Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 6, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
201001 4.3 警告
Network 		Open-Xchange - Open-Xchange OX App Suite における任意のテキストメッセージを挿入される脆弱性 CWE-451
ユーザインターフェースにおける重要情報の誤った表示 		CVE-2016-4048 2016-12-28 11:38 2016-06-22 Show GitHub Exploit DB Packet Storm
201002 4.3 警告
Network 		Open-Xchange - Open-Xchange OX App Suite における操作された文書へのアクセスを追跡される脆弱性 CWE-200
CWE-611
CVE-2016-4047 2016-12-28 11:38 2016-06-22 Show GitHub Exploit DB Packet Storm
201003 5.8 警告
Network 		Open-Xchange - Open-Xchange OX App Suite の外部メールアカウントを構成する API におけるホストおよびサービスに関する情報を収集される脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2016-4046 2016-12-28 11:38 2016-06-22 Show GitHub Exploit DB Packet Storm
201004 6.1 警告
Network 		Open-Xchange - Open-Xchange OX App Suite におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-4045 2016-12-28 11:38 2016-06-22 Show GitHub Exploit DB Packet Storm
201005 3.5
Network 		Open-Xchange - Open-Xchange OX AppSuite のフロントエンドにおけるユーザアカウントにアクセスされる脆弱性 CWE-200
情報漏えい 		CVE-2016-4027 2016-12-28 11:38 2016-06-20 Show GitHub Exploit DB Packet Storm
201006 6.1 警告
Network 		Open-Xchange - Open-Xchange OX AppSuite の content sanitizer コンポーネントにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-4026 2016-12-28 11:38 2016-05-10 Show GitHub Exploit DB Packet Storm
201007 5.4 警告
Network 		Open-Xchange - Open-Xchange OX AppSuite の Portal のタイルのラベルにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-3173 2016-12-28 11:38 2016-03-29 Show GitHub Exploit DB Packet Storm
201008 6.1 警告
Network 		Open-Xchange - Open-Xchange OX Guard におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-6854 2016-12-27 17:35 2016-09-13 Show GitHub Exploit DB Packet Storm
201009 6.1 警告
Network 		Open-Xchange - Open-Xchange OX Guard におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-6853 2016-12-27 17:35 2016-09-13 Show GitHub Exploit DB Packet Storm
201010 6.1 警告
Network 		Open-Xchange - Open-Xchange OX Guard におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-6851 2016-12-27 17:35 2016-09-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 6, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
345391 - vpasp vp-asp_shopping_cart Directory traversal vulnerability in shopsessionsubs.asp in Rocksalt International VP-ASP Shopping Cart 6.50 and earlier might allow remote attackers to determine the existence of arbitrary files via… CWE-22
Path Traversal 		CVE-2010-1589 2017-08-17 10:32 2010-04-29 Show GitHub Exploit DB Packet Storm
345392 - rising-global rising_antivirus Beijing Rising International Rising Antivirus 2008 through 2010 does not properly validate input to certain IOCTLs, including 0x83003C07, which allows local users to gain privileges via crafted IOCTL… CWE-20
 Improper Input Validation  		CVE-2010-1591 2017-08-17 10:32 2010-04-29 Show GitHub Exploit DB Packet Storm
345393 - ocsinventory-ng ocs_inventory_ng Multiple cross-site scripting (XSS) vulnerabilities in ocsreports/index.php in OCS Inventory NG 1.02.1 allow remote attackers to inject arbitrary web script or HTML via (1) the query string, (2) the … CWE-79
Cross-site Scripting 		CVE-2010-1594 2017-08-17 10:32 2010-04-29 Show GitHub Exploit DB Packet Storm
345394 - ocsinventory-ng ocs_inventory_ng Multiple SQL injection vulnerabilities in ocsreports/index.php in OCS Inventory NG 1.02.1 allow remote attackers to execute arbitrary SQL commands via the (1) c, (2) val_1, or (3) onglet_bis paramete… CWE-89
SQL Injection 		CVE-2010-1595 2017-08-17 10:32 2010-04-29 Show GitHub Exploit DB Packet Storm
345395 - sitracker support_incident_tracker Support Incident Tracker before 3.51, when using LDAP authentication with anonymous binds, allows remote attackers to bypass authentication via an empty password. CWE-287
Improper Authentication 		CVE-2010-1596 2017-08-17 10:32 2010-04-29 Show GitHub Exploit DB Packet Storm
345396 - zipgenius zipgenius Stack-based buffer overflow in zgtips.dll in ZipGenius 6.3.1.2552 allows user-assisted remote attackers to execute arbitrary code via a ZIP file containing an entry with a long filename. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2010-1597 2017-08-17 10:32 2010-04-30 Show GitHub Exploit DB Packet Storm
345397 - silisoftware phpthumb\(\) phpThumb.php in phpThumb() 1.7.9 and possibly other versions, when ImageMagick is installed, allows remote attackers to execute arbitrary commands via the fltr[] parameter, as discovered in the wild … CWE-20
 Improper Input Validation  		CVE-2010-1598 2017-08-17 10:32 2010-04-30 Show GitHub Exploit DB Packet Storm
345398 - nkinfoweb nkinfoweb SQL injection vulnerability in loadorder.php in NKInFoWeb 2.5 and 5.2.2.0 allows remote attackers to execute arbitrary SQL commands via the id_sp parameter. CWE-89
SQL Injection 		CVE-2010-1599 2017-08-17 10:32 2010-04-30 Show GitHub Exploit DB Packet Storm
345399 - thefactory com_mediamall SQL injection vulnerability in the Media Mall Factory (com_mediamall) component 1.0.4 for Joomla! allows remote attackers to execute arbitrary SQL commands via the category parameter to index.php. CWE-89
SQL Injection 		CVE-2010-1600 2017-08-17 10:32 2010-04-30 Show GitHub Exploit DB Packet Storm
345400 - joomlamart com_jacomment Directory traversal vulnerability in the JA Comment (com_jacomment) component for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the view parameter to index.php. CWE-22
Path Traversal 		CVE-2010-1601 2017-08-17 10:32 2010-04-30 Show GitHub Exploit DB Packet Storm