Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
241831	6.3	警告	EC Software	-	Help & Manual における権限を取得される脆弱性	CWE-Other その他	CVE-2011-5155	2012-09-10 15:27	2012-09-6	Show	GitHub Exploit DB Packet Storm

241832	6.9	警告	SAP	-	SAP GUI の SAPGui.exe または BExAnalyzer.exe における権限を取得される脆弱性	CWE-Other その他	CVE-2011-5154	2012-09-10 15:25	2012-09-6	Show	GitHub Exploit DB Packet Storm

241833	6.3	警告	ACD Systems	-	FotoSlate における権限を取得される脆弱性	CWE-Other その他	CVE-2011-5153	2012-09-10 15:24	2012-09-6	Show	GitHub Exploit DB Packet Storm

241834	6.9	警告	ACD Systems	-	ACDSee Photo Editor 2008 における権限を取得される脆弱性	CWE-Other その他	CVE-2011-5152	2012-09-10 15:23	2012-09-6	Show	GitHub Exploit DB Packet Storm

241835	6.9	警告	ACD Systems	-	ACDSee Picture Frame Manager における権限を取得される脆弱性	CWE-Other その他	CVE-2011-5151	2012-09-10 15:21	2012-09-6	Show	GitHub Exploit DB Packet Storm

241836	6.9	警告	Babylon	-	Babylon における権限を取得される脆弱性	CWE-Other その他	CVE-2010-5225	2012-09-10 14:35	2012-09-6	Show	GitHub Exploit DB Packet Storm

241837	6.9	警告	CoolMedia	-	Cool iPhone Ringtone Maker における権限を取得される脆弱性	CWE-Other その他	CVE-2010-5224	2012-09-10 14:33	2012-09-6	Show	GitHub Exploit DB Packet Storm

241838	6.9	警告	Phoenix Project Management Systems	-	Phoenix Project Manager における権限を取得される脆弱性	CWE-Other その他	CVE-2010-5223	2012-09-10 14:31	2012-09-6	Show	GitHub Exploit DB Packet Storm

241839	6.9	警告	Audiotool	-	Ease Jukebox における権限を取得される脆弱性	CWE-Other その他	CVE-2010-5222	2012-09-10 14:30	2012-09-6	Show	GitHub Exploit DB Packet Storm

241840	6.9	警告	STDUtility	-	STDU Explorer における権限を取得される脆弱性	CWE-Other その他	CVE-2010-5221	2012-09-10 14:30	2012-09-6	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
269531	9.1	CRITICAL Network	sap	netweaver_application_server_java	XML external entity (XXE) vulnerability in the Configuration Wizard in SAP NetWeaver Java AS 7.1 through 7.5 allows remote attackers to cause a denial of service, conduct SMB Relay attacks, or access…	CWE-611 XXE	CVE-2016-3974	2024-11-21 11:51	2016-04-8	Show	GitHub Exploit DB Packet Storm

269532	5.3	MEDIUM Network	sap	netweaver_application_server_java	The chat feature in the Real-Time Collaboration (RTC) services 7.3 and 7.4 in SAP NetWeaver Java AS 7.1 through 7.5 allows remote attackers to obtain sensitive user information by visiting webdynpro/…	CWE-200 Information Exposure	CVE-2016-3973	2024-11-21 11:51	2016-04-8	Show	GitHub Exploit DB Packet Storm

269533	7.5	HIGH Network	squid-cache	squid	Squid 3.x before 3.5.16 and 4.x before 4.0.8 improperly perform bounds checking, which allows remote attackers to cause a denial of service via a crafted HTTP response, related to Vary headers.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-3948	2024-11-21 11:51	2016-04-8	Show	GitHub Exploit DB Packet Storm

269534	8.2	HIGH Network	squid-cache canonical	squid ubuntu_linux	Heap-based buffer overflow in the Icmp6::Recv function in icmp/Icmp6.cc in the pinger utility in Squid before 3.5.16 and 4.x before 4.0.8 allows remote servers to cause a denial of service (performan…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-3947	2024-11-21 11:51	2016-04-8	Show	GitHub Exploit DB Packet Storm

269535	6.1	MEDIUM Network	mcafee	email_gateway	Cross-site scripting (XSS) vulnerability in McAfee Email Gateway (MEG) 7.6.x before 7.6.404, when File Filtering is enabled with the action set to ESERVICES:REPLACE, allows remote attackers to inject…	CWE-79 Cross-site Scripting	CVE-2016-3969	2024-11-21 11:51	2016-04-7	Show	GitHub Exploit DB Packet Storm

269536	6.1	MEDIUM Network	sophos	cyberoam_cr100ing_utm_firmware cyberoam_cr35ing_utm_firmware	Multiple cross-site scripting (XSS) vulnerabilities in Sophos Cyberoam CR100iNG UTM appliance with firmware 10.6.3 MR-1 build 503, CR35iNG UTM appliance with firmware 10.6.2 MR-1 build 383, and CR35i…	CWE-79 Cross-site Scripting	CVE-2016-3968	2024-11-21 11:51	2016-04-7	Show	GitHub Exploit DB Packet Storm

269537	6.1	MEDIUM Network	xmlsoft	libxml2	Possible cross-site scripting vulnerability in libxml after commit 960f0e2.	CWE-79 Cross-site Scripting	CVE-2016-3709	2024-11-21 11:50	2022-07-29	Show	GitHub Exploit DB Packet Storm

269538	8.1	HIGH Network	piwigo	piwigo	Piwigo is image gallery software written in PHP. When a criteria is not met on a host, piwigo defaults to usingmt_rand in order to generate password reset tokens. mt_rand output can be predicted afte…	CWE-335 Incorrect Usage of Seeds in Pseudo-Random Number Generator (PRNG)	CVE-2016-3735	2024-11-21 11:50	2022-01-29	Show	GitHub Exploit DB Packet Storm

269539	5.5	MEDIUM Local	linux redhat	linux_kernel enterprise_linux	The einj_error_inject function in drivers/acpi/apei/einj.c in the Linux kernel allows local users to simulate hardware errors and consequently cause a denial of service by leveraging failure to disab…	CWE-74 Injection	CVE-2016-3695	2024-11-21 11:50	2017-12-30	Show	GitHub Exploit DB Packet Storm

269540	7.5	HIGH Network	fedoraproject pulpproject	fedora pulp	Pulp before 2.8.5 uses bash's $RANDOM in an unsafe way to generate passwords.	CWE-255 Credentials Management	CVE-2016-3704	2024-11-21 11:50	2017-06-14	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed