Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
241931 5 警告 EGroupware - EGroupware Enterprise Line および EGroupware Community Edition におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2011-4948 2012-09-5 11:34 2011-08-4 Show GitHub Exploit DB Packet Storm
241932 6.8 警告 e107.org - e107 の e107_admin/users_extended.php におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2011-4947 2012-09-5 11:33 2011-05-28 Show GitHub Exploit DB Packet Storm
241933 6.8 警告 e107.org - e107 の e107_admin/users_extended.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-4946 2012-09-5 11:26 2011-05-28 Show GitHub Exploit DB Packet Storm
241934 4.3 警告 SpamTitan Technologies - SpamTitan におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-5150 2012-09-5 11:25 2012-08-31 Show GitHub Exploit DB Packet Storm
241935 4.3 警告 SpamTitan Technologies - SpamTitan におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-5149 2012-09-5 11:25 2012-08-31 Show GitHub Exploit DB Packet Storm
241936 6.8 警告 Wasen - Joomla! 用 Simple File Upload モジュールにおける任意のコードを実行される脆弱性 CWE-Other
その他 		CVE-2011-5148 2012-09-5 11:23 2012-01-2 Show GitHub Exploit DB Packet Storm
241937 5 警告 FreeWebshop - FreeWebshop の tinymce プラグインにおける任意の PHP コードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2011-5147 2012-09-5 11:19 2012-08-31 Show GitHub Exploit DB Packet Storm
241938 2.6 注意 Inguma - Debian 用 Bokken における任意のファイルを上書される脆弱性 CWE-59
リンク解釈の問題 		CVE-2011-5146 2012-09-5 11:17 2012-01-24 Show GitHub Exploit DB Packet Storm
241939 5.5 警告 OBM - Open Business Management における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-5145 2012-09-5 11:15 2012-08-31 Show GitHub Exploit DB Packet Storm
241940 5 警告 OBM - Open Business Management における設定情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-5144 2012-09-5 11:13 2012-08-31 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
265911 7.8 HIGH
Local 		iceni argus An exploitable stack-based buffer overflow vulnerability exists in the ipfSetColourStroke functionality of Iceni Argus version 6.6.04 A specially crafted pdf file can cause a buffer overflow resultin… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-8333 2024-11-21 11:59 2016-10-29 Show GitHub Exploit DB Packet Storm
265912 8.1 HIGH
Network 		libtiff libtiff An exploitable remote code execution vulnerability exists in the handling of TIFF images in LibTIFF version 4.0.6. A crafted TIFF document can lead to a type confusion vulnerability resulting in remo… NVD-CWE-Other
CVE-2016-8331 2024-11-21 11:59 2016-10-29 Show GitHub Exploit DB Packet Storm
265913 7.5 HIGH
Network 		dotcms dotcms In dotCMS 3.2.1, attacker can load captcha once, fill it with correct value and then this correct value is ok for forms with captcha check later. CWE-264
CWE-254
Permissions, Privileges, and Access Controls
 7PK - Security Features 		CVE-2016-8600 2024-11-21 11:59 2016-10-29 Show GitHub Exploit DB Packet Storm
265914 9.8 CRITICAL
Network 		libcsp_project libcsp Buffer overflow in the zmq interface in csp_if_zmqhub.c in the libcsp library v1.4 and earlier allows hostile computers connected via a zmq interface to execute arbitrary code via a long packet. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-8598 2024-11-21 11:59 2016-10-29 Show GitHub Exploit DB Packet Storm
265915 9.8 CRITICAL
Network 		libcsp_project libcsp Buffer overflow in the csp_sfp_recv_fp in csp_sfp.c in the libcsp library v1.4 and earlier allows hostile components with network access to the SFP underlying network layers to execute arbitrary code… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-8597 2024-11-21 11:59 2016-10-29 Show GitHub Exploit DB Packet Storm
265916 9.8 CRITICAL
Network 		libcsp_project libcsp Buffer overflow in the csp_can_process_frame in csp_if_can.c in the libcsp library v1.4 and earlier allows hostile components connected to the canbus to execute arbitrary code via a long csp packet. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-8596 2024-11-21 11:59 2016-10-29 Show GitHub Exploit DB Packet Storm
265917 6.1 MEDIUM
Network 		alienvault unified_security_management
open_source_security_information_and_event_management 		Multiple GET parameters in the vulnerability scan scheduler of AlienVault OSSIM and USM before 5.3.2 are vulnerable to reflected XSS. CWE-79
Cross-site Scripting 		CVE-2016-8583 2024-11-21 11:59 2016-10-29 Show GitHub Exploit DB Packet Storm
265918 9.8 CRITICAL
Network 		alienvault unified_security_management
open_source_security_information_and_event_management 		A vulnerability exists in gauge.php of AlienVault OSSIM and USM before 5.3.2 that allows an attacker to execute an arbitrary SQL query and retrieve database information or read local system files via… CWE-89
SQL Injection 		CVE-2016-8582 2024-11-21 11:59 2016-10-29 Show GitHub Exploit DB Packet Storm
265919 6.1 MEDIUM
Network 		alienvault unified_security_management
open_source_security_information_and_event_management 		A persistent XSS vulnerability exists in the User-Agent header of the login process of AlienVault OSSIM and USM before 5.3.2 that allows an attacker to steal session IDs of logged in users when the c… CWE-79
Cross-site Scripting 		CVE-2016-8581 2024-11-21 11:59 2016-10-29 Show GitHub Exploit DB Packet Storm
265920 9.8 CRITICAL
Network 		alienvault unified_security_management
open_source_security_information_and_event_management 		PHP object injection vulnerabilities exist in multiple widget files in AlienVault OSSIM and USM before 5.3.2. These vulnerabilities allow arbitrary PHP code execution via magic methods in included cl… CWE-284
Improper Access Control 		CVE-2016-8580 2024-11-21 11:59 2016-10-29 Show GitHub Exploit DB Packet Storm