Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 22, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
246351	9.3	危険	Mozilla Foundation didier ernotte	-	Firefox の infoRSS におけるクロスドメインスクリプティング攻撃を実行される脆弱性	CWE-20 不適切な入力確認	CVE-2009-4101	2012-06-26 16:18	2009-07-3	Show	GitHub Exploit DB Packet Storm

246352	7.5	危険	Joomla! g4j.laoneo	-	Joomla! 用 Google Calendar GCalendar コンポーネンにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-4099	2012-06-26 16:18	2009-11-29	Show	GitHub Exploit DB Packet Storm

246353	7.5	危険	companionway	-	myPhile における認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2009-4095	2012-06-26 16:18	2009-11-29	Show	GitHub Exploit DB Packet Storm

246354	7.5	危険	designforjoomla Joomla!	-	Joomla! 用の D4J eZine コンポーネントにおける PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2009-4094	2012-06-26 16:18	2009-11-29	Show	GitHub Exploit DB Packet Storm

246355	7.5	危険	e107.org	-	e107 の検索機能における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-4084	2012-06-26 16:18	2009-11-29	Show	GitHub Exploit DB Packet Storm

246356	4.3	警告	e107.org	-	e107 におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4083	2012-06-26 16:18	2009-11-29	Show	GitHub Exploit DB Packet Storm

246357	4.4	警告	DAG	-	dstat における権限を取得される脆弱性	CWE-Other その他	CVE-2009-4081	2012-06-26 16:18	2009-11-29	Show	GitHub Exploit DB Packet Storm

246358	7.5	危険	GForge Group	-	GForge における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-4070	2012-06-26 16:18	2009-11-24	Show	GitHub Exploit DB Packet Storm

246359	9.3	危険	Krzysztof Kowalczyk ccxvii	-	SumatraPDF で使用される MuPDF の pdf_shade4.c におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-4117	2012-06-26 16:18	2009-11-30	Show	GitHub Exploit DB Packet Storm

246360	3.5	注意	CutePHP	-	CutePHP CuteNews におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2009-4116	2012-06-26 16:18	2009-11-30	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 23, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
253371	6.5	MEDIUM Network	libdwarf_project	libdwarf	The _dwarf_decode_s_leb128_chk function in dwarf_leb.c in libdwarf through 2017-06-28 allows remote attackers to cause a denial of service (Segmentation fault) via a crafted file.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-9998	2024-11-21 12:37	2017-06-28	Show	GitHub Exploit DB Packet Storm

253372	7.8	HIGH Local	ffmpeg	ffmpeg	The cdxl_decode_frame function in libavcodec/cdxl.c in FFmpeg 2.8.x before 2.8.12, 3.0.x before 3.0.8, 3.1.x before 3.1.8, 3.2.x before 3.2.5, and 3.3.x before 3.3.1 does not exclude the CHUNKY forma…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-9996	2024-11-21 12:37	2017-06-28	Show	GitHub Exploit DB Packet Storm

253373	7.8	HIGH Local	ffmpeg	ffmpeg	libavcodec/scpr.c in FFmpeg 3.3 before 3.3.1 does not properly validate height and width data, which allows remote attackers to cause a denial of service (heap-based buffer overflow and application c…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-9995	2024-11-21 12:37	2017-06-28	Show	GitHub Exploit DB Packet Storm

253374	7.8	HIGH Local	ffmpeg debian	ffmpeg debian_linux	libavcodec/webp.c in FFmpeg before 2.8.12, 3.0.x before 3.0.8, 3.1.x before 3.1.8, 3.2.x before 3.2.5, and 3.3.x before 3.3.1 does not ensure that pix_fmt is set, which allows remote attackers to cau…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-9994	2024-11-21 12:37	2017-06-28	Show	GitHub Exploit DB Packet Storm

253375	7.5	HIGH Network	ffmpeg debian	ffmpeg debian_linux	FFmpeg before 2.8.12, 3.0.x and 3.1.x before 3.1.9, 3.2.x before 3.2.6, and 3.3.x before 3.3.2 does not properly restrict HTTP Live Streaming filename extensions and demuxer names, which allows attac…	CWE-200 Information Exposure	CVE-2017-9993	2024-11-21 12:37	2017-06-28	Show	GitHub Exploit DB Packet Storm

253376	8.8	HIGH Network	ffmpeg debian	ffmpeg debian_linux	Heap-based buffer overflow in the decode_dds1 function in libavcodec/dfa.c in FFmpeg before 2.8.12, 3.0.x before 3.0.8, 3.1.x before 3.1.8, 3.2.x before 3.2.5, and 3.3.x before 3.3.1 allows remote at…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-9992	2024-11-21 12:37	2017-06-28	Show	GitHub Exploit DB Packet Storm

253377	7.8	HIGH Local	ffmpeg	ffmpeg	Heap-based buffer overflow in the xwd_decode_frame function in libavcodec/xwddec.c in FFmpeg before 2.8.12, 3.0.x before 3.0.8, 3.1.x before 3.1.8, 3.2.x before 3.2.5, and 3.3.x before 3.3.1 allows r…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-9991	2024-11-21 12:37	2017-06-28	Show	GitHub Exploit DB Packet Storm

253378	8.8	HIGH Network	ffmpeg	ffmpeg	Stack-based buffer overflow in the color_string_to_rgba function in libavcodec/xpmdec.c in FFmpeg 3.3 before 3.3.1 allows remote attackers to cause a denial of service (application crash) or possibly…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-9990	2024-11-21 12:37	2017-06-28	Show	GitHub Exploit DB Packet Storm

253379	6.5	MEDIUM Network	libming debian	libming debian_linux	util/outputtxt.c in libming 0.4.8 mishandles memory allocation. A crafted input will lead to a remote denial of service (NULL pointer dereference) attack.	CWE-476 NULL Pointer Dereference	CVE-2017-9989	2024-11-21 12:37	2017-06-28	Show	GitHub Exploit DB Packet Storm

253380	6.5	MEDIUM Network	libming debian	libming debian_linux	The readEncUInt30 function in util/read.c in libming 0.4.8 mishandles memory allocation. A crafted input will lead to a remote denial of service (NULL pointer dereference) attack against parser.c.	CWE-476 NULL Pointer Dereference	CVE-2017-9988	2024-11-21 12:37	2017-06-28	Show	GitHub Exploit DB Packet Storm