Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 2, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
241951 5 警告 マイクロソフト - Microsoft Windows の LanmanWorkstation サービスにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2012-1850 2012-08-21 17:28 2012-08-14 Show GitHub Exploit DB Packet Storm
241952 10 危険 マイクロソフト - Microsoft Windows の印刷スプーラーサービスにおけるフォーマット文字列の脆弱性 CWE-134
書式文字列の問題 		CVE-2012-1851 2012-08-21 17:28 2012-08-14 Show GitHub Exploit DB Packet Storm
241953 10 危険 マイクロソフト - Microsoft Windows XP の LanmanWorkstation サービスにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-1852 2012-08-21 17:27 2012-08-14 Show GitHub Exploit DB Packet Storm
241954 10 危険 マイクロソフト - Microsoft Windows XP の LanmanWorkstation サービスにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-1853 2012-08-21 17:26 2012-08-14 Show GitHub Exploit DB Packet Storm
241955 7.2 危険 マイクロソフト - Microsoft Windows のカーネルモードドライバ内の win32k.sys における権限昇格の脆弱性 CWE-399
リソース管理の問題 		CVE-2012-2527 2012-08-21 17:26 2012-08-14 Show GitHub Exploit DB Packet Storm
241956 9.3 危険 マイクロソフト - Microsoft Office 2007 および 2010 における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2012-2524 2012-08-21 17:24 2012-08-14 Show GitHub Exploit DB Packet Storm
241957 9.3 危険 マイクロソフト - Microsoft Visio 2010 および Visio Viewer 2010 におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-1888 2012-08-21 17:23 2012-08-14 Show GitHub Exploit DB Packet Storm
241958 2.1 注意 Ubercart - Drupal 用 Ubercart モジュールにおける重要な情報を取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2012-2299 2012-08-21 15:38 2012-04-25 Show GitHub Exploit DB Packet Storm
241959 5.1 警告 MySQLDumper-Team - MySQLDumper におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-4252 2012-08-21 15:38 2012-08-13 Show GitHub Exploit DB Packet Storm
241960 9.3 危険 Sielco Sistemi - Sielco Sistemi Winlog Pro SCADA および Winlog Lite SCADA におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2012-4359 2012-08-21 15:32 2012-07-31 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
265921 7.5 HIGH
Network 		jwt_project jwt The verify function in Encryption/Symmetric.php in Malcolm Fell jwt before 1.0.3 does not use a timing-safe function for hash comparison, which allows attackers to spoof signatures via a timing attac… CWE-361
 7PK - Time and State 		CVE-2016-7037 2024-11-21 11:57 2017-01-24 Show GitHub Exploit DB Packet Storm
265922 9.8 CRITICAL
Network 		python-jose_project python-jose python-jose before 1.3.2 allows attackers to have unspecified impact by leveraging failure to use a constant time comparison for HMAC keys. CWE-361
 7PK - Time and State 		CVE-2016-7036 2024-11-21 11:57 2017-01-24 Show GitHub Exploit DB Packet Storm
265923 7.5 HIGH
Network 		ffmpeg ffmpeg Heap-based buffer overflow in the decode_block function in libavcodec/exr.c in FFmpeg before 3.1.3 allows remote attackers to cause a denial of service (application crash) via vectors involving tile … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-6920 2024-11-21 11:57 2017-01-24 Show GitHub Exploit DB Packet Storm
265924 7.3 HIGH
Network 		moodle moodle In Moodle 2.x and 3.x, web service tokens are not invalidated when the user password is changed or forced to be changed. CWE-640
 Weak Password Recovery Mechanism for Forgotten Password 		CVE-2016-7038 2024-11-21 11:57 2017-01-20 Show GitHub Exploit DB Packet Storm
265925 6.1 MEDIUM
Network 		opera opera_browser Characters from languages are such as Arabic, Hebrew are displayed from RTL (Right To Left) order in Opera 37.0.2192.105088 for Android, due to mishandling of several unicode characters such as U+FE7… CWE-601
Open Redirect 		CVE-2016-6908 2024-11-21 11:57 2017-01-27 Show GitHub Exploit DB Packet Storm
265926 6.5 MEDIUM
Network 		wordpress wordpress Cross-site request forgery (CSRF) vulnerability in the wp_ajax_update_plugin function in wp-admin/includes/ajax-actions.php in WordPress before 4.6 allows remote attackers to hijack the authenticatio… CWE-352
 Origin Validation Error 		CVE-2016-6897 2024-11-21 11:57 2017-01-19 Show GitHub Exploit DB Packet Storm
265927 7.1 HIGH
Network 		wordpress wordpress Directory traversal vulnerability in the wp_ajax_update_plugin function in wp-admin/includes/ajax-actions.php in WordPress 4.5.3 allows remote authenticated users to cause a denial of service or read… CWE-22
Path Traversal 		CVE-2016-6896 2024-11-21 11:57 2017-01-19 Show GitHub Exploit DB Packet Storm
265928 5.4 MEDIUM
Network 		b2evolution b2evolution Cross-site scripting (XSS) vulnerability in b2evolution 6.7.5 and earlier allows remote authenticated users to inject arbitrary web script or HTML via the site name. CWE-79
Cross-site Scripting 		CVE-2016-7150 2024-11-21 11:57 2017-01-19 Show GitHub Exploit DB Packet Storm
265929 6.1 MEDIUM
Network 		b2evolution b2evolution Cross-site scripting (XSS) vulnerability in b2evolution 6.7.5 and earlier allows remote attackers to inject arbitrary web script or HTML via vectors related to the autolink function. CWE-79
Cross-site Scripting 		CVE-2016-7149 2024-11-21 11:57 2017-01-19 Show GitHub Exploit DB Packet Storm
265930 8.1 HIGH
Network 		unrealircd unrealircd The m_authenticate function in modules/m_sasl.c in UnrealIRCd before 3.2.10.7 and 4.x before 4.0.6 allows remote attackers to spoof certificate fingerprints and consequently log in as another user vi… CWE-287
Improper Authentication 		CVE-2016-7144 2024-11-21 11:57 2017-01-19 Show GitHub Exploit DB Packet Storm