Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 18, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
241931 5 警告 decryptweb
Joomla!		 - Joomla! の dwgraphs コンポーネントの dwgraphs.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-1302 2012-06-26 16:19 2010-04-7 Show GitHub Exploit DB Packet Storm
241932 7.5 危険 The Cacti Group - Cacti の templates_export.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-1431 2012-06-26 16:19 2009-06-28 Show GitHub Exploit DB Packet Storm
241933 5.1 警告 dynpg - DynPG CMS における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2010-1299 2012-06-26 16:19 2010-04-7 Show GitHub Exploit DB Packet Storm
241934 4.3 警告 bbsxp - BBSXP 2008 SP2 におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-1276 2012-06-26 16:19 2010-04-6 Show GitHub Exploit DB Packet Storm
241935 4.3 警告 bbsxp - BBSXP 2008 の ShowPost.asp におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-1275 2012-06-26 16:19 2010-04-6 Show GitHub Exploit DB Packet Storm
241936 9.3 危険 emweb - Emweb Wt における詳細不明な脆弱性 CWE-20
不適切な入力確認 		CVE-2010-1273 2012-06-26 16:19 2010-03-16 Show GitHub Exploit DB Packet Storm
241937 6.8 警告 fh54 - justVisual CMS の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-1268 2012-06-26 16:19 2010-04-6 Show GitHub Exploit DB Packet Storm
241938 7.5 危険 ekith
Joomla!		 - Adam Corley dcs_flashgames における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-1265 2012-06-26 16:19 2010-04-6 Show GitHub Exploit DB Packet Storm
241939 6.8 警告 Apache Software Foundation - Apache ActiveMQ の createDestination.action におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2010-1244 2012-06-26 16:19 2010-04-5 Show GitHub Exploit DB Packet Storm
241940 5 警告 アップル - Apple iPhone の HTTP クライアント機能におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2010-1226 2012-06-26 16:19 2010-04-1 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
266701 6.0 MEDIUM
Local 		qemu
canonical 		qemu
ubuntu_linux 		The ne2000_receive function in the NE2000 NIC emulation support (hw/net/ne2000.c) in QEMU before 2.5.1 allows local guest OS administrators to cause a denial of service (infinite loop and QEMU proces… CWE-20
 Improper Input Validation  		CVE-2016-2841 2024-11-21 11:48 2016-06-17 Show GitHub Exploit DB Packet Storm
266702 7.1 HIGH
Local 		qemu qemu Multiple integer overflows in the USB Net device emulator (hw/usb/dev-network.c) in QEMU before 2.5.1 allow local guest OS administrators to cause a denial of service (QEMU process crash) or obtain s… CWE-189
Numeric Errors 		CVE-2016-2538 2024-11-21 11:48 2016-06-17 Show GitHub Exploit DB Packet Storm
266703 6.5 MEDIUM
Local 		qemu
canonical 		qemu
ubuntu_linux 		The is_rndis function in the USB Net device emulator (hw/usb/dev-network.c) in QEMU before 2.5.1 does not properly validate USB configuration descriptor objects, which allows local guest OS administr… NVD-CWE-Other
CVE-2016-2392 2024-11-21 11:48 2016-06-17 Show GitHub Exploit DB Packet Storm
266704 5.0 MEDIUM
Local 		qemu
canonical
debian 		qemu
ubuntu_linux
debian_linux 		The ohci_bus_start function in the USB OHCI emulation support (hw/usb/hcd-ohci.c) in QEMU allows local guest OS administrators to cause a denial of service (NULL pointer dereference and QEMU process … CWE-476
 NULL Pointer Dereference 		CVE-2016-2391 2024-11-21 11:48 2016-06-17 Show GitHub Exploit DB Packet Storm
266705 8.8 HIGH
Network 		canonical
opensuse
mozilla
novell 		ubuntu_linux
leap
opensuse
network_security_services
firefox
suse_linux_enterprise_server
suse_linux_enterprise_desktop
suse_linux_enterprise_software_development_kit 		Mozilla Network Security Services (NSS) before 3.23, as used in Mozilla Firefox before 47.0, allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly… NVD-CWE-noinfo
CVE-2016-2834 2024-11-21 11:48 2016-06-13 Show GitHub Exploit DB Packet Storm
266706 6.1 MEDIUM
Network 		opensuse
mozilla
canonical 		leap
opensuse
firefox
ubuntu_linux 		Mozilla Firefox before 47.0 ignores Content Security Policy (CSP) directives for cross-domain Java applets, which makes it easier for remote attackers to conduct cross-site scripting (XSS) attacks vi… CWE-79
CWE-254
Cross-site Scripting
 7PK - Security Features 		CVE-2016-2833 2024-11-21 11:48 2016-06-13 Show GitHub Exploit DB Packet Storm
266707 4.3 MEDIUM
Network 		canonical
mozilla
opensuse 		ubuntu_linux
firefox
leap
opensuse 		Mozilla Firefox before 47.0 allows remote attackers to discover the list of disabled plugins via a fingerprinting attack involving Cascading Style Sheets (CSS) pseudo-classes. CWE-200
Information Exposure 		CVE-2016-2832 2024-11-21 11:48 2016-06-13 Show GitHub Exploit DB Packet Storm
266708 8.8 HIGH
Network 		canonical
mozilla
debian
opensuse 		ubuntu_linux
firefox
debian_linux
leap
opensuse 		Mozilla Firefox before 47.0 and Firefox ESR 45.x before 45.2 do not ensure that the user approves the fullscreen and pointerlock settings, which allows remote attackers to cause a denial of service (… CWE-254
CWE-284
 7PK - Security Features
Improper Access Control 		CVE-2016-2831 2024-11-21 11:48 2016-06-13 Show GitHub Exploit DB Packet Storm
266709 6.5 MEDIUM
Network 		canonical
mozilla
opensuse 		ubuntu_linux
firefox
leap
opensuse 		Mozilla Firefox before 47.0 allows remote attackers to spoof permission notifications via a crafted web site that rapidly triggers permission requests, as demonstrated by the microphone permission or… CWE-284
Improper Access Control 		CVE-2016-2829 2024-11-21 11:48 2016-06-13 Show GitHub Exploit DB Packet Storm
266710 8.8 HIGH
Network 		canonical
opensuse
mozilla
debian 		ubuntu_linux
leap
opensuse
firefox
debian_linux 		Use-after-free vulnerability in Mozilla Firefox before 47.0 and Firefox ESR 45.x before 45.2 allows remote attackers to execute arbitrary code via WebGL content that triggers texture access after des… NVD-CWE-Other
CVE-2016-2828 2024-11-21 11:48 2016-06-13 Show GitHub Exploit DB Packet Storm