Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 18, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
241141	7.5	危険	シトリックス・システムズ	-	Citrix Provisioning Services の SoapServer サービスにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-4068	2012-07-30 16:22	2012-05-1	Show	GitHub Exploit DB Packet Storm

241142	4.3	警告	Palo Alto Networks	-	複数の Palo Alto Networks 製品におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-4043	2012-07-30 16:20	2012-07-26	Show	GitHub Exploit DB Packet Storm

241143	5	警告	アップル	-	Apple Xcode におけるキーチェーンエントリを読まれる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-3698	2012-07-30 16:19	2012-07-26	Show	GitHub Exploit DB Packet Storm

241144	3.7	注意	SystemTap	-	SystemTap の systemtap ランタイムツールにおける権限を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2011-2503	2012-07-30 16:06	2011-07-25	Show	GitHub Exploit DB Packet Storm

241145	4.4	警告	SystemTap	-	SystemTap の systemtap ランタイムツールにおける権限を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2011-2502	2012-07-30 16:05	2011-07-25	Show	GitHub Exploit DB Packet Storm

241146	5	警告	Stichting NLnet Labs	-	NSD の query.c におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2012-2978	2012-07-30 16:01	2012-07-19	Show	GitHub Exploit DB Packet Storm

241147	3.5	注意	IBM	-	IBM Lotus Protector for Mail Security および IBM ISS Proventia Network Mail Security System におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2012-2202	2012-07-30 15:59	2012-07-27	Show	GitHub Exploit DB Packet Storm

241148	2.6	注意	マイクロソフト Mozilla Foundation	-	複数のウェブブラウザにおける Transfer-Encoding ヘッダの処理に関する脆弱性	CWE-DesignError	-	2012-07-30 14:00	2012-07-30	Show	GitHub Exploit DB Packet Storm

241149	6.8	警告	Novell	-	Novell ZENworks Configuration Management の AdminStudio におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-3174	2012-07-30 13:53	2011-10-14	Show	GitHub Exploit DB Packet Storm

241150	6.8	警告	Novell	-	Novell ZENworks Configuration Management の AdminStudio における任意のコードを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-2658	2012-07-30 13:51	2011-10-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
266761	7.5	HIGH Network	moxa	miineport_e2_1242_firmware miineport_e1_7080_firmware miineport_e2_4561_firmware miineport_e3_firmware miineport_e1_4641_firmware	Moxa MiiNePort_E1_4641 devices with firmware 1.1.10 Build 09120714, MiiNePort_E1_7080 devices with firmware 1.1.10 Build 09120714, MiiNePort_E2_1242 devices with firmware 1.1 Build 10080614, MiiNePor…	CWE-287 Improper Authentication	CVE-2016-2286	2024-11-21 11:48	2016-05-31	Show	GitHub Exploit DB Packet Storm

266762	8.8	HIGH Network	moxa	miineport_e2_1242_firmware miineport_e2_4561_firmware miineport_e1_7080_firmware miineport_e3_firmware miineport_e1_4641_firmware	Cross-site request forgery (CSRF) vulnerability on Moxa MiiNePort_E1_4641 devices with firmware 1.1.10 Build 09120714, MiiNePort_E1_7080 devices with firmware 1.1.10 Build 09120714, MiiNePort_E2_1242…	CWE-352 Origin Validation Error	CVE-2016-2285	2024-11-21 11:48	2016-05-31	Show	GitHub Exploit DB Packet Storm

266763	6.5	MEDIUM Network	blackbox	alertwerks_servsensor_junior_firmware alertwerks_servsensor_contact_firmware alertwerks_servsensor_firmware	Black Box AlertWerks ServSensor with firmware before SP473, AlertWerks ServSensor Junior with firmware before SP473, AlertWerks ServSensor Junior with PoE with firmware before SP473, and AlertWerks S…	CWE-255 CWE-200 Credentials Management Information Exposure	CVE-2016-2311	2024-11-21 11:48	2016-05-30	Show	GitHub Exploit DB Packet Storm

266764	7.2	HIGH Network	irz	ruh2	iRZ RUH2 before 2b does not validate firmware patches, which allows remote authenticated users to modify data or cause a denial of service via unspecified vectors.	CWE-345 Insufficient Verification of Data Authenticity	CVE-2016-2309	2024-11-21 11:48	2016-05-30	Show	GitHub Exploit DB Packet Storm

266765	4.7	MEDIUM Network	cmsmadesimple	cms_made_simple	CMS Made Simple 2.x before 2.1.3 and 1.x before 1.12.2, when Smarty Cache is activated, allow remote attackers to conduct cache poisoning attacks, modify links, and conduct cross-site scripting (XSS)…	CWE-79 Cross-site Scripting	CVE-2016-2784	2024-11-21 11:48	2016-05-26	Show	GitHub Exploit DB Packet Storm

266766	7.8	HIGH Local	huawei	mobile_broadband_hl_service	The Huawei Mobile Broadband HL Service 22.001.25.00.03 and earlier uses a weak ACL for the MobileBrServ program data directory, which allows local users to gain SYSTEM privileges by modifying VERSION…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-2855	2024-11-21 11:48	2016-05-24	Show	GitHub Exploit DB Packet Storm

266767	5.3	MEDIUM Network	moodle	moodle	Moodle through 2.6.11, 2.7.x before 2.7.13, 2.8.x before 2.8.11, 2.9.x before 2.9.5, and 3.0.x before 3.0.3 does not properly restrict links, which allows remote attackers to obtain sensitive URL inf…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-2190	2024-11-21 11:48	2016-05-23	Show	GitHub Exploit DB Packet Storm

266768	8.6	HIGH Network	wordpress	wordpress	The wp_http_validate_url function in wp-includes/http.php in WordPress before 4.4.2 allows remote attackers to conduct server-side request forgery (SSRF) attacks via a zero value in the first octet o…	NVD-CWE-Other	CVE-2016-2222	2024-11-21 11:48	2016-05-22	Show	GitHub Exploit DB Packet Storm

266769	7.4	HIGH Network	wordpress	wordpress	Open redirect vulnerability in the wp_validate_redirect function in wp-includes/pluggable.php in WordPress before 4.4.2 allows remote attackers to redirect users to arbitrary web sites and conduct ph…	NVD-CWE-Other	CVE-2016-2221	2024-11-21 11:48	2016-05-22	Show	GitHub Exploit DB Packet Storm

266770	9.1	CRITICAL Network	symantec	anti-virus_engine	The kernel component in Symantec Anti-Virus Engine (AVE) 20151.1 before 20151.1.1.4 allows remote attackers to execute arbitrary code or cause a denial of service (memory access violation and system …	CWE-399 Resource Management Errors	CVE-2016-2208	2024-11-21 11:48	2016-05-19	Show	GitHub Exploit DB Packet Storm