Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 8, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
254671	4	警告	IBM	-	IBM DB2 におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2009-4439	2010-02-4 11:20	2009-12-28	Show	GitHub Exploit DB Packet Storm

254672	6.5	警告	IBM	-	IBM DB2 におけるデータを使用される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-4438	2010-02-4 11:19	2009-12-28	Show	GitHub Exploit DB Packet Storm

254673	10	危険	IBM	-	IBM DB2 の Spatial Extender コンポーネントに同梱されているストアドプロシージャにおける脆弱性	CWE-noinfo 情報不足	CVE-2009-4335	2010-02-4 11:19	2009-12-16	Show	GitHub Exploit DB Packet Storm

254674	4	警告	IBM	-	IBM DB2 の DRDA Services コンポーネントにおけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2009-4328	2010-02-4 11:19	2009-12-16	Show	GitHub Exploit DB Packet Storm

254675	7.2	危険	IBM	-	IBM DB2 の Install コンポーネントにおける脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-4331	2010-02-4 11:19	2009-12-16	Show	GitHub Exploit DB Packet Storm

254676	7.5	危険	IBM	-	IBM DB2 の Relational Data Services コンポーネントにおけるパスワードの引数を取得される脆弱性	CWE-200 情報漏えい	CVE-2009-4333	2010-02-4 11:19	2009-12-16	Show	GitHub Exploit DB Packet Storm

254677	7.2	危険	IBM	-	IBM DB2 の Engine Utilities コンポーネントの db2licm における脆弱性	CWE-noinfo 情報不足	CVE-2009-4330	2010-02-4 11:18	2009-12-16	Show	GitHub Exploit DB Packet Storm

254678	4	警告	IBM	-	IBM DB2 の Engine Utilities コンポーネントにおけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2009-4329	2010-02-4 11:18	2009-12-16	Show	GitHub Exploit DB Packet Storm

254679	7.2	危険	サイバートラスト株式会社 Linux	-	Linux kernel の kvm_dev_ioctl_get_supported_cpuid 関数における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2009-3638	2010-02-3 14:35	2009-10-29	Show	GitHub Exploit DB Packet Storm

254680	5	警告	Linear LLC S2 Security	-	Linear eMerge のマネージメントコンポーネントにおけるサービス運用妨害 (DoS)	CWE-noinfo 情報不足	CVE-2009-3734	2010-02-3 14:35	2010-01-5	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
267001	6.1	MEDIUM Network	python debian fedoraproject	python debian_linux fedora	The CGIHandler class in Python before 2.7.12 does not protect against the HTTP_PROXY variable name clash in a CGI script, which could allow a remote attacker to redirect HTTP requests.	CWE-601 Open Redirect	CVE-2016-1000110	2024-11-21 11:42	2019-11-28	Show	GitHub Exploit DB Packet Storm

267002	9.8	CRITICAL Network	facebook	hhvm	hhvm before 3.12.11 has a use-after-free in the serialize_memoize_param() and ResourceBundle::__construct() functions.	CWE-416 Use After Free	CVE-2016-1000006	2024-11-21 11:42	2019-11-20	Show	GitHub Exploit DB Packet Storm

267003	6.1	MEDIUM Network	redhat fedoraproject	pagure fedora enterprise_linux	Pagure: XSS possible in file attachment endpoint	CWE-79 Cross-site Scripting	CVE-2016-1000037	2024-11-21 11:42	2019-11-7	Show	GitHub Exploit DB Packet Storm

267004	2.4	LOW Physics	gnome redhat debian opensuse	gnome_display_manager enterprise_linux debian_linux leap	gdm3 3.14.2 and possibly later has an information leak before screen lock	CWE-200 Information Exposure	CVE-2016-1000002	2024-11-21 11:42	2019-11-5	Show	GitHub Exploit DB Packet Storm

267005	5.9	MEDIUM Network	pivotal_software	cloud_foundry_elastic_runtime	Pivotal Cloud Foundry Elastic Runtime version 1.4.0 through 1.4.5, 1.5.0 through 1.5.11 and 1.6.0 through 1.6.11 is vulnerable to a remote information disclosure. It was found that original mitigatio…	CWE-200 Information Exposure	CVE-2016-0715	2024-11-21 11:42	2018-09-12	Show	GitHub Exploit DB Packet Storm

267006	8.8	HIGH Network	infinispan	infinispan	The hotrod java client in infinispan before 9.1.0.Final automatically deserializes bytearray message contents in certain events. A malicious user could exploit this flaw by injecting a specially-craf…	CWE-502 Deserialization of Untrusted Data	CVE-2016-0750	2024-11-21 11:42	2018-09-11	Show	GitHub Exploit DB Packet Storm

267007	9.8	CRITICAL Network	suse pidgin	linux_enterprise_server pidgin	Pidgin version <2.11.0 contains a vulnerability in X.509 Certificates imports specifically due to improper check of return values from gnutls_x509_crt_init() and gnutls_x509_crt_import() that can res…	CWE-295 Improper Certificate Validation	CVE-2016-1000030	2024-11-21 11:42	2018-09-6	Show	GitHub Exploit DB Packet Storm

267008	5.9	MEDIUM Network	cloudfoundry	java_buildpack cf-release	Applications deployed to Cloud Foundry, versions v166 through v227, may be vulnerable to a remote disclosure of information, including, but not limited to environment variables and bound service deta…	CWE-200 Information Exposure	CVE-2016-0708	2024-11-21 11:42	2018-07-12	Show	GitHub Exploit DB Packet Storm

267009	10.0	CRITICAL Network	vmware	pivotal_software_mysql	MySQL for PCF tiles 1.7.x before 1.7.10 were discovered to log the AWS access key in plaintext. These credentials were logged to the Service Backup component logs, and not the system log, thus were n…	CWE-255 CWE-532 Credentials Management Inclusion of Sensitive Information in Log Files	CVE-2016-0898	2024-11-21 11:42	2018-03-30	Show	GitHub Exploit DB Packet Storm

267010	9.8	CRITICAL Network	kabona	webdatorcentral	A Plaintext Storage of a Password issue was discovered in Kabona AB WebDatorCentral (WDC) versions prior to Version 3.4.0. WDC stores password credentials in plaintext.	CWE-255 Credentials Management	CVE-2016-0872	2024-11-21 11:42	2017-11-8	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed