Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 13, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
206351 7.8 重要
Local 		openSUSE project
CRIU		 - CRIU のサービスデーモンにおける任意のファイルを作成される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2015-5228 2016-06-9 14:38 2015-08-25 Show GitHub Exploit DB Packet Storm
206352 7.5 重要
Network 		Debian
FreeType Project		 - FreeType の type42/t42parse.c の t42_parse_encoding 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2014-9747 2016-06-9 14:38 2014-01-23 Show GitHub Exploit DB Packet Storm
206353 8.1 重要
Network 		Apache Software Foundation - Apache James Server における任意のシステムコマンドを実行される脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2015-7611 2016-06-9 12:30 2015-09-30 Show GitHub Exploit DB Packet Storm
206354 7.1 重要
Local 		Debian
Canonical
Spice Project
レッドハット		 - SPICE におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2015-5261 2016-06-9 12:06 2015-10-6 Show GitHub Exploit DB Packet Storm
206355 9.1 緊急
Network 		SUSE
IBM		 - IBM SDK, Java Technology Edition の J9 JVM における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2015-5041 2016-06-8 18:08 2015-04-29 Show GitHub Exploit DB Packet Storm
206356 8.1 重要
Network 		山田巧 - DXライブラリにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2016-1131 2016-06-8 18:05 2016-01-5 Show GitHub Exploit DB Packet Storm
206357 6.1 警告
Network 		株式会社エヌ・ティ・ティピー・シーコミュニケーションズ - WebARENA フォームメールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-1230 2016-06-8 17:57 2016-05-27 Show GitHub Exploit DB Packet Storm
206358 5.4 警告
Network 		Markdown on Save Improved - WordPress 用プラグイン Markdown on Save Improved におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-4812 2016-06-8 17:57 2016-05-25 Show GitHub Exploit DB Packet Storm
206359 6.1 警告
コウベビューティー株式会社 - php-contact-form におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-1222 2016-06-8 17:57 2016-05-24 Show GitHub Exploit DB Packet Storm
206360 4.1 警告
Network 		futomi - MP Form Mail CGI Professional 版におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2016-1212 2016-06-8 17:57 2016-05-20 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 13, 2026, 4:20 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
346931 - ibm websphere_application_server The (1) JAX-RPC WS-Security 1.0 and (2) JAX-WS runtime implementations in IBM WebSphere Application Server (WAS) 6.0 before 6.0.2.41, 6.1 before 6.1.0.31, and 7.0 before 7.0.0.11 do not properly hand… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2010-0774 2017-08-17 10:32 2010-05-18 Show GitHub Exploit DB Packet Storm
346932 - ibm websphere_application_server Unspecified vulnerability in IBM WebSphere Application Server (WAS) 6.0 before 6.0.2.41, 6.1 before 6.1.0.31, and 7.0 before 7.0.0.11 allows remote attackers to cause a denial of service (memory cons… NVD-CWE-noinfo
CWE-399
 Resource Management Errors 		CVE-2010-0775 2017-08-17 10:32 2010-05-18 Show GitHub Exploit DB Packet Storm
346933 - ibm websphere_application_server The Web Container in IBM WebSphere Application Server (WAS) 6.0 before 6.0.2.43, 6.1 before 6.1.0.31, and 7.0 before 7.0.0.11 does not properly handle chunked transfer encoding during a call to respo… CWE-20
 Improper Input Validation  		CVE-2010-0776 2017-08-17 10:32 2010-05-18 Show GitHub Exploit DB Packet Storm
346934 - ibm websphere_application_server The Web Container in IBM WebSphere Application Server (WAS) 6.0 before 6.0.2.43, 6.1 before 6.1.0.31, and 7.0 before 7.0.0.11 does not properly handle long filenames and consequently sends an incorre… CWE-20
 Improper Input Validation  		CVE-2010-0777 2017-08-17 10:32 2010-05-18 Show GitHub Exploit DB Packet Storm
346935 - fuse fuse fusermount in FUSE before 2.7.5, and 2.8.x before 2.8.2, allows local users to unmount an arbitrary FUSE filesystem share via a symlink attack on a mountpoint. CWE-59
Link Following 		CVE-2010-0789 2017-08-17 10:32 2010-03-3 Show GitHub Exploit DB Packet Storm
346936 - harmistechnology com_jeeventcalendar SQL injection vulnerability in the JE Event Calendars (com_jeeventcalendar) component 1.0 for Joomla! allows remote attackers to execute arbitrary SQL commands via the event_id parameter in an event … CWE-89
SQL Injection 		CVE-2010-0795 2017-08-17 10:32 2010-03-3 Show GitHub Exploit DB Packet Storm
346937 - harmistechnology com_jeeventcalendar SQL injection vulnerability in the JE Quiz (com_jequizmanagement) component 1.b01 for Joomla! allows remote attackers to execute arbitrary SQL commands via the eid parameter in a question action to i… CWE-89
SQL Injection 		CVE-2010-0796 2017-08-17 10:32 2010-03-3 Show GitHub Exploit DB Packet Storm
346938 - joomservices com_dms SQL injection vulnerability in the Ossolution Team Documents Seller (aka DMS) (com_dms) component 2.5.1 for Joomla! allows remote attackers to execute arbitrary SQL commands via the category_id param… CWE-89
SQL Injection 		CVE-2010-0800 2017-08-17 10:32 2010-03-3 Show GitHub Exploit DB Packet Storm
346939 - jvideodirect com_jvideodirect SQL injection vulnerability in the jVideoDirect (com_jvideodirect) component 1.1 RC3b for Joomla! allows remote attackers to execute arbitrary SQL commands via the v parameter to index.php. CWE-89
SQL Injection 		CVE-2010-0803 2017-08-17 10:32 2010-03-3 Show GitHub Exploit DB Packet Storm
346940 - gnu emacs lib-src/movemail.c in movemail in emacs 22 and 23 allows local users to read, modify, or delete arbitrary mailbox files via a symlink attack, related to improper file-permission checks. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2010-0825 2017-08-17 10:32 2010-04-6 Show GitHub Exploit DB Packet Storm