Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 7, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
242051 6.8 警告 Wikka Development Team - WikkaWiki の AdminUsers コンポーネントにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2011-4452 2012-09-7 15:13 2011-11-13 Show GitHub Exploit DB Packet Storm
242052 6.4 警告 Wikka Development Team - WikkaWiki の handlers/files.xml/files.xml.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2011-4450 2012-09-7 15:12 2011-12-6 Show GitHub Exploit DB Packet Storm
242053 6.8 警告 Wikka Development Team - WikkaWiki の actions/files/files.php における任意の PHP コードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2011-4449 2012-09-7 15:09 2011-12-3 Show GitHub Exploit DB Packet Storm
242054 7.5 危険 Wikka Development Team - WikkaWiki の actions/usersettings/usersettings.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-4448 2012-09-7 14:56 2011-12-3 Show GitHub Exploit DB Packet Storm
242055 5 警告 Apache Software Foundation - Apache Struts におけるサービス運用妨害 (CPU 資源の消費) の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-4387 2012-09-7 14:54 2012-08-3 Show GitHub Exploit DB Packet Storm
242056 6.8 警告 Apache Software Foundation - Apache Struts のトークンチェックメカニズムにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-4386 2012-09-7 14:52 2012-08-3 Show GitHub Exploit DB Packet Storm
242057 5 警告 Thomas Eibner - Apache HTTP Server 用 mod_rpaf モジュールにおけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2012-3526 2012-09-7 14:49 2012-09-5 Show GitHub Exploit DB Packet Storm
242058 2.1 注意 Tigerfish - Drupal 用 Fancy Slide モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2068 2012-09-6 14:05 2012-03-14 Show GitHub Exploit DB Packet Storm
242059 6.8 警告 CKEditor Team - Drupal 用 FCKeditor および CKEditor モジュールにおける任意の PHP コードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2012-2067 2012-09-6 14:03 2012-03-14 Show GitHub Exploit DB Packet Storm
242060 4.3 警告 CKEditor Team - Drupal 用 FCKeditor および CKEditor モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2066 2012-09-6 14:02 2012-03-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 7, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
265831 9.8 CRITICAL
Network 		citrix provisioning_services Use-after-free vulnerability in Citrix Provisioning Services before 7.12 allows attackers to execute arbitrary code via unspecified vectors. CWE-416
 Use After Free 		CVE-2016-9678 2024-11-21 12:01 2017-01-19 Show GitHub Exploit DB Packet Storm
265832 5.3 MEDIUM
Network 		citrix provisioning_services Citrix Provisioning Services before 7.12 allows attackers to obtain sensitive kernel address information via unspecified vectors. CWE-200
Information Exposure 		CVE-2016-9677 2024-11-21 12:01 2017-01-19 Show GitHub Exploit DB Packet Storm
265833 9.8 CRITICAL
Network 		citrix provisioning_services Buffer overflow in Citrix Provisioning Services before 7.12 allows attackers to execute arbitrary code via unspecified vectors. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-9676 2024-11-21 12:01 2017-01-19 Show GitHub Exploit DB Packet Storm
265834 4.0 MEDIUM
Local 		unzip_project unzip Buffer overflow in the zi_short function in zipinfo.c in Info-Zip UnZip 6.0 allows remote attackers to cause a denial of service (crash) via a large compression method value in the central directory … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-9844 2024-11-21 12:01 2017-01-19 Show GitHub Exploit DB Packet Storm
265835 9.1 CRITICAL
Network 		libical_project libical libical allows remote attackers to cause a denial of service (use-after-free) and possibly read heap memory via a crafted ics file. CWE-416
 Use After Free 		CVE-2016-9584 2024-11-21 12:01 2017-01-19 Show GitHub Exploit DB Packet Storm
265836 5.5 MEDIUM
Local 		gstreamer gstreamer The _parse_pat function in the mpegts parser in GStreamer before 1.10.2 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a crafted file. CWE-476
 NULL Pointer Dereference 		CVE-2016-9813 2024-11-21 12:01 2017-01-14 Show GitHub Exploit DB Packet Storm
265837 7.5 HIGH
Network 		gstreamer gstreamer The gst_mpegts_section_new function in the mpegts decoder in GStreamer before 1.10.2 allows remote attackers to cause a denial of service (out-of-bounds read) via a too small section. CWE-125
Out-of-bounds Read 		CVE-2016-9812 2024-11-21 12:01 2017-01-14 Show GitHub Exploit DB Packet Storm
265838 4.7 MEDIUM
Local 		gstreamer
fedoraproject
debian
redhat 		gstreamer
fedora
debian_linux
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
enterprise_linux_server_aus
enterprise_linux_eus
enterprise_linux_s… 		The windows_icon_typefind function in gst-plugins-base in GStreamer before 1.10.2, when G_SLICE is set to always-malloc, allows remote attackers to cause a denial of service (out-of-bounds read) via … CWE-125
Out-of-bounds Read 		CVE-2016-9811 2024-11-21 12:01 2017-01-14 Show GitHub Exploit DB Packet Storm
265839 5.5 MEDIUM
Local 		gstreamer gstreamer The gst_decode_chain_free_internal function in the flxdex decoder in gst-plugins-good in GStreamer before 1.10.2 allows remote attackers to cause a denial of service (invalid memory read and crash) v… CWE-125
Out-of-bounds Read 		CVE-2016-9810 2024-11-21 12:01 2017-01-14 Show GitHub Exploit DB Packet Storm
265840 7.8 HIGH
Local 		gstreamer gstreamer Off-by-one error in the gst_h264_parse_set_caps function in GStreamer before 1.10.2 allows remote attackers to have unspecified impact via a crafted file, which triggers an out-of-bounds read. CWE-125
Out-of-bounds Read 		CVE-2016-9809 2024-11-21 12:01 2017-01-14 Show GitHub Exploit DB Packet Storm