Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 20, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 240621 | 4.3 | 警告 | SIR | - | GNUBoard の file_download 関数におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2012-4873 | 2012-09-11 10:11 | 2012-03-9 | Show | GitHub Exploit DB Packet Storm |
| 240622 | 4.3 | 警告 | Kayako | - | Kayako Fusion におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2012-4872 | 2012-09-11 10:10 | 2012-09-6 | Show | GitHub Exploit DB Packet Storm |
| 240623 | 4.3 | 警告 | LiteSpeed Technologies | - | LiteSpeed Web Server の管理者パネルにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2012-4871 | 2012-09-11 10:10 | 2012-09-6 | Show | GitHub Exploit DB Packet Storm |
| 240624 | 4.3 | 警告 | Public Knowledge Project | - | Open Journal Systems におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2012-1469 | 2012-09-11 10:09 | 2012-03-16 | Show | GitHub Exploit DB Packet Storm |
| 240625 | 6 | 警告 | Public Knowledge Project | - | Open Journal Systems における任意のコードを実行される脆弱性 |
CWE-Other
その他 |
CVE-2012-1468 | 2012-09-11 10:08 | 2012-03-16 | Show | GitHub Exploit DB Packet Storm |
| 240626 | 7.5 | 危険 | Public Knowledge Project | - | Open Journal Systems で使用される iBrowser プラグインライブラリにおけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2012-1467 | 2012-09-11 10:07 | 2012-03-16 | Show | GitHub Exploit DB Packet Storm |
| 240627 | 4.3 | 警告 | Joomla! | - | Joomla! の Update Manager におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2012-1612 | 2012-09-11 10:05 | 2012-04-2 | Show | GitHub Exploit DB Packet Storm |
| 240628 | 5 | 警告 | Joomla! | - | Joomla! におけるインストールパスを取得される脆弱性 |
CWE-200
情報漏えい |
CVE-2012-0837 | 2012-09-11 10:04 | 2012-02-2 | Show | GitHub Exploit DB Packet Storm |
| 240629 | 5 | 警告 | Joomla! | - | Joomla! におけるエラーログを読まれる脆弱性 |
CWE-noinfo
情報不足 |
CVE-2012-0836 | 2012-09-11 10:03 | 2012-02-2 | Show | GitHub Exploit DB Packet Storm |
| 240630 | 5 | 警告 | Joomla! | - | Joomla! における重要な情報を取得される脆弱性 |
CWE-noinfo
情報不足 |
CVE-2012-0835 | 2012-09-11 10:02 | 2012-02-2 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 20, 2026, 4:14 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 267081 | 8.4 |
HIGH
Local |
qemu canonical debian redhat |
qemu ubuntu_linux debian_linux openstack virtualization enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterprise_linux_server_tus enterprise… |
The net_checksum_calculate function in net/checksum.c in QEMU allows local guest OS users to cause a denial of service (out-of-bounds heap read and crash) via the payload length in a crafted packet. |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2016-2857 | 2024-11-21 11:48 | 2016-04-12 | Show | GitHub Exploit DB Packet Storm |
| 267082 | 9.8 |
CRITICAL
Network |
debian kamailio |
debian_linux kamailio |
Heap-based buffer overflow in the encode_msg function in encode_msg.c in the SEAS module in Kamailio (formerly OpenSER and SER) before 4.3.5 allows remote attackers to cause a denial of service (memo… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2016-2385 | 2024-11-21 11:48 | 2016-04-12 | Show | GitHub Exploit DB Packet Storm |
| 267083 | 7.5 |
HIGH
Network |
postgresql | postgresql | PostgreSQL before 9.5.x before 9.5.2 does not properly maintain row-security status in cached plans, which might allow attackers to bypass intended access restrictions by leveraging a session that pe… |
CWE-254
7PK - Security Features |
CVE-2016-2193 | 2024-11-21 11:48 | 2016-04-12 | Show | GitHub Exploit DB Packet Storm |
| 267084 | 7.8 |
HIGH
Local |
lenovo |
fingerprint_manager touch_fingerprint |
Lenovo Fingerprint Manager before 8.01.57 and Touch Fingerprint before 1.00.08 use weak ACLs for unspecified (1) services and (2) files, which allows local users to gain privileges by invalidating lo… |
CWE-264
Permissions, Privileges, and Access Controls |
CVE-2016-2393 | 2024-11-21 11:48 | 2016-04-11 | Show | GitHub Exploit DB Packet Storm |
| 267085 | 3.1 |
LOW
Network |
djangoproject | django | The password hasher in contrib/auth/hashers.py in Django before 1.8.10 and 1.9.x before 1.9.3 allows remote attackers to enumerate users via a timing attack involving login requests. |
CWE-200
Information Exposure |
CVE-2016-2513 | 2024-11-21 11:48 | 2016-04-9 | Show | GitHub Exploit DB Packet Storm |
| 267086 | 7.4 |
HIGH
Network |
djangoproject | django | The utils.http.is_safe_url function in Django before 1.8.10 and 1.9.x before 1.9.3 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks or possibly conduct cr… |
CWE-79
Cross-site Scripting |
CVE-2016-2512 | 2024-11-21 11:48 | 2016-04-9 | Show | GitHub Exploit DB Packet Storm |
| 267087 | 7.5 |
HIGH
Network |
perl debian oracle opensuse canonical |
perl debian_linux solaris database_server communications_billing_and_revenue_management enterprise_manager_base_platform configuration_manager timesten_in-memory_database open… |
Perl might allow context-dependent attackers to bypass the taint protection mechanism in a child process via duplicate environment variables in envp. |
CWE-20
Improper Input Validation |
CVE-2016-2381 | 2024-11-21 11:48 | 2016-04-9 | Show | GitHub Exploit DB Packet Storm |
| 267088 | 9.8 |
CRITICAL
Network |
suse opensuse git-scm |
openstack_cloud linux_enterprise_software_development_kit linux_enterprise_server linux_enterprise_debuginfo leap opensuse suse_linux_enterprise_server git |
Integer overflow in Git before 2.7.4 allows remote attackers to execute arbitrary code via a (1) long filename or (2) many nested trees, which triggers a heap-based buffer overflow. |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2016-2324 | 2024-11-21 11:48 | 2016-04-8 | Show | GitHub Exploit DB Packet Storm |
| 267089 | 9.8 |
CRITICAL
Network |
suse opensuse git-scm |
openstack_cloud linux_enterprise_software_development_kit linux_enterprise_server linux_enterprise_debuginfo leap opensuse suse_linux_enterprise_server git |
revision.c in git before 2.7.4 uses an incorrect integer data type, which allows remote attackers to execute arbitrary code via a (1) long filename or (2) many nested trees, leading to a heap-based b… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2016-2315 | 2024-11-21 11:48 | 2016-04-8 | Show | GitHub Exploit DB Packet Storm |
| 267090 | 9.8 |
CRITICAL
Network |
debian opensuse cypherpunks |
debian_linux leap opensuse libotr |
Integer overflow in proto.c in libotr before 4.1.1 on 64-bit platforms allows remote attackers to cause a denial of service (memory corruption and application crash) or execute arbitrary code via a s… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2016-2851 | 2024-11-21 11:48 | 2016-04-8 | Show | GitHub Exploit DB Packet Storm |