Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 25, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
242081	5.4	警告	オラクル	-	Oracle PeopleSoft Enterprise PeopleTools における PC の処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2012-1753	2012-07-20 14:23	2012-07-17	Show	GitHub Exploit DB Packet Storm

242082	4	警告	オラクル	-	Oracle PeopleSoft Enterprise HRMS における Candidate Gateway の処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2012-1748	2012-07-20 14:22	2012-07-17	Show	GitHub Exploit DB Packet Storm

242083	3.5	注意	オラクル	-	Oracle PeopleSoft Enterprise PeopleTools における CM の処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2012-1733	2012-07-20 14:21	2012-07-17	Show	GitHub Exploit DB Packet Storm

242084	4.3	警告	オラクル	-	Oracle Hyperion の Hyperion BI+ における UI および Visualization の処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2012-1729	2012-07-20 13:43	2012-07-17	Show	GitHub Exploit DB Packet Storm

242085	7.8	危険	オラクル	-	Oracle Application Express Listener における脆弱性	CWE-noinfo 情報不足	CVE-2012-1740	2012-07-20 13:38	2012-07-17	Show	GitHub Exploit DB Packet Storm

242086	4	警告	オラクル	-	Oracle Supply Chain Products Suite の Oracle Transportation Management における脆弱性	CWE-noinfo 情報不足	CVE-2012-3117	2012-07-20 12:20	2012-07-17	Show	GitHub Exploit DB Packet Storm

242087	1.9	注意	オラクル	-	Oracle Supply Chain Products Suite の Oracle Transportation Management における脆弱性	CWE-noinfo 情報不足	CVE-2012-3116	2012-07-20 12:19	2012-07-17	Show	GitHub Exploit DB Packet Storm

242088	4.3	警告	オラクル	-	Oracle Supply Chain Products Suite の Oracle Transportation Management における脆弱性	CWE-noinfo 情報不足	CVE-2012-3114	2012-07-20 12:18	2012-07-17	Show	GitHub Exploit DB Packet Storm

242089	4	警告	オラクル	-	Oracle Supply Chain Products Suite の Oracle AutoVue における脆弱性	CWE-noinfo 情報不足	CVE-2012-1759	2012-07-20 12:18	2012-07-17	Show	GitHub Exploit DB Packet Storm

242090	4	警告	オラクル	-	Oracle Supply Chain Products Suite の Oracle AutoVue における脆弱性	CWE-noinfo 情報不足	CVE-2012-1758	2012-07-20 12:17	2012-07-17	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 25, 2026, 4:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
269131	5.3	MEDIUM Network	edx	edx-platform	edx-platform before 2016-06-10 allows account activation with a spoofed e-mail address.	CWE-20 Improper Input Validation	CVE-2016-10765	2024-11-21 11:44	2019-07-30	Show	GitHub Exploit DB Packet Storm

269132	9.8	CRITICAL Network	linux	linux_kernel	In the Linux kernel before 4.9.6, there is an off by one in the drivers/mtd/spi-nor/cadence-quadspi.c cqspi_setup_flash() function. There are CQSPI_MAX_CHIPSELECT elements in the ->f_pdata array so t…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-10764	2024-11-21 11:44	2019-07-28	Show	GitHub Exploit DB Packet Storm

269133	4.8	MEDIUM Network	automattic	camptix_event_ticketing	The CampTix Event Ticketing plugin before 1.5 for WordPress allows XSS in the admin section via a ticket title or body.	CWE-79 Cross-site Scripting	CVE-2016-10763	2024-11-21 11:44	2019-07-18	Show	GitHub Exploit DB Packet Storm

269134	7.5	HIGH Network	automattic	camptix_event_ticketing	The CampTix Event Ticketing plugin before 1.5 for WordPress allows CSV injection when the export tool is used.	CWE-77 Command Injection	CVE-2016-10762	2024-11-21 11:44	2019-07-18	Show	GitHub Exploit DB Packet Storm

269135	6.5	MEDIUM Adjacent	logitech	k400r_firmware k360_firmware k750_firmware k830_firmware unifying_receiver_firmware	Logitech Unifying devices before 2016-02-26 allow keystroke injection, bypassing encryption, aka MouseJack.	CWE-74 Injection	CVE-2016-10761	2024-11-21 11:44	2019-06-30	Show	GitHub Exploit DB Packet Storm

269136	9.8	CRITICAL Network	seowonintech	swr-300a_firmware swr-300b_firmware swr-300c_firmware swr-300bg_firmware	On Seowon Intech routers, there is a Command Injection vulnerability in diagnostic.cgi via shell metacharacters in the ping_ipaddr parameter.	CWE-77 Command Injection	CVE-2016-10760	2024-11-21 11:44	2019-06-12	Show	GitHub Exploit DB Packet Storm

269137	9.8	CRITICAL Network	precurio	precurio	The Xinha plugin in Precurio 2.1 allows Directory Traversal, with resultant arbitrary code execution, via ExtendedFileManager/Classes/ExtendedFileManager.php because ExtendedFileManager can be used t…	CWE-22 Path Traversal	CVE-2016-10759	2024-11-21 11:44	2019-05-25	Show	GitHub Exploit DB Packet Storm

269138	8.8	HIGH Network	phpkit	phpkit	PHPKIT 1.6.6 allows arbitrary File Upload, as demonstrated by a .php file to pkinc/admin/mediaarchive.php and pkinc/func/default.php via the image_name parameter.	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2016-10758	2024-11-21 11:44	2019-05-25	Show	GitHub Exploit DB Packet Storm

269139	8.8	HIGH Network	readaxo	readaxo	In Redaxo 5.2.0, the cron management of the admin panel suffers from CSRF that leads to arbitrary Remote Code Execution via addons/cronjob/lib/types/phpcode.php.	CWE-352 Origin Validation Error	CVE-2016-10757	2024-11-21 11:44	2019-05-25	Show	GitHub Exploit DB Packet Storm

269140	8.8	HIGH Network	kliqqi	kliqqi_cms	Kliqqi 3.0.0.5 allows CSRF with resultant Arbitrary File Upload because module.php?module=upload can be used to configure the uploading of .php files, and then modules/upload/upload_main.php can be u…	CWE-352 Origin Validation Error	CVE-2016-10756	2024-11-21 11:44	2019-05-25	Show	GitHub Exploit DB Packet Storm