Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 3, 2026, 6:08 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
242091	4.3	警告	Roundcube.net	-	Roundcube Webmail におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-4668	2012-08-28 16:11	2012-08-14	Show	GitHub Exploit DB Packet Storm

242092	4.3	警告	Gilles Darold	-	SquidClamav におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-4667	2012-08-28 16:09	2012-08-25	Show	GitHub Exploit DB Packet Storm

242093	5	警告	Nicolas Cannasse	-	OCaml Xml-Light Library におけるサービス運用妨害 (DoS) の脆弱性	CWE-310 暗号の問題	CVE-2012-3514	2012-08-28 16:06	2012-08-25	Show	GitHub Exploit DB Packet Storm

242094	4.3	警告	Roundcube.net	-	Roundcube Webmail の program/lib/washtml.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-3508	2012-08-28 15:56	2012-08-14	Show	GitHub Exploit DB Packet Storm

242095	2.6	注意	Roundcube.net	-	RoundCube Webmail の program/steps/mail/func.inc におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-3507	2012-08-28 15:36	2012-06-7	Show	GitHub Exploit DB Packet Storm

242096	6.5	警告	Katello Project	-	Katello における任意のユーザーとして CloudForms System Engine の Web インターフェイスに認証される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-3503	2012-08-28 15:35	2012-08-25	Show	GitHub Exploit DB Packet Storm

242097	5	警告	Gilles Darold	-	SquidClamav の squidclamav.c におけるサービス運用妨害 (デーモンクラッシュ) の脆弱性	CWE-119 バッファエラー	CVE-2012-3501	2012-08-28 15:34	2012-08-25	Show	GitHub Exploit DB Packet Storm

242098	6.8	警告	The GIMP Team	-	GIMP の Adobe Photoshop PSD プラグインにおける整数オーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-3402	2012-08-28 13:49	2012-08-25	Show	GitHub Exploit DB Packet Storm

242099	4.3	警告	OpenTTD	-	OpenTTD におけるサービス運用妨害 (ゲーム休止) の脆弱性	CWE-399 リソース管理の問題	CVE-2012-0048	2012-08-28 13:47	2012-01-6	Show	GitHub Exploit DB Packet Storm

242100	4.3	警告	アドビシステムズ	-	Adobe Flash Player におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-0767	2012-08-27 16:55	2012-02-15	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
266051	7.3	HIGH Local	mcafee	anti-malware_scan_engine	Software Integrity Attacks vulnerability in Intel Security Anti-Virus Engine (AVE) 5200 through 5800 allows local attackers to bypass local security protection via a crafted input file.	CWE-284 Improper Access Control	CVE-2016-8032	2024-11-21 11:58	2017-04-1	Show	GitHub Exploit DB Packet Storm

266052	4.9	MEDIUM Network	fortinet	fortios	A read-only administrator on Fortinet devices with FortiOS 5.2.x before 5.2.10 GA and 5.4.x before 5.4.2 GA may have access to read-write administrators password hashes (not including super-admins) s…	CWE-200 Information Exposure	CVE-2016-7542	2024-11-21 11:58	2017-03-30	Show	GitHub Exploit DB Packet Storm

266053	5.9	MEDIUM Network	fortinet	fortios	Long lived sessions in Fortinet FortiGate devices with FortiOS 5.x before 5.4.0 could violate a security policy during IPS signature updates when the FortiGate's IPSengine is configured in flow mode.…	CWE-254 7PK - Security Features	CVE-2016-7541	2024-11-21 11:58	2017-03-30	Show	GitHub Exploit DB Packet Storm

266054	7.3	HIGH Local	mcafee	anti-malware_scan_engine	Software Integrity Attacks vulnerability in Intel Security Anti-Virus Engine (AVE) 5200 through 5800 allows local users to bypass local security protection via a crafted input file.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-8031	2024-11-21 11:58	2017-03-29	Show	GitHub Exploit DB Packet Storm

266055	5.5	MEDIUM Local	f5	big-ip_local_traffic_manager big-ip_application_acceleration_manager big-ip_advanced_firewall_manager big-ip_analytics big-ip_access_policy_manager big-ip_application_security_manager<…	In some cases the MCPD binary cache in F5 BIG-IP devices may allow a user with Advanced Shell access, or privileges to generate a qkview, to temporarily obtain normally unrecoverable information.	CWE-200 Information Exposure	CVE-2016-7474	2024-11-21 11:58	2017-03-28	Show	GitHub Exploit DB Packet Storm

266056	7.5	HIGH Network	clusterlabs suse opensuse_project opensuse redhat	pacemaker linux_enterprise_software_development_kit leap linux_enterprise_high_availability enterprise_linux_resilient_storage enterprise_linux_high_availability	Pacemaker before 1.1.15, when using pacemaker remote, might allow remote attackers to cause a denial of service (node disconnection) via an unauthenticated connection.	CWE-254 7PK - Security Features	CVE-2016-7797	2024-11-21 11:58	2017-03-25	Show	GitHub Exploit DB Packet Storm

266057	5.9	MEDIUM Network	f5	big-ip_local_traffic_manager big-ip_application_acceleration_manager big-ip_advanced_firewall_manager big-ip_analytics big-ip_access_policy_manager big-ip_application_security_manager<…	An unauthenticated remote attacker may be able to disrupt services on F5 BIG-IP 11.4.1 - 11.5.4 devices with maliciously crafted network traffic. This vulnerability affects virtual servers associated…	CWE-284 Improper Access Control	CVE-2016-7468	2024-11-21 11:58	2017-03-23	Show	GitHub Exploit DB Packet Storm

266058	9.8	CRITICAL Network	alienvault	ossim unified_security_management	The logcheck function in session.inc in AlienVault OSSIM before 5.3.1, when an action has been created, and USM before 5.3.1 allows remote attackers to bypass authentication and consequently obtain s…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-7955	2024-11-21 11:58	2017-03-16	Show	GitHub Exploit DB Packet Storm

266059	10.0	CRITICAL Network	mcafee	epolicy_orchestrator	SQL injection vulnerability in core services in Intel Security McAfee ePolicy Orchestrator (ePO) 5.3.2 and earlier and 5.1.3 and earlier allows attackers to alter a SQL query, which can result in dis…	CWE-89 SQL Injection	CVE-2016-8027	2024-11-21 11:58	2017-03-15	Show	GitHub Exploit DB Packet Storm

266060	7.8	HIGH Local	mcafee	security_scan_plus	Arbitrary command execution vulnerability in Intel Security McAfee Security Scan Plus (SSP) 3.11.469 and earlier allows authenticated users to gain elevated privileges via unspecified vectors.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-8026	2024-11-21 11:58	2017-03-15	Show	GitHub Exploit DB Packet Storm