Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 19, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
240701	6.5	警告	Katello Project	-	Katello における任意のユーザーとして CloudForms System Engine の Web インターフェイスに認証される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-3503	2012-08-28 15:35	2012-08-25	Show	GitHub Exploit DB Packet Storm

240702	5	警告	Gilles Darold	-	SquidClamav の squidclamav.c におけるサービス運用妨害 (デーモンクラッシュ) の脆弱性	CWE-119 バッファエラー	CVE-2012-3501	2012-08-28 15:34	2012-08-25	Show	GitHub Exploit DB Packet Storm

240703	6.8	警告	The GIMP Team	-	GIMP の Adobe Photoshop PSD プラグインにおける整数オーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-3402	2012-08-28 13:49	2012-08-25	Show	GitHub Exploit DB Packet Storm

240704	4.3	警告	OpenTTD	-	OpenTTD におけるサービス運用妨害 (ゲーム休止) の脆弱性	CWE-399 リソース管理の問題	CVE-2012-0048	2012-08-28 13:47	2012-01-6	Show	GitHub Exploit DB Packet Storm

240705	4.3	警告	アドビシステムズ	-	Adobe Flash Player におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-0767	2012-08-27 16:55	2012-02-15	Show	GitHub Exploit DB Packet Storm

240706	10	危険	アドビシステムズ	-	Adobe Flash Player におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-0756	2012-08-27 16:54	2012-02-15	Show	GitHub Exploit DB Packet Storm

240707	10	危険	アドビシステムズ	-	Adobe Flash Player におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-0755	2012-08-27 16:53	2012-02-15	Show	GitHub Exploit DB Packet Storm

240708	10	危険	アドビシステムズ	-	Adobe Flash Player における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2012-0754	2012-08-27 16:52	2012-02-15	Show	GitHub Exploit DB Packet Storm

240709	10	危険	アドビシステムズ	-	Adobe Flash Player における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2012-0753	2012-08-27 16:52	2012-02-15	Show	GitHub Exploit DB Packet Storm

240710	3.5	注意	IBM	-	IBM DB2 における任意の XML ファイルを読まれる脆弱性	CWE-noinfo 情報不足	CVE-2012-0713	2012-08-27 14:35	2012-02-15	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
267001	9.8	CRITICAL Network	gentoo	portage	In Gentoo Portage before 3.0.47, there is missing PGP validation of executed code: the standalone emerge-webrsync downloads a .gpgsig file but does not perform signature verification. Unless emerge-w…	CWE-347 Improper Verification of Cryptographic Signature	CVE-2016-20021	2024-11-21 11:47	2024-01-12	Show	GitHub Exploit DB Packet Storm

267002	7.5	HIGH Network	knexjs	knex	Knex Knex.js through 2.3.0 has a limited SQL injection vulnerability that can be exploited to ignore the WHERE clause of a SQL query.	CWE-89 SQL Injection	CVE-2016-20018	2024-11-21 11:47	2022-12-19	Show	GitHub Exploit DB Packet Storm

267003	9.8	CRITICAL Network	dlink	dsl-2750b_firmware	D-Link DSL-2750B devices before 1.05 allow remote unauthenticated command injection via the login.cgi cli parameter, as exploited in the wild in 2016 through 2022.	CWE-77 Command Injection	CVE-2016-20017	2024-11-21 11:47	2022-10-19	Show	GitHub Exploit DB Packet Storm

267004	9.8	CRITICAL Network	mvpower	tv-7104he_firmware tv7108he_firmware	MVPower CCTV DVR models, including TV-7104HE 1.8.4 115215B9 and TV7108HE, contain a web shell that is accessible via a /shell URI. A remote unauthenticated attacker can execute arbitrary operating sy…	NVD-CWE-noinfo	CVE-2016-20016	2024-11-21 11:47	2022-10-19	Show	GitHub Exploit DB Packet Storm

267005	7.5	HIGH Network	smokeping	smokeping	In the ebuild package through smokeping-2.7.3-r1 for SmokePing on Gentoo, the initscript allows the smokeping user to gain ownership of any file, allowing for the smokeping user to gain root privileg…	NVD-CWE-noinfo	CVE-2016-20015	2024-11-21 11:47	2022-09-21	Show	GitHub Exploit DB Packet Storm

267006	6.4	MEDIUM Network	kippo-graph_project	kippo-graph	In kippo-graph before version 1.5.1, there is a cross-site scripting vulnerability in $file_link in class/KippoInput.class.php.	CWE-79 Cross-site Scripting	CVE-2016-2139	2024-11-21 11:47	2022-07-29	Show	GitHub Exploit DB Packet Storm

267007	6.4	MEDIUM Network	kippo-graph_project	kippo-graph	In kippo-graph before version 1.5.1, there is a cross-site scripting vulnerability in xss_clean() in class/KippoInput.class.php.	CWE-79 Cross-site Scripting	CVE-2016-2138	2024-11-21 11:47	2022-07-29	Show	GitHub Exploit DB Packet Storm

267008	9.8	CRITICAL Network	pam_tacplus_project	pam_tacplus	In pam_tacplus.c in pam_tacplus before 1.4.1, pam_sm_acct_mgmt does not zero out the arep data structure.	NVD-CWE-Other	CVE-2016-20014	2024-11-21 11:47	2022-04-21	Show	GitHub Exploit DB Packet Storm

267009	7.5	HIGH Network	sha256crypt_project sha512crypt_project	sha256crypt sha512crypt	sha256crypt and sha512crypt through 0.6 allow attackers to cause a denial of service (CPU consumption) because the algorithm's runtime is proportional to the square of the length of the password.	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2016-20013	2024-11-21 11:47	2022-02-19	Show	GitHub Exploit DB Packet Storm

267010	5.9	MEDIUM Network	samba debian fedoraproject redhat canonical	samba debian_linux fedora enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_for_scientific_computing enterprise_linux enterprise_linux_server enterprise_l…	A flaw was found in the way samba implemented SMB1 authentication. An attacker could use this flaw to retrieve the plaintext password sent over the wire even if Kerberos authentication was required.	CWE-287 Improper Authentication	CVE-2016-2124	2024-11-21 11:47	2022-02-19	Show	GitHub Exploit DB Packet Storm