Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
241711	6.5	警告	IBM	-	複数の IBM 製品で使用される IBM Maximo Asset Management における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-0727	2012-09-12 16:13	2012-09-4	Show	GitHub Exploit DB Packet Storm

241712	6.8	警告	IBM	-	複数の IBM 製品で使用される IBM Maximo Asset Management におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2012-0714	2012-09-12 16:12	2012-09-4	Show	GitHub Exploit DB Packet Storm

241713	6.8	警告	OpenKM	-	OpenKM におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2012-2316	2012-09-12 14:20	2012-01-4	Show	GitHub Exploit DB Packet Storm

241714	4	警告	OpenKM	-	OpenKM における任意のユーザに管理者権限を割り当てられる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-2315	2012-09-12 14:19	2012-01-4	Show	GitHub Exploit DB Packet Storm

241715	4.3	警告	chatelao	-	PHP Address Book の preferences.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-1912	2012-09-12 13:54	2012-09-9	Show	GitHub Exploit DB Packet Storm

241716	7.5	危険	chatelao	-	PHP Address Book における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-1911	2012-09-12 13:53	2012-09-9	Show	GitHub Exploit DB Packet Storm

241717	4.9	警告	danielb	-	Drupal 用 Cool Aid モジュールにおける任意のページを変更される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-1649	2012-09-12 13:53	2012-02-29	Show	GitHub Exploit DB Packet Storm

241718	2.1	注意	danielb	-	Drupal 用 Cool Aid モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-1648	2012-09-12 13:52	2012-02-29	Show	GitHub Exploit DB Packet Storm

241719	5	警告	MediaWiki	-	MediaWiki の wikitext パーサにおけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2012-4885	2012-09-12 13:50	2012-03-21	Show	GitHub Exploit DB Packet Storm

241720	4.3	警告	MediaWiki	-	MediaWiki の wikitext パーサにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-1582	2012-09-12 13:47	2012-03-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
265971	7.5	HIGH Network	glpi-project	glpi	Multiple SQL injection vulnerabilities in GLPI 0.90.4 allow an authenticated remote attacker to execute arbitrary SQL commands by using a certain character when the database is configured to use Big5…	CWE-89 SQL Injection	CVE-2016-7508	2024-11-21 11:58	2017-06-22	Show	GitHub Exploit DB Packet Storm

265972	7.8	HIGH Local	winsparkle	winsparkle	Untrusted search path vulnerability in WinSparkle versions prior to 0.5.3 allows remote attackers to execute arbitrary code via a specially crafted executable file in an unspecified directory.	CWE-426 Untrusted Search Path	CVE-2016-7838	2024-11-21 11:58	2017-06-10	Show	GitHub Exploit DB Packet Storm

265973	7.8	HIGH Local	bluez	bluez	Buffer overflow in BlueZ 5.41 and earlier allows an attacker to execute arbitrary code via the parse_line function used in some userland utilities.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-7837	2024-11-21 11:58	2017-06-10	Show	GitHub Exploit DB Packet Storm

265974	9.1	CRITICAL Network	h2o_project dena	h2o	Use-after-free vulnerability in H2O allows remote attackers to cause a denial-of-service (DoS) or obtain server certificate private keys and possibly other information.	CWE-416 Use After Free	CVE-2016-7835	2024-11-21 11:58	2017-06-10	Show	GitHub Exploit DB Packet Storm

265975	7.5	HIGH Network	cybozu	dezie	Cybozu Dezie 8.0.0 to 8.1.1 allows remote attackers to bypass access restrictions to delete an arbitrary DBM (Cybozu Dezie proprietary format) file via unspecified vectors.	CWE-284 Improper Access Control	CVE-2016-7833	2024-11-21 11:58	2017-06-10	Show	GitHub Exploit DB Packet Storm

265976	5.3	MEDIUM Network	cybozu	dezie	Cybozu Dezie 8.0.0 to 8.1.1 allows remote attackers to bypass access restrictions to obtain an arbitrary DBM (Cybozu Dezie proprietary format) file via unspecified vectors.	CWE-200 Information Exposure	CVE-2016-7832	2024-11-21 11:58	2017-06-10	Show	GitHub Exploit DB Packet Storm

265977	6.1	MEDIUM Network	fenrir-inc	sleipnir	Sleipnir 4 Black Edition for Mac 4.5.3 and earlier and Sleipnir 4 for Mac 4.5.3 and earlier (Mac App Store) may allow a remote attacker to spoof the URL display via a specially crafted webpage.	CWE-601 Open Redirect	CVE-2016-7831	2024-11-21 11:58	2017-06-10	Show	GitHub Exploit DB Packet Storm

265978	8.8	HIGH Adjacent	sony	pcs-xg100_firmware pcs-xg77_firmware pcs-xc1_firmware	Sony PCS-XG100, PCS-XG100S, PCS-XG100C, PCS-XG77, PCS-XG77S, PCS-XG77C devices with firmware versions prior to Ver.1.51 and PCS-XC1 devices with firmware version prior to Ver.1.22 allow an attacker o…	CWE-306 Missing Authentication for Critical Function	CVE-2016-7830	2024-11-21 11:58	2017-06-10	Show	GitHub Exploit DB Packet Storm

265979	6.5	MEDIUM Network	buffalotech	wnc01wh_firmware	Directory traversal vulnerability in Buffalo WNC01WH devices with firmware version 1.0.0.8 and earlier allows authenticated attackers to read arbitrary files via specially crafted POST requests.	CWE-22 Path Traversal	CVE-2016-7826	2024-11-21 11:58	2017-06-10	Show	GitHub Exploit DB Packet Storm

265980	6.5	MEDIUM Network	buffalotech	wnc01wh_firmware	Directory traversal vulnerability in Buffalo WNC01WH devices with firmware version 1.0.0.8 and earlier allows authenticated attackers to read arbitrary files via specially crafted commands.	CWE-22 Path Traversal	CVE-2016-7825	2024-11-21 11:58	2017-06-10	Show	GitHub Exploit DB Packet Storm