Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 3, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252701 9.3 危険 Google - Google Chrome の ParamTraits::Read 関数におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-1441 2010-10-19 14:56 2009-05-5 Show GitHub Exploit DB Packet Storm
252702 5 警告 Google - Google Chrome におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2009-1514 2010-10-19 14:55 2009-04-20 Show GitHub Exploit DB Packet Storm
252703 4.3 警告 Google - Google Chrome におけるクロスサイトスクリプティングを誘導される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-1414 2010-10-19 14:55 2009-04-24 Show GitHub Exploit DB Packet Storm
252704 4.3 警告 Google - Google Chrome におけるクロスサイトスクリプティングを誘導される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-1413 2010-10-19 14:55 2009-04-24 Show GitHub Exploit DB Packet Storm
252705 7.8 危険 Google - Google Chrome における IsWebSafeScheme 制限を満たしていない URL をタブで開かれる脆弱性 CWE-200
情報漏えい 		CVE-2009-1412 2010-10-19 14:54 2009-04-24 Show GitHub Exploit DB Packet Storm
252706 5 警告 Google - Google Chrome の V8 JavaScript エンジンにおける同一生成元ポリシーを回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-0276 2010-10-19 14:54 2009-01-28 Show GitHub Exploit DB Packet Storm
252707 5 警告 Google - Google Chrome における重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-0411 2010-10-19 14:54 2009-01-28 Show GitHub Exploit DB Packet Storm
252708 2.1 注意 Google - Google Chrome の JavaScript 実装における偽装したポップアップメッセージに従って行動させられる脆弱性 CWE-Other
その他 		CVE-2008-5915 2010-10-19 14:54 2009-01-20 Show GitHub Exploit DB Packet Storm
252709 4.3 警告 Google - Google Chrome におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-4724 2010-10-19 14:53 2008-09-18 Show GitHub Exploit DB Packet Storm
252710 4.3 警告 Google - Google Chrome におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2008-4340 2010-10-19 14:53 2008-09-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 3, 2026, 4:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
257431 8.1 HIGH
Network 		owncloud
nextcloud 		owncloud
nextcloud_server 		Nextcloud Server before 9.0.54 and 10.0.1 & ownCloud Server before 9.1.2, 9.0.6, and 8.2.9 suffer from SMB User Authentication Bypass. Nextcloud/ownCloud include an optional and not by default enable… CWE-287
Improper Authentication 		CVE-2016-9463 2024-11-21 12:01 2017-03-28 Show GitHub Exploit DB Packet Storm
257432 4.3 MEDIUM
Network 		owncloud
nextcloud 		owncloud
nextcloud_server 		Nextcloud Server before 9.0.52 & ownCloud Server before 9.0.4 are not properly verifying restore privileges when restoring a file. The restore capability of Nextcloud/ownCloud was not verifying wheth… CWE-284
Improper Access Control 		CVE-2016-9462 2024-11-21 12:01 2017-03-28 Show GitHub Exploit DB Packet Storm
257433 4.3 MEDIUM
Network 		owncloud
nextcloud 		owncloud
nextcloud_server 		Nextcloud Server before 9.0.52 & ownCloud Server before 9.0.4 are not properly verifying edit check permissions on WebDAV copy actions. The WebDAV endpoint was not properly checking the permission on… CWE-284
Improper Access Control 		CVE-2016-9461 2024-11-21 12:01 2017-03-28 Show GitHub Exploit DB Packet Storm
257434 5.3 MEDIUM
Network 		nextcloud
owncloud 		nextcloud
owncloud 		Nextcloud Server before 9.0.52 & ownCloud Server before 9.0.4 are vulnerable to a content-spoofing attack in the files app. The location bar in the files app was not verifying the passed parameters. … CWE-284
Improper Access Control 		CVE-2016-9460 2024-11-21 12:01 2017-03-28 Show GitHub Exploit DB Packet Storm
257435 6.1 MEDIUM
Network 		owncloud
nextcloud 		owncloud
nextcloud_server 		Nextcloud Server before 9.0.52 & ownCloud Server before 9.0.4 are vulnerable to a log pollution vulnerability potentially leading to a local XSS. The download log functionality in the admin screen is… CWE-79
Cross-site Scripting 		CVE-2016-9459 2024-11-21 12:01 2017-03-28 Show GitHub Exploit DB Packet Storm
257436 5.4 MEDIUM
Network 		revive-adserver revive_adserver Revive Adserver before 3.2.3 suffers from Reflected XSS. `www/admin/stats.php` is vulnerable to reflected XSS attacks via multiple parameters that are not properly sanitised or escaped when displayed… CWE-79
Cross-site Scripting 		CVE-2016-9457 2024-11-21 12:01 2017-03-28 Show GitHub Exploit DB Packet Storm
257437 8.8 HIGH
Network 		revive-adserver revive_adserver Revive Adserver before 3.2.3 suffers from Cross-Site Request Forgery (CSRF). The Revive Adserver team conducted a security audit of the admin interface scripts in order to identify and fix other pote… CWE-352
 Origin Validation Error 		CVE-2016-9456 2024-11-21 12:01 2017-03-28 Show GitHub Exploit DB Packet Storm
257438 8.8 HIGH
Network 		revive-adserver revive_adserver Revive Adserver before 3.2.3 suffers from Cross-Site Request Forgery (CSRF). A number of scripts in Revive Adserver's user interface are vulnerable to CSRF attacks: `www/admin/banner-acl.php`, `www/a… CWE-352
 Origin Validation Error 		CVE-2016-9455 2024-11-21 12:01 2017-03-28 Show GitHub Exploit DB Packet Storm
257439 5.4 MEDIUM
Network 		revive-adserver revive_adserver Revive Adserver before 3.2.3 suffers from Persistent XSS. A vector for persistent XSS attacks via the Revive Adserver user interface exists, requiring a trusted (non-admin) account. The banner image … CWE-79
Cross-site Scripting 		CVE-2016-9454 2024-11-21 12:01 2017-03-28 Show GitHub Exploit DB Packet Storm
257440 5.4 MEDIUM
Network 		ibm tririga_application_platform IBM TRIRIGA 3.3, 3.4, and 3.5 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentia… CWE-79
Cross-site Scripting 		CVE-2016-9737 2024-11-21 12:01 2017-03-28 Show GitHub Exploit DB Packet Storm