Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
241481 7.5 危険 kajianwebsite.org - Kajian Website CMS Balitbang における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-5111 2012-08-27 14:31 2012-08-23 Show GitHub Exploit DB Packet Storm
241482 7.5 危険 John Geo - Blogs Manager における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-5110 2012-08-27 14:30 2012-08-23 Show GitHub Exploit DB Packet Storm
241483 7.5 危険 John Geo - Freelancer calendar における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-5109 2012-08-27 14:29 2012-08-23 Show GitHub Exploit DB Packet Storm
241484 4.3 警告 AdaptCMS - AdaptCMS の config.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-5108 2012-08-27 14:29 2012-08-23 Show GitHub Exploit DB Packet Storm
241485 4.3 警告 WordPress.org - WordPress 用 Alert Before Your Post プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-5107 2012-08-27 14:28 2012-08-23 Show GitHub Exploit DB Packet Storm
241486 4.3 警告 Fractalia - WordPress 用 Flexible Custom Post Type プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-5106 2012-08-27 14:27 2012-08-23 Show GitHub Exploit DB Packet Storm
241487 4.3 警告 Zoho Corporation - ZOHO ManageEngine ADSelfService の EmployeeSearch.cc におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-5105 2012-08-27 14:27 2012-08-23 Show GitHub Exploit DB Packet Storm
241488 4.3 警告 GetShopped.org - WordPress 用 WP e-Commerce プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-5104 2012-08-27 14:26 2012-08-23 Show GitHub Exploit DB Packet Storm
241489 7.5 危険 ALURIAN - Alurian Prismotube PHP Video Script における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-5103 2012-08-27 14:26 2012-08-23 Show GitHub Exploit DB Packet Storm
241490 9.3 危険 Foxit Software Inc - Windows XP および Windows 7 上で稼働する Foxit Reader における任意のコードを実行される脆弱性 CWE-DesignError
CVE-2012-4337 2012-08-27 14:25 2012-04-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
266111 8.8 HIGH
Network 		iodata etx-r_firmware Cross-site request forgery (CSRF) vulnerability on I-O DATA DEVICE ETX-R devices allows remote attackers to hijack the authentication of arbitrary users. CWE-352
 Origin Validation Error 		CVE-2016-4820 2024-11-21 11:53 2016-06-19 Show GitHub Exploit DB Packet Storm
266112 9.8 CRITICAL
Network 		dx_library_project dx_library The printfDx function in Takumi Yamada DX Library for Borland C++ 3.13f through 3.16b, DX Library for Gnu C++ 3.13f through 3.16b, and DX Library for Visual C++ 3.13f through 3.16b allows remote atta… NVD-CWE-Other
CVE-2016-4819 2024-11-21 11:53 2016-06-19 Show GitHub Exploit DB Packet Storm
266113 7.5 HIGH
Network 		dena h2o lib/http2/connection.c in H2O before 1.7.3 and 2.x before 2.0.0-beta5 mishandles HTTP/2 disconnection, which allows remote attackers to cause a denial of service (use-after-free and application crash… NVD-CWE-Other
CVE-2016-4817 2024-11-21 11:53 2016-06-19 Show GitHub Exploit DB Packet Storm
266114 6.5 MEDIUM
Network 		buffalo wzr-600dhp3_firmware
hw-450hp-zwe_firmware
wzr-hp-g450h_firmware
wzr-450hp_firmware
wzr-900dhp2_firmware
wcr-300_firmware
wzr-450hp-cwt_firmware
wzr-hp-g301nh_firmware
wxr-175… 		BUFFALO WZR-600DHP3 devices with firmware 2.16 and earlier and WZR-S600DHP devices allow remote attackers to discover credentials and other sensitive information via unspecified vectors. CWE-200
Information Exposure 		CVE-2016-4816 2024-11-21 11:53 2016-06-19 Show GitHub Exploit DB Packet Storm
266115 7.5 HIGH
Network 		buffalo wzr-900dhp2_firmware
wzr-600dhp3_firmware
wzr-s900dhp_firmware
wzr-s600dhp_firmware
wzr-900dhp_firmware
wzr-600dhp2_firmware 		Directory traversal vulnerability on BUFFALO WZR-600DHP3 devices with firmware 2.16 and earlier and WZR-S600DHP devices with firmware 2.16 and earlier allows remote attackers to read arbitrary files … CWE-22
Path Traversal 		CVE-2016-4815 2024-11-21 11:53 2016-06-19 Show GitHub Exploit DB Packet Storm
266116 7.5 HIGH
Network 		gsi old_gsi_maps Directory traversal vulnerability in kml2jsonp.php in Geospatial Information Authority of Japan (aka GSI) Old_GSI_Maps before January 2015 on Windows allows remote attackers to read arbitrary files v… CWE-22
Path Traversal 		CVE-2016-4814 2024-11-21 11:53 2016-06-19 Show GitHub Exploit DB Packet Storm
266117 8.8 HIGH
Network 		netcommons netcommons NetCommons 2.4.2.1 and earlier allows remote authenticated secretariat (aka CLERK) users to gain privileges by creating a SYSTEM_ADMIN account. CWE-284
Improper Access Control 		CVE-2016-4813 2024-11-21 11:53 2016-06-19 Show GitHub Exploit DB Packet Storm
266118 4.4 MEDIUM
Local 		qemu
canonical
debian 		qemu
ubuntu_linux
debian_linux 		The get_cmd function in hw/scsi/esp.c in QEMU might allow local guest OS administrators to cause a denial of service (out-of-bounds write and QEMU process crash) via vectors related to reading from t… CWE-787
 Out-of-bounds Write 		CVE-2016-5238 2024-11-21 11:53 2016-06-14 Show GitHub Exploit DB Packet Storm
266119 8.1 HIGH
Network 		huawei rse6500_firmware
vp9600_series_firmware 		Buffer overflow in Huawei VP9660, VP9650, and VP9630 multipoint control unit devices with software before V500R002C00SPC200 and RSE6500 videoconference devices with software before V500R002C00SPC100,… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-5234 2024-11-21 11:53 2016-06-13 Show GitHub Exploit DB Packet Storm
266120 5.3 MEDIUM
Network 		libimobiledevice
canonical
opensuse 		libimobiledevice
libusbmuxd
ubuntu_linux
leap
opensuse 		The socket_create function in common/socket.c in libimobiledevice and libusbmuxd allows remote attackers to bypass intended access restrictions and communicate with services on iOS devices by connect… CWE-284
Improper Access Control 		CVE-2016-5104 2024-11-21 11:53 2016-06-13 Show GitHub Exploit DB Packet Storm