Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 4:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
204761 5.4 警告
Network
Open-Xchange - Open-Xchange OX AppSuite の Portal のタイルのラベルにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2016-3173 2016-12-28 11:38 2016-03-29 Show GitHub Exploit DB Packet Storm
204762 6.1 警告
Network
Open-Xchange - Open-Xchange OX Guard におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2016-6854 2016-12-27 17:35 2016-09-13 Show GitHub Exploit DB Packet Storm
204763 6.1 警告
Network
Open-Xchange - Open-Xchange OX Guard におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2016-6853 2016-12-27 17:35 2016-09-13 Show GitHub Exploit DB Packet Storm
204764 6.1 警告
Network
Open-Xchange - Open-Xchange OX Guard におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2016-6851 2016-12-27 17:35 2016-09-13 Show GitHub Exploit DB Packet Storm
204765 7.5 重要
Network
Open-Xchange - Open-Xchange OX Guard の API におけるパディングを推測される脆弱性 CWE-255
証明書・パスワード管理
CVE-2016-4028 2016-12-27 17:35 2016-06-22 Show GitHub Exploit DB Packet Storm
204766 6.1 警告
Network
Open-Xchange - Open-Xchange Server 6 および OX AppSuite における信頼できるドメインのコンテキスト内で悪意のあるスクリプトが実行される脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2016-2840 2016-12-27 17:35 2016-03-14 Show GitHub Exploit DB Packet Storm
204767 8.8 重要
Network
Open-Xchange - Open-Xchange Guard におけるハッシュ化されたパスワードを取得される脆弱性 CWE-320
鍵管理のエラー
CVE-2015-8542 2016-12-27 17:35 2015-12-16 Show GitHub Exploit DB Packet Storm
204768 6.5 警告
Network
IBM
MariaDB Corporation Ab.
オラクル
- Oracle MySQL の MySQL Server における Server: Types に関する脆弱性 CWE-noinfo
情報不足
CVE-2016-3521 2016-12-27 14:21 2016-07-19 Show GitHub Exploit DB Packet Storm
204769 8.8 重要
Network
ネットギア - 複数の NETGEAR 製ルータに脆弱性 CWE-306
CWE-352
CWE-77
CVE-2016-6277 2016-12-27 14:16 2016-12-9 Show GitHub Exploit DB Packet Storm
204770 1.7 注意 MySQL AB
openSUSE project
Canonical
Debian
MariaDB Corporation Ab.
オラクル
レッドハット
- Oracle MySQL の MySQL Server および MariaDB における Privileges に関する脆弱性 CWE-noinfo
情報不足
CVE-2016-0609 2016-12-27 10:52 2016-01-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
349971 - cisco ios Cisco IOS 12.1 through 12.4, when Cisco Unified Communications Manager Express (CME) or Cisco Unified Survivable Remote Site Telephony (SRST) is enabled, allows remote attackers to cause a denial of … NVD-CWE-noinfo
CVE-2010-0586 2017-09-19 10:30 2010-03-26 Show GitHub Exploit DB Packet Storm
349972 - google chrome Google Chrome before 4.0.249.89 attempts to make direct connections to web sites when all configured proxy servers are unavailable, which allows remote HTTP servers to obtain potentially sensitive in… CWE-200
Information Exposure
CVE-2010-0643 2017-09-19 10:30 2010-02-19 Show GitHub Exploit DB Packet Storm
349973 - google chrome Google Chrome before 4.0.249.89, when a SOCKS 5 proxy server is configured, sends DNS queries directly, which allows remote DNS servers to obtain potentially sensitive information about the identity … CWE-200
Information Exposure
CVE-2010-0644 2017-09-19 10:30 2010-02-19 Show GitHub Exploit DB Packet Storm
349974 - google chrome Multiple integer overflows in factory.cc in Google V8 before r3560, as used in Google Chrome before 4.0.249.89, allow remote attackers to execute arbitrary code in the Chrome sandbox via crafted use … CWE-189
Numeric Errors
CVE-2010-0645 2017-09-19 10:30 2010-02-19 Show GitHub Exploit DB Packet Storm
349975 - google chrome Multiple integer signedness errors in factory.cc in Google V8 before r3560, as used in Google Chrome before 4.0.249.89, allow remote attackers to execute arbitrary code in the Chrome sandbox via craf… CWE-189
Numeric Errors
CVE-2010-0646 2017-09-19 10:30 2010-02-19 Show GitHub Exploit DB Packet Storm
349976 - apple
google
webkit
chrome
WebKit before r53525, as used in Google Chrome before 4.0.249.89, allows remote attackers to execute arbitrary code in the Chrome sandbox via a malformed RUBY element, as demonstrated by a <ruby>><ta… CWE-94
Code Injection
CVE-2010-0647 2017-09-19 10:30 2010-02-19 Show GitHub Exploit DB Packet Storm
349977 - mozilla firefox Mozilla Firefox, possibly before 3.6, allows remote attackers to discover a redirect's target URL, for the session of a specific user of a web site, by placing the site's URL in the HREF attribute of… CWE-200
Information Exposure
CVE-2010-0648 2017-09-19 10:30 2010-02-19 Show GitHub Exploit DB Packet Storm
349978 - google chrome Integer overflow in the CrossCallParamsEx::CreateFromBuffer function in sandbox/src/crosscall_server.cc in Google Chrome before 4.0.249.89 allows attackers to leverage renderer access to cause a deni… CWE-189
Numeric Errors
CVE-2010-0649 2017-09-19 10:30 2010-02-19 Show GitHub Exploit DB Packet Storm
349979 - apple
google
webkit
chrome
safari
WebKit before r52784, as used in Google Chrome before 4.0.249.78 and Apple Safari before 4.0.5, permits cross-origin loading of CSS stylesheets even when the stylesheet download has an incorrect MIME… CWE-200
Information Exposure
CVE-2010-0651 2017-09-19 10:30 2010-02-19 Show GitHub Exploit DB Packet Storm
349980 - mozilla firefox
seamonkey
thunderbird
Mozilla Firefox 3.5.x before 3.5.11 and 3.6.x before 3.6.7, Thunderbird 3.0.x before 3.0.6 and 3.1.x before 3.1.1, and SeaMonkey before 2.0.6 permit cross-origin loading of CSS stylesheets even when … CWE-200
Information Exposure
CVE-2010-0654 2017-09-19 10:30 2010-02-19 Show GitHub Exploit DB Packet Storm