linux_enterprise
leap
chrome 		The WebContentsImpl::FocusLocationBarByDefault function in content/browser/web_contents/web_contents_impl.cc in Google Chrome before 50.0.2661.75 mishandles focus for certain about:blank pages, which… CWE-254
 7PK - Security Features 		CVE-2016-1657 2024-11-21 11:46 2016-04-18 Show GitHub Exploit DB Packet Storm
268357 7.5 HIGH
Network 		google
suse
opensuse 		chrome
linux_enterprise
leap 		The download implementation in Google Chrome before 50.0.2661.75 on Android allows remote attackers to bypass intended pathname restrictions via unspecified vectors. CWE-284
Improper Access Control 		CVE-2016-1656 2024-11-21 11:46 2016-04-18 Show GitHub Exploit DB Packet Storm
268358 8.8 HIGH
Network 		debian
suse
opensuse
google
canonical 		debian_linux
linux_enterprise
leap
chrome
ubuntu_linux 		Google Chrome before 50.0.2661.75 does not properly consider that frame removal may occur during callback execution, which allows remote attackers to cause a denial of service (use-after-free) or pos… NVD-CWE-Other
CVE-2016-1655 2024-11-21 11:46 2016-04-18 Show GitHub Exploit DB Packet Storm
268359 6.5 MEDIUM
Network 		debian
suse
opensuse
google
canonical 		debian_linux
linux_enterprise
leap
chrome
ubuntu_linux 		The media subsystem in Google Chrome before 50.0.2661.75 does not initialize an unspecified data structure, which allows remote attackers to cause a denial of service (invalid read operation) via unk… CWE-20
 Improper Input Validation  		CVE-2016-1654 2024-11-21 11:46 2016-04-18 Show GitHub Exploit DB Packet Storm
268360 8.8 HIGH
Network 		debian
suse
opensuse
canonical
google 		debian_linux
linux_enterprise
leap
ubuntu_linux
chrome 		The LoadBuffer implementation in Google V8, as used in Google Chrome before 50.0.2661.75, mishandles data types, which allows remote attackers to cause a denial of service or possibly have unspecifie… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-1653 2024-11-21 11:46 2016-04-18 Show GitHub Exploit DB Packet Storm