Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
242161 4.3 警告 RSAセキュリティ - EMC RSA Authentication Manager および RSA SecurID Appliance におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2278 2012-07-18 10:56 2012-07-13 Show GitHub Exploit DB Packet Storm
242162 4.3 警告 CKEditor Team - FCKeditor におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-4000 2012-07-17 16:44 2012-07-12 Show GitHub Exploit DB Packet Storm
242163 4.3 警告 Sayak Banerjee - Sticky Notes の admin/login.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-3999 2012-07-17 16:43 2012-07-12 Show GitHub Exploit DB Packet Storm
242164 7.5 危険 Sayak Banerjee - Sticky Notes における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-3998 2012-07-17 16:43 2012-07-12 Show GitHub Exploit DB Packet Storm
242165 4.3 警告 Sayak Banerjee - Sticky Notes におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-3997 2012-07-17 16:42 2012-07-12 Show GitHub Exploit DB Packet Storm
242166 6.8 警告 VideoLAN - VideoLAN VLC media player の OGG demuxer におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-3377 2012-07-17 16:36 2012-05-2 Show GitHub Exploit DB Packet Storm
242167 6.8 警告 Wafer - Webmatic の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-3350 2012-07-17 16:35 2012-07-12 Show GitHub Exploit DB Packet Storm
242168 9.3 危険 Esri - ESRI ArcMap および ArcGI における任意の VBA コードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2012-1661 2012-07-17 16:29 2012-07-12 Show GitHub Exploit DB Packet Storm
242169 6.8 警告 eXtplorer - eXtplorer におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-3362 2012-07-17 16:27 2012-07-12 Show GitHub Exploit DB Packet Storm
242170 10 危険 Lawrence Berkeley National Laboratory - arpwatch における root 権限を取得される脆弱性 CWE-DesignError
CVE-2012-2653 2012-07-17 16:26 2012-07-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
266351 8.1 HIGH
Network 		intel crosswalk Intel Crosswalk before 19.49.514.5, 20.x before 20.50.533.11, 21.x before 21.51.546.0, and 22.x before 22.51.549.0 interprets a user's acceptance of one invalid X.509 certificate to mean that all inv… CWE-310
CWE-20
Cryptographic Issues
 Improper Input Validation  		CVE-2016-5672 2024-11-21 11:54 2016-08-1 Show GitHub Exploit DB Packet Storm
266352 7.5 HIGH
Network 		siemens simatic_wincc Siemens SIMATIC WinCC 7.0 through SP3 and 7.2 allows remote attackers to read arbitrary WinCC station files via crafted packets. CWE-200
Information Exposure 		CVE-2016-5744 2024-11-21 11:54 2016-07-23 Show GitHub Exploit DB Packet Storm
266353 9.8 CRITICAL
Network 		siemens simatic_batch
simatic_wincc
simatic_openpcs_7 		Siemens SIMATIC WinCC before 7.3 Update 10 and 7.4 before Update 1, SIMATIC BATCH before 8.1 SP1 Update 9 as distributed in SIMATIC PCS 7 through 8.1 SP1, SIMATIC OpenPCS 7 before 8.1 Update 3 as dis… CWE-20
 Improper Input Validation  		CVE-2016-5743 2024-11-21 11:54 2016-07-23 Show GitHub Exploit DB Packet Storm
266354 5.8 MEDIUM
Network 		oracle glassfish_server Unspecified vulnerability in the Oracle GlassFish Server component in Oracle Fusion Middleware 2.1.1 and 3.0.1 allows remote attackers to affect confidentiality via vectors related to Administration. NVD-CWE-noinfo
CVE-2016-5477 2024-11-21 11:54 2016-07-21 Show GitHub Exploit DB Packet Storm
266355 7.6 HIGH
Network 		oracle retail_integration_bus Unspecified vulnerability in the Oracle Retail Integration Bus component in Oracle Retail Applications 13.0, 13.1, 13.2, 14.0, 14.1, and 15.0 allows remote authenticated users to affect confidentiali… NVD-CWE-noinfo
CVE-2016-5476 2024-11-21 11:54 2016-07-21 Show GitHub Exploit DB Packet Storm
266356 7.6 HIGH
Network 		oracle retail_service_backbone Unspecified vulnerability in the Oracle Retail Service Backbone component in Oracle Retail Applications 14.0, 14.1, and 15.0 allows remote authenticated users to affect confidentiality, integrity, an… NVD-CWE-noinfo
CVE-2016-5475 2024-11-21 11:54 2016-07-21 Show GitHub Exploit DB Packet Storm
266357 8.8 HIGH
Network 		oracle retail_service_backbone Unspecified vulnerability in the Oracle Retail Service Backbone component in Oracle Retail Applications 14.0, 14.1, and 15.0 allows remote authenticated users to affect confidentiality, integrity, an… NVD-CWE-noinfo
CVE-2016-5474 2024-11-21 11:54 2016-07-21 Show GitHub Exploit DB Packet Storm
266358 3.1 LOW
Network 		oracle agile_product_lifecycle_management_framework Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote authenticated users to affect confidentiality via vectors related to Fi… NVD-CWE-noinfo
CVE-2016-5473 2024-11-21 11:54 2016-07-21 Show GitHub Exploit DB Packet Storm
266359 7.8 HIGH
Local 		oracle peoplesoft_enterprise_peopletools Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.54 and 8.55 allows local users to affect confidentiality, integrity, and availability via … NVD-CWE-noinfo
CVE-2016-5472 2024-11-21 11:54 2016-07-21 Show GitHub Exploit DB Packet Storm
266360 5.5 MEDIUM
Local 		oracle solaris Unspecified vulnerability in Oracle Sun Solaris 11.3 allows local users to affect availability via vectors related to Kernel, a different vulnerability than CVE-2016-3497 and CVE-2016-5469. NVD-CWE-noinfo
CVE-2016-5471 2024-11-21 11:54 2016-07-21 Show GitHub Exploit DB Packet Storm