Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 28, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
243071 7.5 危険 codemight - CodeMight VideoCMS の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4432 2012-06-26 16:18 2009-12-28 Show GitHub Exploit DB Packet Storm
243072 7.5 危険 anything-digital
Joomla!		 - Joomla! の Anything Digital Development JCal Pro コンポーネントにおける PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2009-4431 2012-06-26 16:18 2009-12-28 Show GitHub Exploit DB Packet Storm
243073 3.5 注意 Drupal
alexander hass		 - Drupal の Sections モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4429 2012-06-26 16:18 2009-12-16 Show GitHub Exploit DB Packet Storm
243074 7.5 危険 Deon George - phpLDAPadmin のcmd.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-4427 2012-06-26 16:18 2009-12-28 Show GitHub Exploit DB Packet Storm
243075 4.3 警告 aditus - Aditus Consulting JpGraph の GetURLArguments 関数におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4422 2012-06-26 16:18 2009-12-24 Show GitHub Exploit DB Packet Storm
243076 6.5 警告 Alexander Palmo - Simple PHP Blog の languages_cgi.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-4421 2012-06-26 16:18 2009-12-24 Show GitHub Exploit DB Packet Storm
243077 7.5 危険 edgewall - Trac における詳細不明な脆弱性 CWE-noinfo
情報不足 		CVE-2009-4405 2012-06-26 16:18 2009-12-23 Show GitHub Exploit DB Packet Storm
243078 7.5 危険 daniel ptzinger
TYPO3 Association		 - TYPO3 用の Document Directorys 拡張機能における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4393 2012-06-26 16:18 2009-12-22 Show GitHub Exploit DB Packet Storm
243079 4.3 警告 daniel regelein
TYPO3 Association		 - TYPO3 用の File list 拡張機能におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4391 2012-06-26 16:18 2009-12-22 Show GitHub Exploit DB Packet Storm
243080 4.3 警告 frank krger
TYPO3 Association		 - TYPO3 の nl_listman 拡張におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4388 2012-06-26 16:18 2009-12-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
267921 7.7 HIGH
Local 		oracle jdk
jre 		Unspecified vulnerability in Oracle Java SE 7u101 and 8u92 allows local users to affect confidentiality, integrity, and availability via vectors related to Deployment. NVD-CWE-noinfo
CVE-2016-3511 2024-11-21 11:50 2016-07-21 Show GitHub Exploit DB Packet Storm
267922 9.8 CRITICAL
Network 		oracle weblogic_server Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.3.6.0, 12.1.3.0, and 12.2.1.0 allows remote attackers to affect confidentiality, integrity, and availa… NVD-CWE-noinfo
CVE-2016-3510 2024-11-21 11:50 2016-07-21 Show GitHub Exploit DB Packet Storm
267923 5.4 MEDIUM
Network 		oracle agile_product_lifecycle_management_framework Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote authenticated users to affect confidentiality and integrity via vectors… NVD-CWE-noinfo
CVE-2016-3509 2024-11-21 11:50 2016-07-21 Show GitHub Exploit DB Packet Storm
267924 5.3 MEDIUM
Network 		oracle jrockit
jdk
jre
linux 		Unspecified vulnerability in Oracle Java SE 6u115, 7u101, and 8u92; Java SE Embedded 8u91; and JRockit R28.3.10 allows remote attackers to affect availability via vectors related to JAXP, a different… NVD-CWE-noinfo
CVE-2016-3508 2024-11-21 11:50 2016-07-21 Show GitHub Exploit DB Packet Storm
267925 4.3 MEDIUM
Network 		oracle agile_product_lifecycle_management_framework Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote attackers to affect integrity via vectors related to WebClient / Admin. NVD-CWE-noinfo
CVE-2016-3507 2024-11-21 11:50 2016-07-21 Show GitHub Exploit DB Packet Storm
267926 8.1 HIGH
Network 		oracle jdbc Unspecified vulnerability in the JDBC component in Oracle Database Server 11.2.0.4, 12.1.0.1, and 12.1.0.2; the Oracle Retail Xstore Point of Service 5.5, 6.0, 6.5, 7.0, 7.1, 15.0, and 16.0; the Orac… NVD-CWE-noinfo
CVE-2016-3506 2024-11-21 11:50 2016-07-21 Show GitHub Exploit DB Packet Storm
267927 9.8 CRITICAL
Network 		oracle jdeveloper Unspecified vulnerability in the Oracle JDeveloper component in Oracle Fusion Middleware 11.1.1.7.0, 11.1.1.9.0, 11.1.2.4.0, 12.1.3.0.0, and 12.2.1.0.0 allows remote attackers to affect confidentiali… NVD-CWE-noinfo
CVE-2016-3504 2024-11-21 11:50 2016-07-21 Show GitHub Exploit DB Packet Storm
267928 7.7 HIGH
Local 		oracle jdk
jre 		Unspecified vulnerability in Oracle Java SE 6u115, 7u101, and 8u92 allows local users to affect confidentiality, integrity, and availability via vectors related to Install. NVD-CWE-noinfo
CVE-2016-3503 2024-11-21 11:50 2016-07-21 Show GitHub Exploit DB Packet Storm
267929 6.5 MEDIUM
Network 		oracle webcenter_sites Unspecified vulnerability in the Oracle WebCenter Sites component in Oracle Fusion Middleware 11.1.1.8 and 12.2.1.0 allows remote authenticated users to affect confidentiality, integrity, and availab… NVD-CWE-noinfo
CVE-2016-3502 2024-11-21 11:50 2016-07-21 Show GitHub Exploit DB Packet Storm
267930 6.5 MEDIUM
Network 		oracle
canonical 		mysql
ubuntu_linux 		Unspecified vulnerability in Oracle MySQL 5.6.30 and earlier and 5.7.12 and earlier allows remote authenticated users to affect availability via vectors related to Server: Optimizer. NVD-CWE-noinfo
CVE-2016-3501 2024-11-21 11:50 2016-07-21 Show GitHub Exploit DB Packet Storm