Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 3, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
241591 5 警告 Apache Software Foundation - Apache Struts におけるサービス運用妨害 (CPU 資源の消費) の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-4387 2012-09-7 14:54 2012-08-3 Show GitHub Exploit DB Packet Storm
241592 6.8 警告 Apache Software Foundation - Apache Struts のトークンチェックメカニズムにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-4386 2012-09-7 14:52 2012-08-3 Show GitHub Exploit DB Packet Storm
241593 5 警告 Thomas Eibner - Apache HTTP Server 用 mod_rpaf モジュールにおけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2012-3526 2012-09-7 14:49 2012-09-5 Show GitHub Exploit DB Packet Storm
241594 2.1 注意 Tigerfish - Drupal 用 Fancy Slide モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2068 2012-09-6 14:05 2012-03-14 Show GitHub Exploit DB Packet Storm
241595 6.8 警告 CKEditor Team - Drupal 用 FCKeditor および CKEditor モジュールにおける任意の PHP コードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2012-2067 2012-09-6 14:03 2012-03-14 Show GitHub Exploit DB Packet Storm
241596 4.3 警告 CKEditor Team - Drupal 用 FCKeditor および CKEditor モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2066 2012-09-6 14:02 2012-03-14 Show GitHub Exploit DB Packet Storm
241597 3.5 注意 Freso - Drupal 用 Language Icons モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2065 2012-09-6 14:00 2012-03-14 Show GitHub Exploit DB Packet Storm
241598 4.3 警告 Views Language Switcher - Drupal 用 Views Language Switcher モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2064 2012-09-6 13:56 2012-03-14 Show GitHub Exploit DB Packet Storm
241599 5 警告 Brian Altenhofel - Drupal 用 Slidebox モジュールにおける重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-2063 2012-09-6 13:54 2012-03-14 Show GitHub Exploit DB Packet Storm
241600 4.3 警告 ImageMagick - ImageMagick におけるサービス運用妨害 (無限ループおよびハング) の脆弱性 CWE-119
バッファエラー 		CVE-2012-0248 2012-09-6 13:49 2012-02-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
266021 9.8 CRITICAL
Network 		tcpdump tcpdump The AH parser in tcpdump before 4.9.0 has a buffer overflow in print-ah.c:ah_print(). CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-7922 2024-11-21 11:58 2017-01-28 Show GitHub Exploit DB Packet Storm
266022 5.5 MEDIUM
Local 		docker2aci_project docker2aci Directory traversal vulnerability in docker2aci before 0.13.0 allows remote attackers to write to arbitrary files via a .. (dot dot) in the embedded layer data in an image. CWE-22
Path Traversal 		CVE-2016-7569 2024-11-21 11:58 2017-01-28 Show GitHub Exploit DB Packet Storm
266023 8.8 HIGH
Adjacent 		ubiquiti_networks unifi_ap_ac_lite_firmware Ubiquiti Networks UniFi 5.2.7 does not restrict access to the database, which allows remote attackers to modify the database by directly connecting to it. CWE-284
Improper Access Control 		CVE-2016-7792 2024-11-21 11:58 2017-01-24 Show GitHub Exploit DB Packet Storm
266024 9.8 CRITICAL
Network 		openslp openslp Buffer overflow in the SLPFoldWhiteSpace function in common/slp_compare.c in OpenSLP 2.0 allows remote attackers to have unspecified impact via a crafted string. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-7567 2024-11-21 11:58 2017-01-24 Show GitHub Exploit DB Packet Storm
266025 9.8 CRITICAL
Network 		sociomantic git-hub sociomantic-tsunami git-hub before 0.10.3 allows remote attackers to execute arbitrary code via a crafted repository name. CWE-284
Improper Access Control 		CVE-2016-7794 2024-11-21 11:58 2017-01-20 Show GitHub Exploit DB Packet Storm
266026 8.8 HIGH
Network 		sociomantic git-hub sociomantic-tsunami git-hub before 0.10.3 allows remote attackers to execute arbitrary code via a crafted repository URL. CWE-284
Improper Access Control 		CVE-2016-7793 2024-11-21 11:58 2017-01-20 Show GitHub Exploit DB Packet Storm
266027 8.8 HIGH
Local 		selinux_project
fedoraproject
redhat 		selinux
fedora
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
enterprise_linux_hpc_node
enterprise_linux_server_tus 		SELinux policycoreutils allows local users to execute arbitrary commands outside of the sandbox via a crafted TIOCSTI ioctl call. CWE-284
Improper Access Control 		CVE-2016-7545 2024-11-21 11:58 2017-01-20 Show GitHub Exploit DB Packet Storm
266028 8.4 HIGH
Local 		gnu
fedoraproject 		bash
fedora 		Bash before 4.4 allows local users to execute arbitrary commands with root privileges via crafted SHELLOPTS and PS4 environment variables. CWE-20
 Improper Input Validation  		CVE-2016-7543 2024-11-21 11:58 2017-01-20 Show GitHub Exploit DB Packet Storm
266029 6.1 MEDIUM
Network 		emc documentum_webtop
documentum_administrator
documentum_taskspace
documentum_capital_projects 		EMC Documentum WebTop Version 6.8, prior to P18 and Version 6.8.1, prior to P06; and EMC Documentum TaskSpace version 6.7SP3, prior to P02; and EMC Documentum Capital Projects Version 1.9, prior to P… CWE-79
Cross-site Scripting 		CVE-2016-8213 2024-11-21 11:58 2017-01-23 Show GitHub Exploit DB Packet Storm
266030 7.4 HIGH
Network 		spip spip ecrire/exec/valider_xml.php in SPIP 3.1.2 and earlier allows remote attackers to conduct server side request forgery (SSRF) attacks via a URL in the var_url parameter in a valider_xml action. CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2016-7999 2024-11-21 11:58 2017-01-19 Show GitHub Exploit DB Packet Storm