Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 9, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
200341 6.1 警告
Network 		SAP - SAP NetWeaver AS Java におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-3975 2016-08-31 16:12 2016-03-8 Show GitHub Exploit DB Packet Storm
200342 7.5 重要
Network 		SAP - SAP NetWeaver Java AS のリアルタイムコラボレーションサービスのチャット機能における重要なユーザ情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2016-3973 2016-08-31 16:12 2016-03-8 Show GitHub Exploit DB Packet Storm
200343 7.5 重要
Network 		F5 Networks - F5 BIG-IP システムのバーチャルサーバにおけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2016-5023 2016-08-31 15:52 2016-08-11 Show GitHub Exploit DB Packet Storm
200344 4.3 警告
Network 		Jenkins プロジェクト
レッドハット		 - Jenkins の API URL computer/(master)/api/xml におけるグローバル設定に関する重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2016-3727 2016-08-31 12:26 2016-05-11 Show GitHub Exploit DB Packet Storm
200345 7.4 重要
Network 		CloudBees
レッドハット		 - CloudBees Jenkins におけるオープンリダイレクトの脆弱性 CWE-Other
その他 		CVE-2016-3726 2016-08-31 12:25 2016-05-11 Show GitHub Exploit DB Packet Storm
200346 4.3 警告
Network 		CloudBees
レッドハット		 - CloudBees Jenkins におけるアップデートサイトのメタデータのアップデートを誘発される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-3725 2016-08-31 12:25 2016-05-11 Show GitHub Exploit DB Packet Storm
200347 6.5 警告
Network 		CloudBees
レッドハット		 - CloudBees Jenkins における重要なパスワード情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2016-3724 2016-08-31 12:25 2016-05-11 Show GitHub Exploit DB Packet Storm
200348 4.3 警告
Network 		CloudBees
レッドハット		 - CloudBees Jenkins における重要なプラグインのインストール情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2016-3723 2016-08-31 12:24 2016-05-11 Show GitHub Exploit DB Packet Storm
200349 4.3 警告
Network 		CloudBees
レッドハット		 - CloudBees Jenkins におけるサービス運用妨害 (DoS) の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-3722 2016-08-31 12:24 2016-05-11 Show GitHub Exploit DB Packet Storm
200350 5.9 警告
Network 		IBM - IBM BigFix Platform の Web レポートにおける重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2016-0397 2016-08-31 11:43 2016-07-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
347221 - commodityrentals vacation_rental_software SQL injection vulnerability in index.php in CommodityRentals Vacation Rental Software allows remote attackers to execute arbitrary SQL commands via the rental_id parameter in a CalendarView action. CWE-89
SQL Injection 		CVE-2010-0763 2010-03-3 14:00 2010-03-3 Show GitHub Exploit DB Packet Storm
347222 - snowflake t3blog Cross-site scripting (XSS) vulnerability in the T3BLOG extension 0.6.2 and earlier for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. CWE-79
Cross-site Scripting 		CVE-2010-0797 2010-03-3 14:00 2010-03-3 Show GitHub Exploit DB Packet Storm
347223 - snowflake t3blog SQL injection vulnerability in the T3BLOG extension 0.6.2 and earlier for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors. CWE-89
SQL Injection 		CVE-2010-0798 2010-03-3 14:00 2010-03-3 Show GitHub Exploit DB Packet Storm
347224 - perlunity phpunity.newsmanager Directory traversal vulnerability in misc/tell_a_friend/tell.php in phpunity.newsmanager allows remote attackers to read arbitrary files via a .. (dot dot) in the id parameter. CWE-22
Path Traversal 		CVE-2010-0799 2010-03-3 14:00 2010-03-3 Show GitHub Exploit DB Packet Storm
347225 - autartica com_autartitarot Directory traversal vulnerability in the AutartiTarot (com_autartitarot) component 1.0.3 for Joomla! allows remote authenticated users, with "Public Back-end" group permissions, to read arbitrary fil… CWE-22
Path Traversal 		CVE-2010-0801 2010-03-3 14:00 2010-03-3 Show GitHub Exploit DB Packet Storm
347226 - aleinbeen \(nv2\)_awards SQL injection vulnerability in index.php in (nv2) Awards 1.1.0, a modification for Invision Power Board, allows remote attackers to execute arbitrary SQL commands via the id parameter in a view actio… CWE-89
SQL Injection 		CVE-2010-0802 2010-03-3 14:00 2010-03-3 Show GitHub Exploit DB Packet Storm
347227 - sun java_system_application_server Cross-site scripting (XSS) vulnerability in Sun Java System Application Server 7 allows remote attackers to inject arbitrary web script or HTML via unknown vectors. NVD-CWE-Other
CVE-2005-0742 2010-03-2 14:36 2005-05-2 Show GitHub Exploit DB Packet Storm
347228 - basic-cms basic-cms Cross-site scripting (XSS) vulnerability in pages/index.php in BASIC-CMS allows remote attackers to inject arbitrary web script or HTML via the nav_id parameter. CWE-79
Cross-site Scripting 		CVE-2010-0695 2010-03-2 14:00 2010-02-24 Show GitHub Exploit DB Packet Storm
347229 - ibm websphere_portal Cross-site scripting (XSS) vulnerability in the Portlet Palette in IBM WebSphere Portal 6.0.1.5 wp6015_008_01 allows remote attackers to inject arbitrary web script or HTML via the search field. CWE-79
Cross-site Scripting 		CVE-2010-0704 2010-03-2 14:00 2010-02-25 Show GitHub Exploit DB Packet Storm
347230 - moinmo moinmoin MoinMoin 1.9 before 1.9.1 does not perform the expected clearing of the sys.argv array in situations where the GATEWAY_INTERFACE environment variable is set, which allows remote attackers to obtain s… CWE-200
Information Exposure 		CVE-2010-0667 2010-03-1 14:00 2010-02-27 Show GitHub Exploit DB Packet Storm