Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
240861 6 警告 Karen Stevenson - Drupal 用 Date モジュールのイベントの変更フォームにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-1626 2012-09-21 14:59 2012-01-11 Show GitHub Exploit DB Packet Storm
240862 6 警告 WizOne Solutions - Drupal 用 Fill PDF モジュールの fillpdf.admin.inc における任意の PHP コードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2012-1625 2012-09-21 14:58 2012-01-4 Show GitHub Exploit DB Packet Storm
240863 6.8 警告 Erik Webb - Drupal 用 Password Policy モジュールにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-1633 2012-09-21 14:58 2012-01-11 Show GitHub Exploit DB Packet Storm
240864 2.1 注意 Erik Webb - Drupal 用 Password Policy モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1632 2012-09-21 14:57 2012-01-11 Show GitHub Exploit DB Packet Storm
240865 3.5 注意 Marco Villegas - Drupal 用 Vote Up/Down モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1627 2012-09-21 14:52 2012-01-11 Show GitHub Exploit DB Packet Storm
240866 2.1 注意 Alquimia - Drupal 用 Managesite モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1640 2012-09-21 14:52 2012-01-25 Show GitHub Exploit DB Packet Storm
240867 6 警告 Dominique CLAUSE - Drupal 用 Search Autocomplete モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-1638 2012-09-21 14:51 2012-01-25 Show GitHub Exploit DB Packet Storm
240868 3.5 注意 CollectiveColors - Drupal 用 Taxonomy Views Integrator モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1653 2012-09-21 14:35 2012-02-29 Show GitHub Exploit DB Packet Storm
240869 2.1 注意 Wim Leers - Drupal 用 Hierarchical Select モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1652 2012-09-21 14:34 2012-02-29 Show GitHub Exploit DB Packet Storm
240870 3.5 注意 ThinkLeft - Drupal 用 Submenu Tree モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1651 2012-09-21 14:34 2012-02-29 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
269031 9.8 CRITICAL
Network 		google chrome extensions/renderer/render_frame_observer_natives.cc in Google Chrome before 49.0.2623.75 does not properly consider object lifetimes and re-entrancy issues during OnDocumentElementCreated handling, … NVD-CWE-Other
CVE-2016-1635 2024-11-21 11:46 2016-03-6 Show GitHub Exploit DB Packet Storm
269032 8.8 HIGH
Network 		google chrome Use-after-free vulnerability in the StyleResolver::appendCSSStyleSheet function in WebKit/Source/core/css/resolver/StyleResolver.cpp in Blink, as used in Google Chrome before 49.0.2623.75, allows rem… NVD-CWE-Other
CVE-2016-1634 2024-11-21 11:46 2016-03-6 Show GitHub Exploit DB Packet Storm
269033 9.8 CRITICAL
Network 		google chrome Use-after-free vulnerability in Blink, as used in Google Chrome before 49.0.2623.75, allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors. NVD-CWE-Other
CVE-2016-1633 2024-11-21 11:46 2016-03-6 Show GitHub Exploit DB Packet Storm
269034 8.8 HIGH
Network 		google chrome The Extensions subsystem in Google Chrome before 49.0.2623.75 does not properly maintain own properties, which allows remote attackers to bypass intended access restrictions via crafted JavaScript co… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-1632 2024-11-21 11:46 2016-03-6 Show GitHub Exploit DB Packet Storm
269035 8.8 HIGH
Network 		google chrome The PPB_Flash_MessageLoop_Impl::InternalRun function in content/renderer/pepper/ppb_flash_message_loop_impl.cc in the Pepper plugin in Google Chrome before 49.0.2623.75 mishandles nested message loop… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-1631 2024-11-21 11:46 2016-03-6 Show GitHub Exploit DB Packet Storm
269036 8.8 HIGH
Network 		google chrome The ContainerNode::parserRemoveChild function in WebKit/Source/core/dom/ContainerNode.cpp in Blink, as used in Google Chrome before 49.0.2623.75, mishandles widget updates, which makes it easier for … CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-1630 2024-11-21 11:46 2016-03-6 Show GitHub Exploit DB Packet Storm
269037 8.8 HIGH
Network 		cisco prime_infrastructure Cisco Prime Infrastructure 3.0 allows remote authenticated users to execute arbitrary code via a crafted HTTP request that is mishandled during viewing of a log file, aka Bug ID CSCuw81494. CWE-20
 Improper Input Validation  		CVE-2016-1359 2024-11-21 11:46 2016-03-4 Show GitHub Exploit DB Packet Storm
269038 6.4 MEDIUM
Network 		cisco prime_infrastructure Cisco Prime Infrastructure 2.2, 3.0, and 3.1(0.0) allows remote authenticated users to read arbitrary files or cause a denial of service via an XML document containing an external entity declaration … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-1358 2024-11-21 11:46 2016-03-4 Show GitHub Exploit DB Packet Storm
269039 5.3 MEDIUM
Network 		cisco cisco_policy_suite The password-management administration component in Cisco Policy Suite (CPS) 7.0.1.3, 7.0.2, 7.0.2-att, 7.0.3-att, 7.0.4-att, and 7.5.0 allows remote attackers to bypass intended RBAC restrictions an… CWE-200
Information Exposure 		CVE-2016-1357 2024-11-21 11:46 2016-03-4 Show GitHub Exploit DB Packet Storm
269040 3.7 LOW
Network 		cisco firesight_system_software Cisco FireSIGHT System Software 6.1.0 does not use a constant-time algorithm for verifying credentials, which makes it easier for remote attackers to enumerate valid usernames by measuring timing dif… CWE-287
CWE-255
Improper Authentication
Credentials Management 		CVE-2016-1356 2024-11-21 11:46 2016-03-4 Show GitHub Exploit DB Packet Storm