Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
242421 4.3 警告 aj square - AJ Square AJ Article の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2917 2012-06-26 16:19 2010-07-30 Show GitHub Exploit DB Packet Storm
242422 7.5 危険 aj square - AJ Square AJ HYIP MERIDIAN の news.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-2916 2012-06-26 16:19 2010-07-30 Show GitHub Exploit DB Packet Storm
242423 7.5 危険 aj square - AJ Square AJ HYIP PRIME の welcome.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-2915 2012-06-26 16:19 2010-07-30 Show GitHub Exploit DB Packet Storm
242424 2.1 注意 アップル
citibank		 - Citibank Citi Mobile アプリケーションにおける重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2010-2913 2012-06-26 16:19 2010-07-30 Show GitHub Exploit DB Packet Storm
242425 7.5 危険 alexred
Joomla!		 - Joomla! の oziogallery コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-2910 2012-06-26 16:19 2010-07-28 Show GitHub Exploit DB Packet Storm
242426 7.5 危険 ScriptsFeed.com - ScriptsFeed Scripts Directory の articlesdetails.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-2906 2012-06-26 16:19 2010-07-28 Show GitHub Exploit DB Packet Storm
242427 7.5 危険 ScriptsFeed.com - ScriptsFeed Scripts Directory の info.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-2905 2012-06-26 16:19 2010-07-28 Show GitHub Exploit DB Packet Storm
242428 9.3 危険 DELL EMC (旧 EMC Corporation) - EMC Celerra NAS 機器におけるユーザのデータディレクトリ内の任意のファイルを変更される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-2860 2012-06-26 16:19 2010-08-5 Show GitHub Exploit DB Packet Storm
242429 5 警告 boesch-it - SimpNews の news.php における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2010-2859 2012-06-26 16:19 2010-07-24 Show GitHub Exploit DB Packet Storm
242430 4.3 警告 boesch-it - SimpNews の news.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2858 2012-06-26 16:19 2010-07-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
269101 7.8 HIGH
Local 		apple watchos
iphone_os
mac_os_x
tvos 		The IOHIDFamily API in Apple iOS before 9.2.1, OS X before 10.11.3, and tvOS before 9.1.1 allows local users to gain privileges or cause a denial of service (memory corruption) via unspecified vector… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-1719 2024-11-21 11:46 2016-02-1 Show GitHub Exploit DB Packet Storm
269102 7.3 HIGH
Local 		apple mac_os_x The IOAcceleratorFamily2 interface in IOAcceleratorFamily in Apple OS X before 10.11.3 allows local users to gain privileges or cause a denial of service (memory corruption) via unspecified vectors. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-1718 2024-11-21 11:46 2016-02-1 Show GitHub Exploit DB Packet Storm
269103 7.8 HIGH
Local 		apple tvos
iphone_os
mac_os_x
watchos 		The Disk Images component in Apple iOS before 9.2.1, OS X before 10.11.3, and tvOS before 9.1.1 allows local users to gain privileges or cause a denial of service (memory corruption) via unspecified … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-1717 2024-11-21 11:46 2016-02-1 Show GitHub Exploit DB Packet Storm
269104 7.8 HIGH
Local 		apple mac_os_x AppleGraphicsPowerManagement in Apple OS X before 10.11.3 allows local users to gain privileges or cause a denial of service (memory corruption) via unspecified vectors. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-1716 2024-11-21 11:46 2016-02-1 Show GitHub Exploit DB Packet Storm
269105 6.1 MEDIUM
Network 		siemens ozw672_firmware
ozw772_firmware 		Cross-site scripting (XSS) vulnerability in the login form in the integrated web server on Siemens OZW OZW672 devices before 6.00 and OZW772 devices before 6.00 allows remote attackers to inject arbi… CWE-79
Cross-site Scripting 		CVE-2016-1488 2024-11-21 11:46 2016-01-30 Show GitHub Exploit DB Packet Storm
269106 6.1 MEDIUM
Network 		cisco unity_connection Cross-site scripting (XSS) vulnerability in Cisco Unity Connection 10.5(2.3009) allows remote attackers to inject arbitrary web script or HTML via a crafted value, aka Bug ID CSCux82596. CWE-79
Cross-site Scripting 		CVE-2016-1304 2024-11-21 11:46 2016-01-30 Show GitHub Exploit DB Packet Storm
269107 7.5 HIGH
Network 		cisco 500_series_switch_firmware The web GUI on Cisco Small Business 500 devices 1.2.0.92 allows remote attackers to cause a denial of service via a crafted HTTP request, aka Bug ID CSCul65330. CWE-20
 Improper Input Validation  		CVE-2016-1303 2024-11-21 11:46 2016-01-30 Show GitHub Exploit DB Packet Storm
269108 7.5 HIGH
Network 		intel driver_update_utility Intel Driver Update Utility before 2.4 retrieves driver updates in cleartext, which makes it easier for man-in-the-middle attackers to execute arbitrary code via a crafted file. CWE-345
 Insufficient Verification of Data Authenticity 		CVE-2016-1493 2024-11-21 11:46 2016-01-30 Show GitHub Exploit DB Packet Storm
269109 6.1 MEDIUM
Network 		cisco unity_connection Cross-site scripting (XSS) vulnerability in Cisco Unity Connection (UC) 10.5(2.3009) allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka Bug ID CSCux82582. CWE-79
Cross-site Scripting 		CVE-2016-1300 2024-11-21 11:46 2016-01-28 Show GitHub Exploit DB Packet Storm
269110 5.3 MEDIUM
Network 		cisco 300_series_managed_switch_firmware The web-management GUI implementation on Cisco Small Business SG300 devices 1.4.1.x allows remote attackers to cause a denial of service (HTTPS outage) via crafted HTTPS requests, aka Bug ID CSCuw871… CWE-399
 Resource Management Errors 		CVE-2016-1299 2024-11-21 11:46 2016-01-28 Show GitHub Exploit DB Packet Storm