Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 3, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
243911 7.2 危険 アップル - Apple Safari の Installer における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-2027 2012-06-26 16:10 2009-06-10 Show GitHub Exploit DB Packet Storm
243912 7.5 危険 dutchmonkey - DM FileManager の admin/login.php における管理者のアクセス権を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-2025 2012-06-26 16:10 2009-06-9 Show GitHub Exploit DB Packet Storm
243913 5 警告 fipsasp - fipsCMS Light における重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-2022 2012-06-26 16:10 2009-06-9 Show GitHub Exploit DB Packet Storm
243914 7.5 危険 frontisgroup - Frontis の bin/aps_browse_sources.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-2013 2012-06-26 16:10 2009-06-9 Show GitHub Exploit DB Packet Storm
243915 9.3 危険 dxstudio
Mozilla Foundation		 - Worldweaver DX Studio Player における任意のコマンドを実行される脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2009-2011 2012-06-26 16:10 2009-06-1 Show GitHub Exploit DB Packet Storm
243916 4.3 警告 Dokeos - Dokeos におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-2009 2012-06-26 16:10 2009-06-8 Show GitHub Exploit DB Packet Storm
243917 6.8 警告 Dokeos - Dokeos における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-2008 2012-06-26 16:10 2009-06-8 Show GitHub Exploit DB Packet Storm
243918 5 警告 Dokeos - Dokeos におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-2007 2012-06-26 16:10 2009-06-8 Show GitHub Exploit DB Packet Storm
243919 2.6 注意 Dokeos - Dokeos におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-2006 2012-06-26 16:10 2009-06-8 Show GitHub Exploit DB Packet Storm
243920 6.8 警告 Dokeos - Dokeos におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2009-2005 2012-06-26 16:10 2009-06-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
353401 - ipswitch imail Web Messaging Server for Ipswitch IMail 7.04 and earlier allows remote authenticated users to change information for other users by modifying the olduser parameter in the "Change User Information" we… NVD-CWE-Other
CVE-2001-1281 2008-09-11 04:10 2001-10-12 Show GitHub Exploit DB Packet Storm
353402 - ipswitch imail Ipswitch IMail 7.04 and earlier records the physical path of attachments in an e-mail message header, which could allow remote attackers to obtain potentially sensitive configuration information. NVD-CWE-Other
CVE-2001-1282 2008-09-11 04:10 2001-10-12 Show GitHub Exploit DB Packet Storm
353403 - ipswitch imail The webmail interface for Ipswitch IMail 7.04 and earlier allows remote authenticated users to cause a denial of service (crash) via a mailbox name that contains a large number of . (dot) or other ch… NVD-CWE-Other
CVE-2001-1283 2008-09-11 04:10 2001-10-12 Show GitHub Exploit DB Packet Storm
353404 - ipswitch imail Ipswitch IMail 7.04 and earlier uses predictable session IDs for authentication, which allows remote attackers to hijack sessions of other users. NVD-CWE-Other
CVE-2001-1284 2008-09-11 04:10 2001-10-12 Show GitHub Exploit DB Packet Storm
353405 - ipswitch imail Directory traversal vulnerability in readmail.cgi for Ipswitch IMail 7.04 and earlier allows remote attackers to access the mailboxes of other users via a .. (dot dot) in the mbx parameter. NVD-CWE-Other
CVE-2001-1285 2008-09-11 04:10 2001-10-12 Show GitHub Exploit DB Packet Storm
353406 - ipswitch imail Ipswitch IMail 7.04 and earlier stores a user's session ID in a URL, which could allow remote attackers to hijack sessions by obtaining the URL, e.g. via an HTML email that causes the Referrer to be … NVD-CWE-Other
CVE-2001-1286 2008-09-11 04:10 2001-10-12 Show GitHub Exploit DB Packet Storm
353407 - ipswitch imail Buffer overflow in Web Calendar in Ipswitch IMail 7.04 and earlier allows remote attackers to execute arbitrary code via a long HTTP GET request. NVD-CWE-Other
CVE-2001-1287 2008-09-11 04:10 2001-10-12 Show GitHub Exploit DB Packet Storm
353408 - id_software quake_3_arena Quake 3 arena 1.29f and 1.29g allows remote attackers to cause a denial of service (crash) via a malformed connection packet that begins with several char-255 characters. NVD-CWE-Other
CVE-2001-1289 2008-09-11 04:10 2001-07-29 Show GitHub Exploit DB Packet Storm
353409 - 3com 3cr29223 Buffer overflow in web server of 3com HomeConnect Cable Modem External with USB (#3CR29223) allows remote attackers to cause a denial of service (crash) via a long HTTP request. NVD-CWE-Other
CVE-2001-1293 2008-09-11 04:10 2001-09-26 Show GitHub Exploit DB Packet Storm
353410 - avtronics inetserv Buffer overflow in A-V Tronics Inetserv 3.2.1 and earlier allows remote attackers to cause a denial of service (crash) in the Webmail interface via a long username and password. NVD-CWE-Other
CVE-2001-1294 2008-09-11 04:10 2001-08-22 Show GitHub Exploit DB Packet Storm