Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 24, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
242511 6.8 警告 directnews - Direct News における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2010-1342 2012-06-26 16:19 2010-04-9 Show GitHub Exploit DB Packet Storm
242512 5 警告 ermenegildo fiorito - Irmin CMS におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-1309 2012-06-26 16:19 2010-04-8 Show GitHub Exploit DB Packet Storm
242513 5 警告 decryptweb
Joomla!		 - Joomla! の dwgraphs コンポーネントの dwgraphs.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-1302 2012-06-26 16:19 2010-04-7 Show GitHub Exploit DB Packet Storm
242514 7.5 危険 The Cacti Group - Cacti の templates_export.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-1431 2012-06-26 16:19 2009-06-28 Show GitHub Exploit DB Packet Storm
242515 5.1 警告 dynpg - DynPG CMS における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2010-1299 2012-06-26 16:19 2010-04-7 Show GitHub Exploit DB Packet Storm
242516 4.3 警告 bbsxp - BBSXP 2008 SP2 におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-1276 2012-06-26 16:19 2010-04-6 Show GitHub Exploit DB Packet Storm
242517 4.3 警告 bbsxp - BBSXP 2008 の ShowPost.asp におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-1275 2012-06-26 16:19 2010-04-6 Show GitHub Exploit DB Packet Storm
242518 9.3 危険 emweb - Emweb Wt における詳細不明な脆弱性 CWE-20
不適切な入力確認 		CVE-2010-1273 2012-06-26 16:19 2010-03-16 Show GitHub Exploit DB Packet Storm
242519 6.8 警告 fh54 - justVisual CMS の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-1268 2012-06-26 16:19 2010-04-6 Show GitHub Exploit DB Packet Storm
242520 7.5 危険 ekith
Joomla!		 - Adam Corley dcs_flashgames における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-1265 2012-06-26 16:19 2010-04-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 24, 2026, 4:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
266781 8.8 HIGH
Network 		cacti cacti SQL injection vulnerability in graph_view.php in Cacti 0.8.8.g allows remote authenticated users to execute arbitrary SQL commands via the host_group_data parameter. CWE-89
SQL Injection 		CVE-2016-3659 2024-11-21 11:50 2016-04-12 Show GitHub Exploit DB Packet Storm
266782 8.8 HIGH
Network 		google
canonical
opensuse 		v8
ubuntu_linux
opensuse
chrome 		Multiple unspecified vulnerabilities in Google V8 before 4.9.385.33, as used in Google Chrome before 49.0.2623.108, allow attackers to cause a denial of service or possibly have other impact via unkn… NVD-CWE-noinfo
CVE-2016-3679 2024-11-21 11:50 2016-03-29 Show GitHub Exploit DB Packet Storm
266783 5.4 MEDIUM
Network 		thoughtbot administrate Cross-site request forgery (CSRF) vulnerability in administrate 0.1.4 and earlier allows remote attackers to hijack the user's OAuth autorization code. CWE-352
 Origin Validation Error 		CVE-2016-3098 2024-11-21 11:49 2022-08-6 Show GitHub Exploit DB Packet Storm
266784 5.5 MEDIUM
Local 		uclouvain openjpeg The color_esycc_to_rgb function in bin/common/color.c in OpenJPEG before 2.1.1 allows attackers to cause a denial of service (memory corruption) via a crafted jpeg 2000 file. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-3182 2024-11-21 11:49 2020-02-20 Show GitHub Exploit DB Packet Storm
266785 6.5 MEDIUM
Network 		cloudera cloudera_manager Cloudera Manager 5.x before 5.7.1 places Sensitive Data in cleartext Readable Files. CWE-312
 Cleartext Storage of Sensitive Information 		CVE-2016-3192 2024-11-21 11:49 2019-11-26 Show GitHub Exploit DB Packet Storm
266786 6.5 MEDIUM
Network 		cloudera cdh Cloudera CDH before 5.6.1 allows authorization bypass via direct internal API calls. CWE-863
 Incorrect Authorization 		CVE-2016-3131 2024-11-21 11:49 2019-11-26 Show GitHub Exploit DB Packet Storm
266787 5.9 MEDIUM
Network 		ibm rational_clearquest IBM Rational ClearQuest 8.0 through 8.0.1.9 and 9.0 through 9.0.1.3 (CQ OSLC linkages, EmailRelay) fails to check the SSL certificate against the requested hostname. It is subject to a man-in-the-mid… CWE-295
Improper Certificate Validation  		CVE-2016-2922 2024-11-21 11:49 2018-08-14 Show GitHub Exploit DB Packet Storm
266788 8.1 HIGH
Network 		ibm tealeaf_customer_experience IBM Tealeaf Customer Experience 8.7, 8.8, and 9.0.2 could allow a remote attacker under unusual circumstances to read operational data or TLS session state for any active sessions, cause denial of se… CWE-20
 Improper Input Validation  		CVE-2016-2983 2024-11-21 11:49 2018-01-27 Show GitHub Exploit DB Packet Storm
266789 5.4 MEDIUM
Network 		ibm openpages_grc_platform IBM OpenPages GRC Platform 7.1, 7.2, and 7.3 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functio… CWE-79
Cross-site Scripting 		CVE-2016-3048 2024-11-21 11:49 2017-11-2 Show GitHub Exploit DB Packet Storm
266790 8.8 HIGH
Network 		apache struts The TextParseUtil.translateVariables method in Apache Struts 2.x before 2.3.20 allows remote attackers to execute arbitrary code via a crafted OGNL expression with ANTLR tooling. CWE-20
 Improper Input Validation  		CVE-2016-3090 2024-11-21 11:49 2017-10-30 Show GitHub Exploit DB Packet Storm