Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 24, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
241691 5 警告 シスコシステムズ - Cisco IOS の MallocLite の実装におけるサービス運用妨害 (ルートプロセッサクラッシュ) の脆弱性 CWE-20
不適切な入力確認 		CVE-2012-1367 2012-08-7 11:43 2012-08-6 Show GitHub Exploit DB Packet Storm
241692 4 警告 シスコシステムズ - Cisco Unified Computing System におけるサービス運用妨害 (デバイスリロード) の脆弱性 CWE-DesignError
CVE-2012-1365 2012-08-7 11:04 2012-05-11 Show GitHub Exploit DB Packet Storm
241693 4 警告 シスコシステムズ - Cisco Unified Computing System におけるサービス運用妨害 (デバイスリロード) の脆弱性 CWE-DesignError
CVE-2012-1364 2012-08-7 11:03 2012-05-11 Show GitHub Exploit DB Packet Storm
241694 5 警告 NetMechanica - NetMechanica NetDecision の Traffic Grapher Server におけるソースコードを取得される脆弱性 CWE-200
情報漏えい 		CVE-2012-1466 2012-08-6 15:57 2012-03-19 Show GitHub Exploit DB Packet Storm
241695 1.9 注意 X.Org Foundation - X.Org xserver の os/utils.c における任意のファイルのアクセス権を 444 に変更される脆弱性 CWE-362
競合状態 		CVE-2011-4029 2012-08-3 14:50 2011-10-17 Show GitHub Exploit DB Packet Storm
241696 1.2 注意 X.Org Foundation - X.Org xserver の os/utils.c における情報漏えいの脆弱性 CWE-59
リンク解釈の問題 		CVE-2011-4028 2012-08-3 14:48 2011-10-18 Show GitHub Exploit DB Packet Storm
241697 4.3 警告 ヤフー株式会社 - Yahoo!ツールバー (Chrome 版 / Safari 版) においてツールバーが書き換え可能な脆弱性 CWE-Other
その他 		CVE-2012-2647 2012-08-2 16:44 2012-07-30 Show GitHub Exploit DB Packet Storm
241698 5 警告 GoodiWare - GoodReader におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2648 2012-08-2 12:01 2012-08-2 Show GitHub Exploit DB Packet Storm
241699 6.5 警告 デル - Plixer Scrutinizer (Dell SonicWALL Scrutinizer) に SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-2962 2012-08-1 17:29 2012-07-11 Show GitHub Exploit DB Packet Storm
241700 7.5 危険 デル - Plixer Scrutinizer (Dell SonicWALL Scrutinizer) における任意の SQL コマンドを実行される脆弱性 CWE-89
SQLインジェクション 		CVE-2012-3951 2012-08-1 16:53 2012-07-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 25, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
266341 6.5 MEDIUM
Network 		moodle moodle The user editing form in Moodle 3.0 through 3.0.3, 2.9 through 2.9.5, 2.8 through 2.8.11, 2.7 through 2.7.13, and earlier allows remote authenticated users to edit profile fields locked by the admini… CWE-284
Improper Access Control 		CVE-2016-3729 2024-11-21 11:50 2017-04-21 Show GitHub Exploit DB Packet Storm
266342 7.8 HIGH
Local 		foxitsoftware foxit_reader Heap-based buffer overflow in the CreateFXPDFConvertor function in ConvertToPdf_x86.dll in Foxit Reader 7.3.4.311 allows remote attackers to execute arbitrary code via a large SamplesPerPixel value i… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-3740 2024-11-21 11:50 2017-04-5 Show GitHub Exploit DB Packet Storm
266343 9.8 CRITICAL
Network 		modified ecommerce_shopsoftware Multiple SQL injection vulnerabilities in modified eCommerce Shopsoftware 2.0.0.0 revision 9678, when the easybill-module is not installed, allow remote attackers to execute arbitrary SQL commands vi… CWE-89
SQL Injection 		CVE-2016-3694 2024-11-21 11:50 2017-02-16 Show GitHub Exploit DB Packet Storm
266344 8.8 HIGH
Network 		libjpeg-turbo
redhat
debian
canonical 		libjpeg-turbo
enterprise_linux
debian_linux
ubuntu_linux 		The cjpeg utility in libjpeg allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) or execute arbitrary code via a crafted file. CWE-476
 NULL Pointer Dereference 		CVE-2016-3616 2024-11-21 11:50 2017-02-14 Show GitHub Exploit DB Packet Storm
266345 4.7 MEDIUM
Local 		sap download_manager SAP Download Manager 2.1.142 and earlier generates an encryption key from a small key space on Windows and Mac systems, which allows context-dependent attackers to obtain sensitive configuration info… CWE-255
CWE-798
Credentials Management
 Use of Hard-coded Credentials 		CVE-2016-3685 2024-11-21 11:50 2016-12-15 Show GitHub Exploit DB Packet Storm
266346 4.7 MEDIUM
Local 		sap download_manager SAP Download Manager 2.1.142 and earlier uses a hardcoded encryption key to protect stored data, which allows context-dependent attackers to obtain sensitive configuration information by leveraging k… NVD-CWE-Other
CVE-2016-3684 2024-11-21 11:50 2016-12-15 Show GitHub Exploit DB Packet Storm
266347 5.5 MEDIUM
Local 		google android An information disclosure vulnerability in Qualcomm components including the GPU driver, power driver, SMSM Point-to-Point driver, and sound driver in Android before 2016-11-05 could enable a local m… CWE-200
Information Exposure 		CVE-2016-3907 2024-11-21 11:50 2016-11-26 Show GitHub Exploit DB Packet Storm
266348 5.5 MEDIUM
Local 		google android An information disclosure vulnerability in Qualcomm components including the GPU driver, power driver, SMSM Point-to-Point driver, and sound driver in Android before 2016-11-05 could enable a local m… CWE-200
Information Exposure 		CVE-2016-3906 2024-11-21 11:50 2016-11-26 Show GitHub Exploit DB Packet Storm
266349 7.8 HIGH
Local 		google android An elevation of privilege vulnerability in the Qualcomm bus driver in Android before 2016-11-05 could enable a local malicious application to execute arbitrary code within the context of the kernel. … CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-3904 2024-11-21 11:50 2016-11-26 Show GitHub Exploit DB Packet Storm
266350 2.4 LOW
Network 		oracle database_server Unspecified vulnerability in the RDBMS Security and SQL*Plus components in Oracle Database Server 11.2.0.4 and 12.1.0.2 allows remote administrators to affect confidentiality via vectors related to D… CWE-200
Information Exposure 		CVE-2016-3562 2024-11-21 11:50 2016-10-25 Show GitHub Exploit DB Packet Storm