Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
241041 9.3 危険 energizer - Energizer DUO USB の UsbCharger.dll におけるプログラムを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-0103 2012-06-26 16:19 2010-03-10 Show GitHub Exploit DB Packet Storm
241042 7.5 危険 GNU Project - GNU C Library の nis/nss_nis/nis-pwd.c における NIS アカウントの暗号化されたパスワードを取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2010-0015 2012-06-26 16:19 2010-01-14 Show GitHub Exploit DB Packet Storm
241043 3.7 注意 Fedora Project - SSSD における制限されたアクセスを回避される脆弱性 CWE-287
不適切な認証 		CVE-2010-0014 2012-06-26 16:19 2010-01-14 Show GitHub Exploit DB Packet Storm
241044 4.3 警告 Apache Software Foundation - Apache CouchDB における重要情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2010-0009 2012-06-26 16:19 2010-04-5 Show GitHub Exploit DB Packet Storm
241045 2.1 注意 GNU Project - Bash の /etc/profile.d/60alias.sh スクリプトにおける存在するファイルを非表示にされる脆弱性 CWE-20
不適切な入力確認 		CVE-2010-0002 2012-06-26 16:19 2010-01-14 Show GitHub Exploit DB Packet Storm
241046 4.3 警告 aj square - AJ Auction Pro OOPD の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4989 2012-06-26 16:19 2010-08-25 Show GitHub Exploit DB Packet Storm
241047 7.5 危険 TYPO3 Association
christian ehmann		 - TYPO3 の event_registr 拡張における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4968 2012-06-26 16:19 2010-07-28 Show GitHub Exploit DB Packet Storm
241048 7.5 危険 elemente
TYPO3 Association		 - TYPO3 の ast_addresszipsearch 拡張における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4966 2012-06-26 16:19 2010-07-28 Show GitHub Exploit DB Packet Storm
241049 9.3 危険 adammo - Fat Player におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-4962 2012-06-26 16:19 2010-07-28 Show GitHub Exploit DB Packet Storm
241050 7.5 危険 Emophp Programming - EMO Breeder Manager の video.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4958 2012-06-26 16:19 2010-07-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
268071 7.8 HIGH
Local 		ibm informix_dynamic_server The client implementation in IBM Informix Dynamic Server 11.70.xCn on Windows does not properly restrict access to the (1) nsrd, (2) nsrexecd, and (3) portmap executable files, which allows local use… CWE-284
Improper Access Control 		CVE-2016-0226 2024-11-21 11:41 2016-03-29 Show GitHub Exploit DB Packet Storm
268072 6.1 MEDIUM
Network 		ibm websphere_application_server Cross-site scripting (XSS) vulnerability in the OpenID Connect (OIDC) client web application in IBM WebSphere Application Server (WAS) Liberty Profile 8.5.5 before 8.5.5.9 allows remote attackers to … CWE-79
Cross-site Scripting 		CVE-2016-0283 2024-11-21 11:41 2016-03-20 Show GitHub Exploit DB Packet Storm
268073 5.4 MEDIUM
Network 		ibm maximo_asset_management Cross-site scripting (XSS) vulnerability in IBM Maximo Asset Management 7.1.1 through 7.1.1.3, 7.5.0 before 7.5.0.9 IFIX004, and 7.6.0 before 7.6.0.3 IFIX001 allows remote authenticated users to inje… CWE-79
Cross-site Scripting 		CVE-2016-0262 2024-11-21 11:41 2016-03-14 Show GitHub Exploit DB Packet Storm
268074 4.3 MEDIUM
Network 		ibm maximo_asset_management
smartcloud_control_desk
maximo_for_government
maximo_for_life_sciences
maximo_for_nuclear_power
maximo_for_oil_and_gas
maximo_for_transportation
maximo_fo… 		IBM Maximo Asset Management 7.6 before 7.6.0.3 IFIX001 allows remote authenticated users to bypass intended access restrictions and read arbitrary purchase-order work logs via unspecified vectors. CWE-284
Improper Access Control 		CVE-2016-0222 2024-11-21 11:41 2016-03-14 Show GitHub Exploit DB Packet Storm
268075 3.7 LOW
Network 		ibm websphere_commerce IBM WebSphere Commerce 6.x through 6.0.0.11, 7.x through 7.0.0.9, and 8.x before 8.0.0.3 allows remote attackers to cause a denial of service (order-processing outage) via unspecified vectors. CWE-284
Improper Access Control 		CVE-2016-0208 2024-11-21 11:41 2016-03-14 Show GitHub Exploit DB Packet Storm
268076 7.8 HIGH
Local 		microsoft word
word_for_mac
office
sharepoint_server
office_web_apps_server
office_compatibility_pack
word_viewer 		Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word 2013 SP1, Word 2013 RT SP1, Word 2016, Word for Mac 2011, Word 2016 for Mac, Office Compatibility Pack SP3, Word Viewer, Word Automation … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-0134 2024-11-21 11:41 2016-03-9 Show GitHub Exploit DB Packet Storm
268077 6.8 MEDIUM
Physics 		microsoft windows_rt_8.1
windows_7
windows_10
windows_8.1
windows_server_2008
windows_vista 		The USB Mass Storage Class driver in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold … CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-0133 2024-11-21 11:41 2016-03-9 Show GitHub Exploit DB Packet Storm
268078 9.8 CRITICAL
Network 		microsoft .net_framework Microsoft .NET Framework 2.0 SP2, 3.0 SP2, 3.5, 3.5.1, 4.5.2, 4.6, and 4.6.1 mishandles signature validation for unspecified elements of XML documents, which allows remote attackers to spoof signatur… CWE-20
 Improper Input Validation  		CVE-2016-0132 2024-11-21 11:41 2016-03-9 Show GitHub Exploit DB Packet Storm
268079 7.5 HIGH
Network 		microsoft edge Microsoft Edge allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Microsoft Edge Memory Corruption Vulnerability," a diffe… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-0130 2024-11-21 11:41 2016-03-9 Show GitHub Exploit DB Packet Storm
268080 7.5 HIGH
Network 		microsoft edge Microsoft Edge allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Microsoft Edge Memory Corruption Vulnerability," a diffe… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-0129 2024-11-21 11:41 2016-03-9 Show GitHub Exploit DB Packet Storm