Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 18, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 240511 | 4.3 | 警告 | Bharat Mediratta | - | Gallery の管理サブシステムにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2012-1113 | 2012-09-5 16:51 | 2012-04-3 | Show | GitHub Exploit DB Packet Storm |
| 240512 | 9.3 | 危険 | アドビシステムズ | - | Adobe Flash Player における任意のコードを実行される脆弱性 |
CWE-noinfo
情報不足 |
CVE-2012-0779 | 2012-09-5 16:37 | 2012-05-4 | Show | GitHub Exploit DB Packet Storm |
| 240513 | 2.9 | 注意 | シマンテック | - | Symantec PGP Universal Server における秘密鍵を読まれる脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2012-3582 | 2012-09-5 15:12 | 2012-08-30 | Show | GitHub Exploit DB Packet Storm |
| 240514 | 7.7 | 危険 | GarrettCom, Inc. | - | GarrettCom Magnum MNS-6K の Management Software アプリケーションにおける権限を取得される脆弱性 |
CWE-255
証明書・パスワード管理 |
CVE-2012-3014 | 2012-09-5 15:09 | 2012-08-30 | Show | GitHub Exploit DB Packet Storm |
| 240515 | 10 | 危険 | アドビシステムズ | - | Adobe Photoshop におけるヒープベースのバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2012-0275 | 2012-09-5 14:27 | 2012-08-30 | Show | GitHub Exploit DB Packet Storm |
| 240516 | 9.3 | 危険 | DELL EMC (旧 EMC Corporation) | - | EMC NetWorker の nsrd RPC サービスにおけるフォーマットストリングの脆弱性 |
CWE-134
書式文字列の問題 |
CVE-2012-2288 | 2012-09-5 14:26 | 2012-09-4 | Show | GitHub Exploit DB Packet Storm |
| 240517 | 6.8 | 警告 | ZTE | - | ZTE ZXDSL の accessaccount.cgi におけるクロスサイトリクエストフォージェリの脆弱性 |
CWE-352
同一生成元ポリシー違反 |
CVE-2012-4746 | 2012-09-5 11:48 | 2012-08-31 | Show | GitHub Exploit DB Packet Storm |
| 240518 | 4.3 | 警告 | The Collective | - | Acuity CMS の admin/login.asp におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2012-4745 | 2012-09-5 11:47 | 2012-08-31 | Show | GitHub Exploit DB Packet Storm |
| 240519 | 4.3 | 警告 | eos.pe | - | Zeroboard 用 Siche Search モジュールにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2012-4744 | 2012-09-5 11:46 | 2012-08-31 | Show | GitHub Exploit DB Packet Storm |
| 240520 | 7.5 | 危険 | eos.pe | - | Zeroboard 用 Siche Search モジュールにおける SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2012-4743 | 2012-09-5 11:45 | 2012-08-31 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 19, 2026, 4:16 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 267651 | 9.8 |
CRITICAL
Network |
redhat opensuse |
enterprise_linux_server_supplementary_eus enterprise_linux_desktop_supplementary enterprise_linux_server_supplementary enterprise_linux_workstation_supplementary opensuse chrome |
Multiple unspecified vulnerabilities in Google Chrome before 50.0.2661.94 allow attackers to cause a denial of service or possibly have other impact via unknown vectors. |
NVD-CWE-noinfo
|
CVE-2016-1666 | 2024-11-21 11:46 | 2016-05-15 | Show | GitHub Exploit DB Packet Storm |
| 267652 | 6.5 |
MEDIUM
Network |
opensuse redhat |
opensuse enterprise_linux_server_supplementary_eus enterprise_linux_desktop_supplementary enterprise_linux_server_supplementary enterprise_linux_workstation_supplementary chrome |
The JSGenericLowering class in compiler/js-generic-lowering.cc in Google V8, as used in Google Chrome before 50.0.2661.94, mishandles comparison operators, which allows remote attackers to obtain sen… |
CWE-20
Improper Input Validation |
CVE-2016-1665 | 2024-11-21 11:46 | 2016-05-15 | Show | GitHub Exploit DB Packet Storm |
| 267653 | 4.3 |
MEDIUM
Network |
google redhat opensuse |
chrome enterprise_linux_server_supplementary_eus enterprise_linux_desktop_supplementary enterprise_linux_server_supplementary enterprise_linux_workstation_supplementary opensuse |
