Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 21, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
240871 8.5 危険 X.Org Foundation - X.Org xserver の GLX 拡張におけるサービス運用妨害 (サーバクラッシュ) の脆弱性 CWE-20
不適切な入力確認 		CVE-2010-4818 2012-09-7 16:51 2011-01-10 Show GitHub Exploit DB Packet Storm
240872 4.3 警告 phpList - phpList の public_html/lists/admin/ におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2741 2012-09-7 16:35 2012-03-21 Show GitHub Exploit DB Packet Storm
240873 7.5 危険 phpList - phpList の public_html/lists/admin における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-2740 2012-09-7 16:35 2012-03-21 Show GitHub Exploit DB Packet Storm
240874 6.8 警告 Wishlist project - Drupal 用 Wishlist モジュールにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-2069 2012-09-7 16:34 2012-03-21 Show GitHub Exploit DB Packet Storm
240875 6.8 警告 ownCloud - ownCloud におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-4753 2012-09-7 16:32 2012-07-20 Show GitHub Exploit DB Packet Storm
240876 4.3 警告 デル - Crowbar の Crowbar barclamp におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-3551 2012-09-7 16:06 2012-09-5 Show GitHub Exploit DB Packet Storm
240877 4.3 警告 OpenStack - OpenStack Folsom および Essex における任意のテナントに任意のユーザを追加される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-3542 2012-09-7 16:05 2012-08-30 Show GitHub Exploit DB Packet Storm
240878 2.6 注意 サイボウズ - サイボウズ KUNAI for Android における WebView クラスに関する脆弱性 CWE-Other
その他 		CVE-2012-4012 2012-09-7 16:01 2012-09-7 Show GitHub Exploit DB Packet Storm
240879 5.8 警告 サイボウズ - サイボウズ KUNAI for Android において任意の Java のメソッドが実行される脆弱性 CWE-DesignError
CVE-2012-4011 2012-09-7 16:00 2012-09-7 Show GitHub Exploit DB Packet Storm
240880 4.6 警告 デル - Crowbar の Deployer Barclamp における任意のシェルコマンドを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-3537 2012-09-7 15:48 2012-09-5 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 21, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
266661 7.8 HIGH
Local 		microsoft windows_rt_8.1
windows_server_2012
windows_7
windows_10
windows_server_2016
windows_8.1
windows_server_2008
windows_vista 		The Common Log File System (CLFS) driver in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Go… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-3332 2024-11-21 11:49 2016-11-10 Show GitHub Exploit DB Packet Storm
266662 7.8 HIGH
Local 		nvidia geforce_experience For the NVIDIA Quadro, NVS, and GeForce products, GFE GameStream and NVTray Plugin unquoted service path vulnerabilities are examples of the unquoted service path vulnerability in Windows. A successf… NVD-CWE-Other
CVE-2016-3161 2024-11-21 11:49 2016-11-9 Show GitHub Exploit DB Packet Storm
266663 5.7 MEDIUM
Network 		ibm financial_transaction_manager Payments Director in IBM Financial Transaction Manager (FTM) for ACH Services, Check Services, and Corporate Payment Services (CPS) 3.0.0.x before fp0015 and 3.0.1.0 before iFix0002 allows remote aut… CWE-284
Improper Access Control 		CVE-2016-3060 2024-11-21 11:49 2016-10-29 Show GitHub Exploit DB Packet Storm
266664 7.8 HIGH
Local 		microsoft word_viewer
live_meeting
windows_server_2012
lync
office
windows_10
windows_8.1
windows_server_2008
skype_for_business
windows_7
windows_rt_8.1
windows_vista 		Graphics Device Interface (aka GDI or GDI+) in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; Windows 10… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-3396 2024-11-21 11:49 2016-10-14 Show GitHub Exploit DB Packet Storm
266665 5.3 MEDIUM
Network 		microsoft edge The Edge Content Security Policy feature in Microsoft Edge does not properly validate documents, which allows remote attackers to bypass intended access restrictions via a crafted web site, aka "Micr… CWE-284
Improper Access Control 		CVE-2016-3392 2024-11-21 11:49 2016-10-14 Show GitHub Exploit DB Packet Storm
266666 5.3 MEDIUM
Network 		microsoft internet_explorer
edge 		Microsoft Internet Explorer 10 and 11 and Microsoft Edge allow context-dependent attackers to discover credentials by leveraging access to a memory dump, aka "Microsoft Browser Information Disclosure… CWE-200
Information Exposure 		CVE-2016-3391 2024-11-21 11:49 2016-10-14 Show GitHub Exploit DB Packet Storm
266667 7.5 HIGH
Network 		microsoft edge
internet_explorer 		The scripting engines in Microsoft Internet Explorer 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, as… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-3390 2024-11-21 11:49 2016-10-14 Show GitHub Exploit DB Packet Storm
266668 7.5 HIGH
Network 		microsoft edge The Chakra JavaScript engine in Microsoft Edge allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Scripting Engine Memory … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-3389 2024-11-21 11:49 2016-10-14 Show GitHub Exploit DB Packet Storm
266669 5.3 MEDIUM
Network 		microsoft internet_explorer
edge 		Microsoft Internet Explorer 10 and 11 and Microsoft Edge do not properly restrict access to private namespaces, which allows remote attackers to gain privileges via unspecified vectors, aka "Microsof… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-3388 2024-11-21 11:49 2016-10-14 Show GitHub Exploit DB Packet Storm
266670 7.5 HIGH
Network 		microsoft internet_explorer
edge 		Microsoft Internet Explorer 10 and 11 and Microsoft Edge do not properly restrict access to private namespaces, which allows remote attackers to gain privileges via unspecified vectors, aka "Microsof… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-3387 2024-11-21 11:49 2016-10-14 Show GitHub Exploit DB Packet Storm