Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 31, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
241261	4.3	警告	SilverStripe	-	SilverStripe におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4823	2012-09-20 10:35	2010-12-21	Show	GitHub Exploit DB Packet Storm

241262	4.3	警告	SilverStripe	-	SilverStripe の core/model/MySQLDatabase.php におけるページへの SQL クエリを取得される脆弱性	CWE-200 情報漏えい	CVE-2010-4822	2012-09-20 10:31	2010-12-21	Show	GitHub Exploit DB Packet Storm

241263	6.4	警告	Sami Kiminki	-	Drupal 用 Redirecting click bouncer モジュールにおけるオープンリダイレクトの脆弱性	CWE-Other その他	CVE-2012-2062	2012-09-19 16:43	2012-03-14	Show	GitHub Exploit DB Packet Storm

241264	6.8	警告	Nijskens Raf	-	Drupal 用 Admin tools モジュールにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2012-2061	2012-09-19 16:41	2012-03-14	Show	GitHub Exploit DB Packet Storm

241265	4.3	警告	Nijskens Raf	-	Drupal 用 Admin tools モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-2060	2012-09-19 16:40	2012-03-14	Show	GitHub Exploit DB Packet Storm

241266	4.3	警告	Steve Lockwood	-	Drupal 用 ticketyboo News Ticker モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-2059	2012-09-19 16:40	2012-03-14	Show	GitHub Exploit DB Packet Storm

241267	5	警告	Ubercart.org	-	Drupal 用 Ubercart Payflow モジュールにおける支払いをねつ造される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-2058	2012-09-19 16:39	2012-03-14	Show	GitHub Exploit DB Packet Storm

241268	6.8	警告	Ubercart.org	-	Drupal 用 Ubercart Bulk Stock Updater モジュールにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2012-2057	2012-09-19 16:33	2012-03-14	Show	GitHub Exploit DB Packet Storm

241269	6.8	警告	Nathan Phillip Brink	-	Drupal 用 Content Lock モジュールにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2012-2056	2012-09-19 16:31	2012-03-14	Show	GitHub Exploit DB Packet Storm

241270	4.3	警告	Nikola Posa	-	Webfolio CMS におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-1899	2012-09-19 16:29	2012-09-17	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
269341	7.8	HIGH Local	microsoft	word word_for_mac office word_rt office_compatibility_pack word_viewer	Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word 2013 SP1, Word 2013 RT SP1, Word for Mac 2011, Word 2016 for Mac, Office Compatibility Pack SP3, and Word Viewer allow remote attackers t…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-3280	2024-11-21 11:49	2016-07-13	Show	GitHub Exploit DB Packet Storm

269342	7.8	HIGH Local	microsoft	outlook outlook_rt	Microsoft Outlook 2010 SP2, 2013 SP1, 2013 RT SP1, and 2016 allows remote attackers to execute arbitrary code via a crafted Office document, aka "Microsoft Office Memory Corruption Vulnerability."	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-3278	2024-11-21 11:49	2016-07-13	Show	GitHub Exploit DB Packet Storm

269343	5.3	MEDIUM Network	microsoft	internet_explorer edge	Microsoft Internet Explorer 10 and 11 and Microsoft Edge allow remote attackers to obtain sensitive information via a crafted web site, aka "Microsoft Browser Information Disclosure Vulnerability."	CWE-200 Information Exposure	CVE-2016-3277	2024-11-21 11:49	2016-07-13	Show	GitHub Exploit DB Packet Storm

269344	3.1	LOW Network	microsoft	internet_explorer	Microsoft Internet Explorer 11 and Microsoft Edge allow remote attackers to conduct content-spoofing attacks via a crafted URL, aka "Microsoft Browser Spoofing Vulnerability."	CWE-284 Improper Access Control	CVE-2016-3276	2024-11-21 11:49	2016-07-13	Show	GitHub Exploit DB Packet Storm

269345	3.1	LOW Network	microsoft	internet_explorer edge	Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to conduct content-spoofing attacks via a crafted URL, aka "Microsoft Browser Spoofing Vulnerability."	CWE-284 Improper Access Control	CVE-2016-3274	2024-11-21 11:49	2016-07-13	Show	GitHub Exploit DB Packet Storm

269346	5.3	MEDIUM Network	microsoft	internet_explorer edge	The XSS Filter in Microsoft Internet Explorer 9 through 11 and Microsoft Edge does not properly restrict JavaScript code, which allows remote attackers to obtain sensitive information via a crafted w…	CWE-200 Information Exposure	CVE-2016-3273	2024-11-21 11:49	2016-07-13	Show	GitHub Exploit DB Packet Storm

269347	2.8	LOW Local	microsoft	windows_server_2012 windows_7 windows_10 windows_rt_8.1	The kernel in Microsoft Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 mishandles page-fault system calls, which allows local users to obtain sensitive inf…	CWE-200 Information Exposure	CVE-2016-3272	2024-11-21 11:49	2016-07-13	Show	GitHub Exploit DB Packet Storm

269348	6.5	MEDIUM Network	microsoft	edge	The VBScript engine in Microsoft Edge allows remote attackers to obtain sensitive information from process memory via a crafted web site, aka "Scripting Engine Information Disclosure Vulnerability."	CWE-200 Information Exposure	CVE-2016-3271	2024-11-21 11:49	2016-07-13	Show	GitHub Exploit DB Packet Storm

269349	8.8	HIGH Network	microsoft	edge	The Chakra JavaScript engine in Microsoft Edge allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Scripting Engine Memory …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-3269	2024-11-21 11:49	2016-07-13	Show	GitHub Exploit DB Packet Storm

269350	8.8	HIGH Network	microsoft	edge	The Chakra JavaScript engine in Microsoft Edge allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Scripting Engine Memory …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-3265	2024-11-21 11:49	2016-07-13	Show	GitHub Exploit DB Packet Storm