The HistoryController::UpdateForCommit function in content/renderer/history_controller.cc in Google Chrome before 50.0.2661.94 mishandles the interaction between subframe forward navigations and othe… |
CWE-254
7PK - Security Features |
CVE-2016-1664 | 2024-11-21 11:46 | 2016-05-15 | Show | GitHub Exploit DB Packet Storm |
| 267654 | 8.8 |
HIGH
Network |
opensuse redhat |
opensuse enterprise_linux_server_supplementary_eus enterprise_linux_desktop_supplementary enterprise_linux_server_supplementary enterprise_linux_workstation_supplementary chrome |
The SerializedScriptValue::transferArrayBuffers function in WebKit/Source/bindings/core/v8/SerializedScriptValue.cpp in the V8 bindings in Blink, as used in Google Chrome before 50.0.2661.94, mishand… |
NVD-CWE-Other
|
CVE-2016-1663 | 2024-11-21 11:46 | 2016-05-15 | Show | GitHub Exploit DB Packet Storm |
| 267655 | 9.8 |
CRITICAL
Network |
google redhat opensuse |
chrome enterprise_linux_server_supplementary_eus enterprise_linux_desktop_supplementary enterprise_linux_server_supplementary enterprise_linux_workstation_supplementary opensuse |
extensions/renderer/gc_callback.cc in Google Chrome before 50.0.2661.94 does not prevent fallback execution once the Garbage Collection callback has started, which allows remote attackers to cause a … |
NVD-CWE-Other
|
CVE-2016-1662 | 2024-11-21 11:46 | 2016-05-15 | Show | GitHub Exploit DB Packet Storm |
| 267656 | 8.0 |
HIGH
Network |
redhat opensuse |
enterprise_linux_server_supplementary_eus enterprise_linux_desktop_supplementary enterprise_linux_server_supplementary enterprise_linux_workstation_supplementary chrome opensuse |
Blink, as used in Google Chrome before 50.0.2661.94, does not ensure that frames satisfy a check for the same renderer process in addition to a Same Origin Policy check, which allows remote attackers… |
CWE-20
Improper Input Validation |
CVE-2016-1661 | 2024-11-21 11:46 | 2016-05-15 | Show | GitHub Exploit DB Packet Storm |
| 267657 | 8.8 |
HIGH
Network |
opensuse redhat |
opensuse enterprise_linux_server_supplementary_eus enterprise_linux_desktop_supplementary enterprise_linux_server_supplementary enterprise_linux_workstation_supplementary chrome |
Blink, as used in Google Chrome before 50.0.2661.94, mishandles assertions in the WTF::BitArray and WTF::double_conversion::Vector classes, which allows remote attackers to cause a denial of service … |
CWE-20
Improper Input Validation |
CVE-2016-1660 | 2024-11-21 11:46 | 2016-05-15 | Show | GitHub Exploit DB Packet Storm |
| 267658 | 7.5 |
HIGH
Network |
cisco | ios | The packet-processing microcode in Cisco IOS 15.2(2)EA, 15.2(2)EA1, 15.2(2)EA2, and 15.2(4)EA on Industrial Ethernet 4000 devices and 15.2(2)EB and 15.2(2)EB1 on Industrial Ethernet 5000 devices allo… |
CWE-399
Resource Management Errors |
CVE-2016-1399 | 2024-11-21 11:46 | 2016-05-14 | Show | GitHub Exploit DB Packet Storm |
| 267659 | 9.8 |
CRITICAL
Network |
canonical | ubuntu-core-launcher | The setup_snappy_os_mounts function in the ubuntu-core-launcher package before 1.0.27.1 improperly determines the mount point of bind mounts when using snaps, which might allow remote attackers to ob… |
CWE-264
Permissions, Privileges, and Access Controls |
CVE-2016-1580 | 2024-11-21 11:46 | 2016-05-13 | Show | GitHub Exploit DB Packet Storm |
| 267660 | 9.8 |
CRITICAL
Network |
canonical oxide_project |
ubuntu_linux oxide |
Use-after-free vulnerability in Oxide allows remote attackers to cause a denial of service (application crash) or execute arbitrary code via unspecified vectors, related to responding synchronously t… |
NVD-CWE-Other
|
CVE-2016-1578 | 2024-11-21 11:46 | 2016-05-13 | Show | GitHub Exploit DB Packet Storm |