Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 30, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
242501 4.3 警告 Sayak Banerjee - Sticky Notes の admin/login.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-3999 2012-07-17 16:43 2012-07-12 Show GitHub Exploit DB Packet Storm
242502 7.5 危険 Sayak Banerjee - Sticky Notes における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-3998 2012-07-17 16:43 2012-07-12 Show GitHub Exploit DB Packet Storm
242503 4.3 警告 Sayak Banerjee - Sticky Notes におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-3997 2012-07-17 16:42 2012-07-12 Show GitHub Exploit DB Packet Storm
242504 6.8 警告 VideoLAN - VideoLAN VLC media player の OGG demuxer におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-3377 2012-07-17 16:36 2012-05-2 Show GitHub Exploit DB Packet Storm
242505 6.8 警告 Wafer - Webmatic の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-3350 2012-07-17 16:35 2012-07-12 Show GitHub Exploit DB Packet Storm
242506 9.3 危険 Esri - ESRI ArcMap および ArcGI における任意の VBA コードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2012-1661 2012-07-17 16:29 2012-07-12 Show GitHub Exploit DB Packet Storm
242507 6.8 警告 eXtplorer - eXtplorer におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-3362 2012-07-17 16:27 2012-07-12 Show GitHub Exploit DB Packet Storm
242508 10 危険 Lawrence Berkeley National Laboratory - arpwatch における root 権限を取得される脆弱性 CWE-DesignError
CVE-2012-2653 2012-07-17 16:26 2012-07-12 Show GitHub Exploit DB Packet Storm
242509 5 警告 Mahara - Mahara の auth/saml プラグインのデフォルト設定におけるユーザになりすまされる脆弱性 CWE-16
環境設定 		CVE-2012-2351 2012-07-17 16:21 2012-03-6 Show GitHub Exploit DB Packet Storm
242510 6.8 警告 NiH - libzip の zip_open.c における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2012-1163 2012-07-17 16:19 2012-03-20 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 30, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
266451 5.1 MEDIUM
Local 		ibm websphere_commerce IBM WebSphere Commerce Enterprise, Professional, Express, and Developer 7.0 and 8.0 is vulnerable to information disclosure vulnerability. A local user could view a plain text password in a Unix cons… CWE-200
Information Exposure 		CVE-2016-5894 2024-11-21 11:55 2017-03-9 Show GitHub Exploit DB Packet Storm
266452 5.5 MEDIUM
Local 		openbsd openbsd OpenBSD 5.8 and 5.9 allows local users to cause a denial of service (NULL pointer dereference and panic) via a sysctl call with a path starting with 10,9. CWE-476
 NULL Pointer Dereference 		CVE-2016-6350 2024-11-21 11:55 2017-03-8 Show GitHub Exploit DB Packet Storm
266453 7.5 HIGH
Network 		debian
libupnp_project 		debian_linux
libupnp 		Portable UPnP SDK (aka libupnp) before 1.6.21 allows remote attackers to write to arbitrary files in the webroot via a POST request without a registered handler. CWE-284
Improper Access Control 		CVE-2016-6255 2024-11-21 11:55 2017-03-8 Show GitHub Exploit DB Packet Storm
266454 5.5 MEDIUM
Local 		openbsd openbsd OpenBSD 5.8 and 5.9 allows certain local users to cause a denial of service (kernel panic) by unmounting a filesystem with an open vnode on the mnt_vnodelist. CWE-20
 Improper Input Validation  		CVE-2016-6247 2024-11-21 11:55 2017-03-8 Show GitHub Exploit DB Packet Storm
266455 4.4 MEDIUM
Local 		openbsd openbsd OpenBSD 5.8 and 5.9 allows certain local users with kern.usermount privileges to cause a denial of service (kernel panic) by mounting a tmpfs with a VNOVAL in the (1) username, (2) groupname, or (3) … CWE-20
 Improper Input Validation  		CVE-2016-6246 2024-11-21 11:55 2017-03-8 Show GitHub Exploit DB Packet Storm
266456 5.5 MEDIUM
Local 		openbsd openbsd OpenBSD 5.8 and 5.9 allows local users to cause a denial of service (kernel panic) via a large size in a getdents system call. NVD-CWE-noinfo
CVE-2016-6245 2024-11-21 11:55 2017-03-8 Show GitHub Exploit DB Packet Storm
266457 5.5 MEDIUM
Local 		openbsd openbsd thrsleep in kern/kern_synch.c in OpenBSD 5.8 and 5.9 allows local users to cause a denial of service (kernel panic) via a crafted value in the tsp parameter of the __thrsleep system call. CWE-20
 Improper Input Validation  		CVE-2016-6243 2024-11-21 11:55 2017-03-8 Show GitHub Exploit DB Packet Storm
266458 5.5 MEDIUM
Local 		openbsd openbsd OpenBSD 5.8 and 5.9 allows local users to cause a denial of service (assertion failure and kernel panic) via a large ident value in a kevent system call. CWE-189
Numeric Errors 		CVE-2016-6242 2024-11-21 11:55 2017-03-8 Show GitHub Exploit DB Packet Storm
266459 7.8 HIGH
Local 		openbsd openbsd Integer overflow in the amap_alloc1 function in OpenBSD 5.8 and 5.9 allows local users to execute arbitrary code with kernel privileges via a large size value. CWE-190
 Integer Overflow or Wraparound 		CVE-2016-6241 2024-11-21 11:55 2017-03-8 Show GitHub Exploit DB Packet Storm
266460 7.8 HIGH
Local 		openbsd openbsd Integer truncation error in the amap_alloc function in OpenBSD 5.8 and 5.9 allows local users to execute arbitrary code with kernel privileges via a large size value. CWE-189
Numeric Errors 		CVE-2016-6240 2024-11-21 11:55 2017-03-8 Show GitHub Exploit DB Packet Storm