Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 16, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
240741	4.3	警告	Moodle	-	Moodle の mod/lti/typessettings.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-3389	2012-07-25 13:35	2012-07-23	Show	GitHub Exploit DB Packet Storm

240742	4	警告	Moodle	-	Moodle の lib/accesslib.php における機能チェックを回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-3388	2012-07-25 12:28	2012-07-23	Show	GitHub Exploit DB Packet Storm

240743	4	警告	Moodle	-	Moodle におけるエイリアスの制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-3387	2012-07-25 12:22	2012-07-23	Show	GitHub Exploit DB Packet Storm

240744	4.3	警告	ESET マカフィー AVG Technologies Jiangmin Norman FRISK Software International VirusBlokAda クイックヒール・テクノロジーズ・ジャパン株式会社エフ・セキュア G Data Software AVAST Software s.r.o. Beijing Rising International Software Panda Security カスペルスキ	-	複数の製品の TAR ファイルパーサにおけるマルウェア検知を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-1459	2012-07-25 11:09	2012-03-21	Show	GitHub Exploit DB Packet Storm

240745	4.3	警告	ClamAV ソフォス	-	ClamAV および Sophos Anti-Virus の Microsoft CHM ファイルパーサにおけるマルウェア検知を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-1458	2012-07-25 11:08	2012-03-21	Show	GitHub Exploit DB Packet Storm

240746	4.3	警告	ESET マカフィー AVG Technologies Jiangmin Norman FRISK Software International VirusBlokAda クイックヒール・テクノロジーズ・ジャパン株式会社 G Data Software AVAST Software s.r.o. Beijing Rising International Software カスペルスキー Avira Emsisoft シマン	-	複数の製品の TAR ファイルパーサにおけるマルウェア検知を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-1457	2012-07-25 11:06	2012-03-21	Show	GitHub Exploit DB Packet Storm

240747	4.4	警告	Puppet	-	Puppet および Puppet Enterprise における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-1054	2012-07-25 11:02	2012-05-29	Show	GitHub Exploit DB Packet Storm

240748	6.9	警告	Puppet	-	Puppet および Puppet Enterprise の change_user メソッドにおける権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-1053	2012-07-25 11:00	2012-05-29	Show	GitHub Exploit DB Packet Storm

240749	7.5	危険	The PHP Group	-	PHP の php_variables.c 内の php_register_variable_ex 関数における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2012-0830	2012-07-24 18:02	2012-02-1	Show	GitHub Exploit DB Packet Storm

240750	7.5	危険	PNG Development Group	-	libpng の pngerror.c におけるサービス運用妨害 (アプリケーションクラッシュ) の脆弱性	CWE-189 数値処理の問題	CVE-2011-3464	2012-07-24 16:44	2012-07-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 16, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
268201	9.8	CRITICAL Network	qualcomm	mdm9206_firmware mdm9607_firmware fsm9055_firmware ipq4019_firmware mdm9635m_firmware mdm9640_firmware mdm9645_firmware mdm9650_firmware ipq8064_firmware msm8909w_firmware<…	In Android before 2018-04-05 or earlier security patch level on Qualcomm Small Cell SoC, Snapdragon Mobile, and Snapdragon Wear FSM9055, IPQ4019, IPQ8064, MDM9206, MDM9607, MDM9635M, MDM9640, MDM9650…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-10436	2024-11-21 11:44	2018-04-18	Show	GitHub Exploit DB Packet Storm

268202	8.1	HIGH Network	qualcomm	mdm9206_firmware mdm9625_firmware mdm9635m_firmware mdm9640_firmware mdm9645_firmware msm8909w_firmware sd_210_firmware sd_212_firmware sd_205_firmware sd_400_firmware s…	In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile, Snapdragon Mobile, and Snapdragon Wear MDM9206, MDM9625, MDM9635M, MDM9640, MDM9645, MSM8909W, SD 210/S…	CWE-362 Race Condition	CVE-2016-10435	2024-11-21 11:44	2018-04-18	Show	GitHub Exploit DB Packet Storm

268203	7.5	HIGH Network	qualcomm	sd_820_firmware sd_820a_firmware	In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile and Snapdragon Mobile SD 820 and SD 820A, the input to RPMB write response function is a buffer from HLO…	CWE-287 Improper Authentication	CVE-2016-10434	2024-11-21 11:44	2018-04-18	Show	GitHub Exploit DB Packet Storm

268204	7.5	HIGH Network	brave	brave_browser	Brave Browser before 0.13.0 allows a tab to close itself even if the tab was not opened by a script, resulting in denial of service.	CWE-20 Improper Input Validation	CVE-2016-10718	2024-11-21 11:44	2018-04-4	Show	GitHub Exploit DB Packet Storm

268205	7.8	HIGH Local	malwarebytes	malwarebytes_anti-malware	A vulnerability in the encryption and permission implementation of Malwarebytes Anti-Malware consumer version 2.2.1 and prior (fixed in 3.0.4) allows an attacker to take control of the whitelisting f…	CWE-254 7PK - Security Features	CVE-2016-10717	2024-11-21 11:44	2018-03-22	Show	GitHub Exploit DB Packet Storm

268206	5.4	MEDIUM Network	mail.ru	calendar	The Mail.ru Calendar plugin before 2.5.0.61 for Atlassian Jira has XSS via the Name field in a Create Calender action, related to a MailRuCalendar.jspa#period/month URI.	CWE-79 Cross-site Scripting	CVE-2016-10716	2024-11-21 11:44	2018-03-16	Show	GitHub Exploit DB Packet Storm

268207	5.4	MEDIUM Network	artezio	kanban_board	The Artezio Kanban Board plugin 1.4 revision 1914 for Atlassian Jira has XSS via the Board Name in a Create New Board action, related to an artezioboard/mainPage.jspa?kanbanId=7#/kanban-view URI.	CWE-79 Cross-site Scripting	CVE-2016-10715	2024-11-21 11:44	2018-03-16	Show	GitHub Exploit DB Packet Storm

268208	9.8	CRITICAL Network	zsh canonical	zsh ubuntu_linux	In zsh before 5.3, an off-by-one error resulted in undersized buffers that were intended to support PATH_MAX characters.	CWE-189 Numeric Errors	CVE-2016-10714	2024-11-21 11:44	2018-02-28	Show	GitHub Exploit DB Packet Storm

268209	5.5	MEDIUM Local	gnu	patch	An issue was discovered in GNU patch before 2.7.6. Out-of-bounds access within pch_write_line() in pch.c can possibly lead to DoS via a crafted input file.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-10713	2024-11-21 11:44	2018-02-14	Show	GitHub Exploit DB Packet Storm

268210	7.5	HIGH Network	php canonical	php ubuntu_linux	In PHP before 5.5.32, 5.6.x before 5.6.18, and 7.x before 7.0.3, all of the return values of stream_get_meta_data can be controlled if the input can be controlled (e.g., during file uploads). For exa…	CWE-20 Improper Input Validation	CVE-2016-10712	2024-11-21 11:44	2018-02-9	Show	GitHub Exploit DB Packet Storm