Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
240831 6.8 警告 xt:Commerce
bluegate		 - xt:Commerce 用の Direct URL モジュールの bluegate_seo.inc.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-1359 2012-06-26 16:19 2010-04-13 Show GitHub Exploit DB Packet Storm
240832 5 警告 cookex
Joomla!		 - Joomla! の Cookex Agency ckforms コンポーネントにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-1345 2012-06-26 16:19 2010-04-9 Show GitHub Exploit DB Packet Storm
240833 7.5 危険 cookex
Joomla!		 - Joomla! の Cookex Agency ckforms コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-1344 2012-06-26 16:19 2010-04-9 Show GitHub Exploit DB Packet Storm
240834 7.5 危険 bjsintay - SiteX における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-1343 2012-06-26 16:19 2010-04-9 Show GitHub Exploit DB Packet Storm
240835 6.8 警告 directnews - Direct News における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2010-1342 2012-06-26 16:19 2010-04-9 Show GitHub Exploit DB Packet Storm
240836 5 警告 ermenegildo fiorito - Irmin CMS におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-1309 2012-06-26 16:19 2010-04-8 Show GitHub Exploit DB Packet Storm
240837 5 警告 decryptweb
Joomla!		 - Joomla! の dwgraphs コンポーネントの dwgraphs.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-1302 2012-06-26 16:19 2010-04-7 Show GitHub Exploit DB Packet Storm
240838 7.5 危険 The Cacti Group - Cacti の templates_export.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-1431 2012-06-26 16:19 2009-06-28 Show GitHub Exploit DB Packet Storm
240839 5.1 警告 dynpg - DynPG CMS における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2010-1299 2012-06-26 16:19 2010-04-7 Show GitHub Exploit DB Packet Storm
240840 4.3 警告 bbsxp - BBSXP 2008 SP2 におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-1276 2012-06-26 16:19 2010-04-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
267631 8.4 HIGH
Local 		google android Multiple stack-based buffer underflows in decoder/ih264d_parse_cavlc.c in mediaserver in Android 6.x before 2016-04-01 allow remote attackers to execute arbitrary code or cause a denial of service (m… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-0840 2024-11-21 11:42 2016-04-18 Show GitHub Exploit DB Packet Storm
267632 9.8 CRITICAL
Network 		google android post_proc/volume_listener.c in mediaserver in Android 6.x before 2016-04-01 mishandles deleted effect context, which allows remote attackers to execute arbitrary code or cause a denial of service (me… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-0839 2024-11-21 11:42 2016-04-18 Show GitHub Exploit DB Packet Storm
267633 9.8 CRITICAL
Network 		google android Sonivox in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 does not check for a negative number of samples, which allows remote attackers to… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-0838 2024-11-21 11:42 2016-04-18 Show GitHub Exploit DB Packet Storm
267634 9.8 CRITICAL
Network 		google android MPEG4Extractor.cpp in libstagefright in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 allows remote attackers to execute arbitrary code or… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-0837 2024-11-21 11:42 2016-04-18 Show GitHub Exploit DB Packet Storm
267635 7.8 HIGH
Local 		google android Stack-based buffer overflow in decoder/impeg2d_vld.c in mediaserver in Android 6.x before 2016-04-01 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption)… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-0836 2024-11-21 11:42 2016-04-18 Show GitHub Exploit DB Packet Storm
267636 9.8 CRITICAL
Network 		google android decoder/impeg2d_dec_hdr.c in mediaserver in Android 6.x before 2016-04-01 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file t… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-0835 2024-11-21 11:42 2016-04-18 Show GitHub Exploit DB Packet Storm
267637 8.4 HIGH
Local 		google android An unspecified media codec in mediaserver in Android 6.x before 2016-04-01 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file,… CWE-20
 Improper Input Validation  		CVE-2016-0834 2024-11-21 11:42 2016-04-18 Show GitHub Exploit DB Packet Storm
267638 9.8 CRITICAL
Network 		dell emc_unisphere An HTTP servlet in vApp Manager in EMC Unisphere for VMAX Virtual Appliance before 8.2.0 allows remote attackers to write to arbitrary files via a crafted pathname. CWE-20
 Improper Input Validation  		CVE-2016-0889 2024-11-21 11:42 2016-04-15 Show GitHub Exploit DB Packet Storm
267639 5.9 MEDIUM
Network 		fedoraproject
opensuse
libssh2
debian 		fedora
opensuse
libssh2
debian_linux 		The diffie_hellman_sha256 function in kex.c in libssh2 before 1.7.0 improperly truncates secrets to 128 or 256 bits, which makes it easier for man-in-the-middle attackers to decrypt or intercept SSH … CWE-200
Information Exposure 		CVE-2016-0787 2024-11-21 11:42 2016-04-14 Show GitHub Exploit DB Packet Storm
267640 4.3 MEDIUM
Network 		openstack image_registry_and_delivery_service_\(glance\) OpenStack Image Service (Glance) before 2015.1.3 (kilo) and 11.0.x before 11.0.2 (liberty), when show_multiple_locations is enabled, allow remote authenticated users to change image status and upload… CWE-284
Improper Access Control 		CVE-2016-0757 2024-11-21 11:42 2016-04-14 Show GitHub Exploit DB Packet Storm