Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 21, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
241571 3.5 注意 Propeople - Drupal 用の Glossify Internal Links Auto SEO モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2309 2012-07-30 11:03 2012-05-2 Show GitHub Exploit DB Packet Storm
241572 3.5 注意 tahiticlic - Drupal 用の Taxonomy Grid : Catalog モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2308 2012-07-30 11:01 2012-05-2 Show GitHub Exploit DB Packet Storm
241573 6.8 警告 Willem Van Der Plaat - Drupal 用の Addressbook モジュールにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-2307 2012-07-30 11:00 2012-05-2 Show GitHub Exploit DB Packet Storm
241574 7.5 危険 Willem Van Der Plaat - Drupal 用の Addressbook モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-2306 2012-07-30 10:59 2012-05-2 Show GitHub Exploit DB Packet Storm
241575 6.8 警告 Justin Ellison - Drupal 用の Node Gallery モジュールにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-2305 2012-07-30 10:50 2012-05-2 Show GitHub Exploit DB Packet Storm
241576 5 警告 JanRain - Drupal 用の Janrain Engage モジュールにおける重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2012-2296 2012-07-30 10:48 2012-04-4 Show GitHub Exploit DB Packet Storm
241577 5 警告 Nancy Wichmann - Drupal 用の Site Documentation モジュールにおける重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2012-2302 2012-07-30 10:47 2012-04-25 Show GitHub Exploit DB Packet Storm
241578 2.1 注意 FindingScience - Apache 用 mod_auth_openid におけるセッション ID を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-2760 2012-07-30 10:43 2012-07-25 Show GitHub Exploit DB Packet Storm
241579 4.3 警告 Emery Berger - Hoard の malloc および calloc 関数における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2012-2676 2012-07-30 10:39 2012-06-10 Show GitHub Exploit DB Packet Storm
241580 4.3 警告 ned Productions - nedmalloc における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2012-2675 2012-07-30 10:33 2012-07-25 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 21, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
269031 8.1 HIGH
Network 		selenium-standalone-painful_project selenium-standalone-painful selenium-standalone-painful installs a start-selenium command line to start a standalone selenium server with chrome-driver. selenium-standalone-painful downloads binary resources over HTTP, which le… CWE-310
Cryptographic Issues 		CVE-2016-10679 2024-11-21 11:44 2018-05-30 Show GitHub Exploit DB Packet Storm
269032 8.1 HIGH
Network 		yandex tomita-parser tomita-parser is a Node wrapper for Yandex Tomita Parser tomita-parser downloads binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execut… CWE-310
Cryptographic Issues 		CVE-2016-10666 2024-11-21 11:44 2018-05-30 Show GitHub Exploit DB Packet Storm
269033 8.1 HIGH
Network 		macchina poco poco - The POCO libraries, downloads source file resources used for compilation over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execution (RCE) by swapp… CWE-310
Cryptographic Issues 		CVE-2016-10659 2024-11-21 11:44 2018-05-30 Show GitHub Exploit DB Packet Storm
269034 8.1 HIGH
Network 		native-opencv_project native-opencv native-opencv is the OpenCV library installed via npm native-opencv downloads binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execution… CWE-310
Cryptographic Issues 		CVE-2016-10658 2024-11-21 11:44 2018-05-30 Show GitHub Exploit DB Packet Storm
269035 8.1 HIGH
Network 		shutterstock ntfserver ntfserver is a Network Testing Framework Server. ntfserver downloads binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execution (RCE) by… CWE-310
Cryptographic Issues 		CVE-2016-10650 2024-11-21 11:44 2018-05-30 Show GitHub Exploit DB Packet Storm
269036 8.1 HIGH
Network 		broccoli-closure_project broccoli-closure broccoli-closure is a Closure compiler plugin for Broccoli. broccoli-closure before 1.3.1 downloads binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause… CWE-310
Cryptographic Issues 		CVE-2016-10635 2024-11-21 11:44 2018-05-30 Show GitHub Exploit DB Packet Storm
269037 8.1 HIGH
Network 		scala-bin_project scala-bin scala-bin is a binary wrapper for Scala. scala-bin downloads binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execution (RCE) by swappin… CWE-310
Cryptographic Issues 		CVE-2016-10627 2024-11-21 11:44 2018-05-30 Show GitHub Exploit DB Packet Storm
269038 8.1 HIGH
Network 		strider-sauce_project strider-sauce strider-sauce is Sauce Labs / Selenium support for Strider. strider-sauce downloads zipped resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code exe… CWE-310
Cryptographic Issues 		CVE-2016-10611 2024-11-21 11:44 2018-05-30 Show GitHub Exploit DB Packet Storm
269039 8.1 HIGH
Network 		uxebu webdrvr webdrvr is a npm wrapper for Selenium Webdriver including Chromedriver / IEDriver / IOSDriver / Ghostdriver. webdrvr downloads binary resources over HTTP, which leaves it vulnerable to MITM attacks. … CWE-310
Cryptographic Issues 		CVE-2016-10601 2024-11-21 11:44 2018-05-30 Show GitHub Exploit DB Packet Storm
269040 8.1 HIGH
Network 		interactivebrokers ibapi ibapi is an Interactive Brokers API addon for NodeJS. ibapi downloads binary resources over HTTP, which leaves it vulnerable to MITM attacks. Before 2.5.6, it may be possible to cause remote code exe… CWE-310
Cryptographic Issues 		CVE-2016-10593 2024-11-21 11:44 2018-05-30 Show GitHub Exploit DB Packet Storm