Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 30, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
241471	6.9	警告	Sony Creative Software	-	Sound Forge Pro における権限を取得される脆弱性	CWE-Other その他	CVE-2010-5242	2012-09-11 15:18	2012-09-7	Show	GitHub Exploit DB Packet Storm

241472	6.9	警告	オートデスク株式会社	-	Autodesk AutoCAD における権限を取得される脆弱性	CWE-Other その他	CVE-2010-5241	2012-09-11 15:17	2012-09-7	Show	GitHub Exploit DB Packet Storm

241473	6.9	警告	コーレル株式会社	-	Corel PHOTO-PAINT X3 および CorelDRAW X5 における権限を取得される脆弱性	CWE-Other その他	CVE-2010-5240	2012-09-11 15:17	2012-09-7	Show	GitHub Exploit DB Packet Storm

241474	6.9	警告	DAEMON Tools	-	DAEMON Tools における権限を取得される脆弱性	CWE-Other その他	CVE-2010-5239	2012-09-11 15:16	2012-09-7	Show	GitHub Exploit DB Packet Storm

241475	6.9	警告	サイバーリンク株式会社	-	CyberLink PowerDirector における権限を取得される脆弱性	CWE-Other その他	CVE-2010-5238	2012-09-11 15:15	2012-09-7	Show	GitHub Exploit DB Packet Storm

241476	6.9	警告	サイバーリンク株式会社	-	CyberLink PowerDirector における権限を取得される脆弱性	CWE-Other その他	CVE-2010-5237	2012-09-11 15:14	2012-09-7	Show	GitHub Exploit DB Packet Storm

241477	6.9	警告	ROXIO	-	Roxio Easy Media Creator における権限を取得される脆弱性	CWE-Other その他	CVE-2010-5236	2012-09-11 15:14	2012-09-7	Show	GitHub Exploit DB Packet Storm

241478	6.9	警告	Ivan Zahariev	-	IZArc のアーカイバにおける権限を取得される脆弱性	CWE-Other その他	CVE-2010-5235	2012-09-11 15:13	2012-09-7	Show	GitHub Exploit DB Packet Storm

241479	6.9	警告	テックスミス株式会社	-	Camtasia Studio における権限を取得される脆弱性	CWE-Other その他	CVE-2010-5234	2012-09-11 15:13	2012-09-7	Show	GitHub Exploit DB Packet Storm

241480	6.9	警告	Atomix Productions	-	Virtual DJ における権限を取得される脆弱性	CWE-Other その他	CVE-2010-5233	2012-09-11 15:10	2012-09-7	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 30, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
269391	9.8	CRITICAL Network	atutor	atutor	SQL injection vulnerability in include/lib/mysql_connect.inc.php in ATutor 2.2.1 allows remote attackers to execute arbitrary SQL commands via the searchFriends function to friends.inc.php.	CWE-89 SQL Injection	CVE-2016-2555	2024-11-21 11:48	2017-04-13	Show	GitHub Exploit DB Packet Storm

269392	6.1	MEDIUM Network	mozilla	bugzilla	Cross-site scripting (XSS) vulnerability in the dependency graphs in Bugzilla 2.16rc1 through 4.4.11, and 4.5.1 through 5.0.2 allows remote attackers to inject arbitrary web script or HTML.	CWE-79 Cross-site Scripting	CVE-2016-2803	2024-11-21 11:48	2017-04-13	Show	GitHub Exploit DB Packet Storm

269393	7.5	HIGH Network	huawei	s5700_firmware s6700_firmware s7700_firmware s9700_firmware s12700_firmware acu2_firmware	Huawei switches S5700, S6700, S7700, S9700 with software V200R001C00SPC300, V200R002C00SPC100, V200R003C00SPC300, V200R005C00SPC500, V200R006C00; S12700 with software V200R005C00SPC500, V200R006C00; …	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-2404	2024-11-21 11:48	2017-04-3	Show	GitHub Exploit DB Packet Storm

269394	8.8	HIGH Adjacent	pidgin	mxit	The Mxit protocol uses weak encryption when encrypting user passwords, which might allow attackers to (1) decrypt hashed passwords by leveraging knowledge of client registration codes or (2) gain log…	CWE-326 Inadequate Encryption Strength	CVE-2016-2379	2024-11-21 11:48	2017-03-30	Show	GitHub Exploit DB Packet Storm

269395	7.5	HIGH Network	uclibc-ng_project	uclibc-ng	The __read_etc_hosts_r function in libc/inet/resolv.c in uClibc-ng before 1.0.12 allows remote DNS servers to cause a denial of service (infinite loop) via a crafted packet.	CWE-400 Uncontrolled Resource Consumption	CVE-2016-2225	2024-11-21 11:48	2017-03-25	Show	GitHub Exploit DB Packet Storm

269396	7.5	HIGH Network	uclibc-ng_project	uclibc-ng	The __decode_dotted function in libc/inet/resolv.c in uClibc-ng before 1.0.12 allows remote DNS servers to cause a denial of service (infinite loop) via vectors involving compressed items in a reply.	CWE-400 Uncontrolled Resource Consumption	CVE-2016-2224	2024-11-21 11:48	2017-03-25	Show	GitHub Exploit DB Packet Storm

269397	4.3	MEDIUM Network	huawei	document_security_management	The permission control module in Huawei Document Security Management (aka DSM) before V100R002C05SPC670 allows remote authenticated users to obtain sensitive information from encrypted documents by l…	CWE-275 Permission Issues	CVE-2016-2406	2024-11-21 11:48	2017-03-21	Show	GitHub Exploit DB Packet Storm

269398	7.8	HIGH Local	ibm	qradar_security_information_and_event_manager	IBM QRadar 7.2 stores the encryption key used to encrypt the service account password which can be obtained by a local user. IBM Reference #: 1997340.	CWE-320 Key Management Errors	CVE-2016-2880	2024-11-21 11:48	2017-03-2	Show	GitHub Exploit DB Packet Storm

269399	7.8	HIGH Local	ibm	qradar_security_information_and_event_manager	IBM QRadar 7.2 uses outdated hashing algorithms to hash certain passwords, which could allow a local user to obtain and decrypt user credentials. IBM Reference #: 1997341.	CWE-326 Inadequate Encryption Strength	CVE-2016-2879	2024-11-21 11:48	2017-03-2	Show	GitHub Exploit DB Packet Storm

269400	7.8	HIGH Local	gnu	libiberty	Integer overflow in the string_appends function in cplus-dem.c in libiberty allows remote attackers to execute arbitrary code via a crafted executable, which triggers a buffer overflow.	CWE-119 CWE-190 Incorrect Access of Indexable Resource ('Range Error') Integer Overflow or Wraparound	CVE-2016-2226	2024-11-21 11:48	2017-02-25	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed