Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 27, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228261	2.1	注意	Paul Maddern	-	Drupal 用 Imagemenu モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-6583	2013-08-26 15:25	2012-09-19	Show	GitHub Exploit DB Packet Storm

228262	2.1	注意	Simon Tatham	-	PuTTY におけるログインパスワードを読まれる脆弱性	CWE-200 情報漏えい	CVE-2011-4607	2013-08-26 14:02	2011-12-8	Show	GitHub Exploit DB Packet Storm

228263	7.8	危険	シスコシステムズ	-	Cisco Unified Communications Manager および Cisco Unified Presence におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2013-3453	2013-08-26 13:53	2013-08-21	Show	GitHub Exploit DB Packet Storm

228264	4	警告	IBM	-	IBM Optim Performance Manager および IBM InfoSphere Optim Performance Manager におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2013-2979	2013-08-26 13:34	2013-08-20	Show	GitHub Exploit DB Packet Storm

228265	2.6	注意	ヤフー株式会社	-	ヤフオク! における SSL サーバ証明書の検証不備の脆弱性	CWE-Other その他	CVE-2013-4699	2013-08-23 18:43	2013-08-19	Show	GitHub Exploit DB Packet Storm

228266	2.6	注意	ヤフー株式会社	-	Android 版 Yahoo!ショッピングにおける SSL サーバ証明書の検証不備の脆弱性	CWE-Other その他	CVE-2013-4700	2013-08-23 18:41	2013-08-19	Show	GitHub Exploit DB Packet Storm

228267	6.4	警告	JanRain	-	PHP OpenID Library における XML 外部実体参照に関する脆弱性	CWE-Other その他	CVE-2013-4701	2013-08-23 18:37	2013-08-21	Show	GitHub Exploit DB Packet Storm

228268	7.2	危険	マイクロソフト	-	複数の Microsoft Windows 製品のカーネルの NT Virtual DOS Machine サブシステムにおける権限昇格の脆弱性	CWE-119 バッファエラー	CVE-2013-3198	2013-08-23 17:56	2013-08-13	Show	GitHub Exploit DB Packet Storm

228269	7.2	危険	マイクロソフト	-	複数の Microsoft Windows 製品のカーネルの NT Virtual DOS Machine サブシステムにおける権限昇格の脆弱性	CWE-119 バッファエラー	CVE-2013-3197	2013-08-23 17:55	2013-08-13	Show	GitHub Exploit DB Packet Storm

228270	7.2	危険	マイクロソフト	-	複数の Microsoft Windows 製品のカーネルの NT Virtual DOS Machine サブシステムにおける権限昇格の脆弱性	CWE-119 バッファエラー	CVE-2013-3196	2013-08-23 17:54	2013-08-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 27, 2026, 4:35 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
276371	6.5	MEDIUM Network	uclouvain	openjpeg	Heap-based buffer overflow in the opj_j2k_update_image_data function in OpenJpeg 2016.1.18 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafte…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-1923	2024-11-21 11:47	2016-01-28	Show	GitHub Exploit DB Packet Storm

276372	9.8	CRITICAL Network	lexmark	printer_firmware	Race condition in the initialization process on Lexmark printers with firmware ATL before ATL.02.049, CB before CB.02.049, PP before PP.02.049, and YK before YK.02.049 allows remote attackers to bypa…	CWE-264 CWE-254 Permissions, Privileges, and Access Controls 7PK - Security Features	CVE-2016-1896	2024-11-21 11:47	2016-01-27	Show	GitHub Exploit DB Packet Storm

276373	6.1	MEDIUM Network	greenbone fedoraproject	greenbone_security_assistant greenbone_os fedora	Cross-site scripting (XSS) vulnerability in the charts module in Greenbone Security Assistant (GSA) 6.x before 6.0.8 allows remote attackers to inject arbitrary web script or HTML via the aggregate_t…	CWE-79 Cross-site Scripting	CVE-2016-1926	2024-11-21 11:47	2016-01-27	Show	GitHub Exploit DB Packet Storm

276374	7.6	HIGH Network	harfbuzz_project google	harfbuzz chrome	Multiple unspecified vulnerabilities in HarfBuzz before 1.0.6, as used in Google Chrome before 48.0.2564.82, allow attackers to cause a denial of service or possibly have other impact via crafted dat…	NVD-CWE-noinfo	CVE-2016-2052	2024-11-21 11:47	2016-01-25	Show	GitHub Exploit DB Packet Storm

276375	9.8	CRITICAL Network	google redhat	chrome enterprise_linux_desktop_supplementary enterprise_linux_server_supplementary enterprise_linux_workstation_supplementary enterprise_linux_server_supplementary_eus	Multiple unspecified vulnerabilities in Google V8 before 4.8.271.17, as used in Google Chrome before 48.0.2564.82, allow attackers to cause a denial of service or possibly have other impact via unkno…	NVD-CWE-noinfo	CVE-2016-2051	2024-11-21 11:47	2016-01-25	Show	GitHub Exploit DB Packet Storm

276376	9.8	CRITICAL Network	harman	amx_firmware	The setUpSubtleUserAccount function in /bin/bw on Harman AMX devices before 2016-01-20 has a hardcoded password for the 1MB@tMaN account, which makes it easier for remote attackers to obtain access v…	CWE-255 Credentials Management	CVE-2016-1984	2024-11-21 11:47	2016-01-22	Show	GitHub Exploit DB Packet Storm

276377	9.3	CRITICAL Network	sap	hana	The XS engine in SAP HANA allows remote attackers to spoof log entries in trace files and consequently cause a denial of service (disk consumption and process crash) via a crafted HTTP request, relat…	CWE-20 Improper Input Validation	CVE-2016-1929	2024-11-21 11:47	2016-01-21	Show	GitHub Exploit DB Packet Storm

276378	9.8	CRITICAL Network	sap	hana	Buffer overflow in the XS engine (hdbxsengine) in SAP HANA allows remote attackers to cause a denial of service or execute arbitrary code via a crafted HTTP request, related to JSON, aka SAP Security…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-1928	2024-11-21 11:47	2016-01-21	Show	GitHub Exploit DB Packet Storm

276379	9.8	CRITICAL Network	fedoraproject cgit_project	fedora cgit	Integer overflow in the authenticate_post function in CGit before 0.12 allows remote attackers to have unspecified impact via a large value in the Content-Length HTTP header, which triggers a buffer …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-1901	2024-11-21 11:47	2016-01-21	Show	GitHub Exploit DB Packet Storm

276380	3.7	LOW Network	fedoraproject cgit_project	fedora cgit	CRLF injection vulnerability in the cgit_print_http_headers function in ui-shared.c in CGit before 0.12 allows remote attackers with permission to write to a repository to inject arbitrary HTTP heade…	NVD-CWE-Other	CVE-2016-1900	2024-11-21 11:47	2016-01-21	Show	GitHub Exploit DB Packet Storm