Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 17, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
241531 5 警告 アップル
マイクロソフト		 - Apple Safari で使用されている CFNetwork の cfnetwork.dll におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2010-0924 2012-06-26 16:19 2010-03-3 Show GitHub Exploit DB Packet Storm
241532 4.4 警告 GNU Project - emacs の movemail の lib-src/movemail.c における任意のメールボックスファイルを削除される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-0825 2012-06-26 16:19 2010-04-5 Show GitHub Exploit DB Packet Storm
241533 7.5 危険 aleinbeen
Invision Power Services, Inc		 - Invision Power Board の改訂版である (nv2) Awards の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-0802 2012-06-26 16:19 2010-03-2 Show GitHub Exploit DB Packet Storm
241534 3.5 注意 Autartica
Joomla!		 - Joomla! の autartitarot コンポーネントにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-0801 2012-06-26 16:19 2010-03-2 Show GitHub Exploit DB Packet Storm
241535 7.5 危険 barnowl - BarnOwl におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-0793 2012-06-26 16:19 2010-03-16 Show GitHub Exploit DB Packet Storm
241536 3.3 注意 FUSE - FUSE の fusermount における任意の共有 FUSE ファイルシステムをマウント解除される脆弱性 CWE-59
リンク解釈の問題 		CVE-2010-0789 2012-06-26 16:19 2010-03-2 Show GitHub Exploit DB Packet Storm
241537 5 警告 fipsasp - fipsForum におけるデータベースファイルをダウンロードされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-0765 2012-06-26 16:19 2010-03-2 Show GitHub Exploit DB Packet Storm
241538 7.5 危険 commodityrentals - CommodityRentals Vacation Rental Software の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-0763 2012-06-26 16:19 2010-03-2 Show GitHub Exploit DB Packet Storm
241539 7.5 危険 commodityrentals - CommodityRentals CD Rental Software の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-0762 2012-06-26 16:19 2010-03-2 Show GitHub Exploit DB Packet Storm
241540 7.5 危険 commodityrentals - CommodityRentals Books/eBooks Rentals Script の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-0761 2012-06-26 16:19 2010-03-2 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
266571 5.4 MEDIUM
Network 		ibm qradar_security_information_and_event_manager Multiple cross-site scripting (XSS) vulnerabilities in the UI in IBM QRadar SIEM 7.1 before MR2 Patch 13 and 7.2 before 7.2.7 allow remote authenticated users to inject arbitrary web script or HTML v… CWE-79
Cross-site Scripting 		CVE-2016-2869 2024-11-21 11:48 2016-12-1 Show GitHub Exploit DB Packet Storm
266572 5.4 MEDIUM
Network 		ibm rational_quality_manager
rational_engineering_lifecycle_manager
rational_team_concert
rational_collaborative_lifecycle_management
rational_rhapsody_design_manager
rational_doors_next_g… 		Cross-site scripting (XSS) vulnerability in IBM Rational Collaborative Lifecycle Management 3.0.1.6 before iFix8, 4.0 before 4.0.7 iFix11, 5.0 before 5.0.2 iFix18, and 6.0 before 6.0.2 iFix5; Rationa… CWE-79
Cross-site Scripting 		CVE-2016-2864 2024-11-21 11:48 2016-11-25 Show GitHub Exploit DB Packet Storm
266573 7.5 HIGH
Network 		isc bind ISC BIND 9.1.0 through 9.8.4-P2 and 9.9.0 through 9.9.2-P2 allows remote attackers to cause a denial of service (assertion failure and daemon exit) via malformed options data in an OPT resource recor… CWE-20
 Improper Input Validation  		CVE-2016-2848 2024-11-21 11:48 2016-10-21 Show GitHub Exploit DB Packet Storm
266574 8.6 HIGH
Network 		american_auto-matrix aspect-matrix_building_automation_front-end_solutions_application
aspect-nexus_building_automation_front-end_solutions_application 		American Auto-Matrix Aspect-Nexus Building Automation Front-End Solutions application before 3.0.0 and Aspect-Matrix Building Automation Front-End Solutions application store passwords in cleartext, … NVD-CWE-Other
CVE-2016-2308 2024-11-21 11:48 2016-10-5 Show GitHub Exploit DB Packet Storm
266575 7.5 HIGH
Network 		american_auto-matrix aspect-matrix_building_automation_front-end_solutions_application
aspect-nexus_building_automation_front-end_solutions_application 		American Auto-Matrix Aspect-Nexus Building Automation Front-End Solutions application before 3.0.0 and Aspect-Matrix Building Automation Front-End Solutions application allow remote attackers to read… CWE-200
Information Exposure 		CVE-2016-2307 2024-11-21 11:48 2016-10-5 Show GitHub Exploit DB Packet Storm
266576 7.5 HIGH
Network 		oracle
isc
hp 		linux
vm_server
bind
hp-ux
solaris 		buffer.c in named in ISC BIND 9 before 9.9.9-P3, 9.10.x before 9.10.4-P3, and 9.11.x before 9.11.0rc3 does not properly construct responses, which allows remote attackers to cause a denial of service… CWE-20
 Improper Input Validation  		CVE-2016-2776 2024-11-21 11:48 2016-09-28 Show GitHub Exploit DB Packet Storm
266577 6.5 MEDIUM
Network 		mozilla firefox The mozilla::net::IsValidReferrerPolicy function in Mozilla Firefox before 49.0 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a Content Security … CWE-125
Out-of-bounds Read 		CVE-2016-2827 2024-11-21 11:48 2016-09-23 Show GitHub Exploit DB Packet Storm
266578 8.8 HIGH
Network 		ibm qradar_security_information_and_event_manager IBM Security QRadar SIEM 7.1.x and 7.2.x before 7.2.7 allows remote authenticated users to execute arbitrary OS commands as root via unspecified vectors. CWE-77
Command Injection 		CVE-2016-2875 2024-11-21 11:48 2016-08-8 Show GitHub Exploit DB Packet Storm
266579 7.8 HIGH
Local 		google android The Qualcomm GPU driver in Android before 2016-08-05 on Nexus 5, 5X, 6, 6P, and 7 (2013) devices allows attackers to gain privileges via a crafted application, aka Android internal bug 28026365 and Q… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-2504 2024-11-21 11:48 2016-08-6 Show GitHub Exploit DB Packet Storm
266580 7.3 HIGH
Network 		google android services/core/java/com/android/server/pm/PackageManagerService.java in the framework APIs in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-08-01 allows attacke… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-2497 2024-11-21 11:48 2016-08-6 Show GitHub Exploit DB Packet Storm