Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 25, 2026, 12:07 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
242531 4.3 警告 Apache Software Foundation - SAP Business Objects などで使用される Apache Axis2/Java の axis2-admin/axis2-admin/engagingglobally におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2103 2012-06-26 16:19 2010-05-27 Show GitHub Exploit DB Packet Storm
242532 7.5 危険 e107.org - e107 の bbcode/php.bb における PHP リモートファイルインクルージョンの脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-2099 2012-06-26 16:19 2010-05-27 Show GitHub Exploit DB Packet Storm
242533 7.5 危険 e107.org - e107 の usersettings.php におけるSQL インジェクション攻撃を誘発される脆弱性 CWE-Other
その他 		CVE-2010-2098 2012-06-26 16:19 2010-05-27 Show GitHub Exploit DB Packet Storm
242534 7.5 危険 cmsqlite - CMSQlite の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-2096 2012-06-26 16:19 2010-05-27 Show GitHub Exploit DB Packet Storm
242535 7.5 危険 cmsqlite - CMSQlite の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-2095 2012-06-26 16:19 2010-05-27 Show GitHub Exploit DB Packet Storm
242536 7.5 危険 The Cacti Group - Cacti の graph.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-2092 2012-06-26 16:19 2010-05-27 Show GitHub Exploit DB Packet Storm
242537 4 警告 Apache Software Foundation - IBM WebSphere Application Server などで使用される Apache MyFaces における任意の EL 宣言文を実行される脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2086 2012-06-26 16:19 2010-05-27 Show GitHub Exploit DB Packet Storm
242538 5 警告 シスコシステムズ - Cisco Scientific Atlanta WebSTAR DPC2100R2 ケーブルモデムの Web インターフェースにおける特権を取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2010-2082 2012-06-26 16:19 2010-05-26 Show GitHub Exploit DB Packet Storm
242539 7.5 危険 Apache Software Foundation - Apache ServiceMix などで使用される Apache CXF における任意のファイルを読まれ任意の HTTP リクエストをサーバに送信される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-2076 2012-06-26 16:19 2010-06-16 Show GitHub Exploit DB Packet Storm
242540 3.3 注意 GNU Project - GNU gv における任意のファイルを上書きされる脆弱性 CWE-59
リンク解釈の問題 		CVE-2010-2056 2012-06-26 16:19 2010-06-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 25, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
268811 9.8 CRITICAL
Network 		adobe acrobat
acrobat_dc
acrobat_reader_dc
reader 		Use-after-free vulnerability in Adobe Reader and Acrobat before 11.0.18, Acrobat and Acrobat Reader DC Classic before 15.006.30243, and Acrobat and Acrobat Reader DC Continuous before 15.020.20039 on… CWE-416
 Use After Free 		CVE-2016-1089 2024-11-21 11:45 2016-10-14 Show GitHub Exploit DB Packet Storm
268812 8.2 HIGH
Network 		apache struts ActionServlet.java in Apache Struts 1 1.x through 1.3.10 does not properly restrict the Validator configuration, which allows remote attackers to conduct cross-site scripting (XSS) attacks or cause a… CWE-20
 Improper Input Validation  		CVE-2016-1182 2024-11-21 11:45 2016-07-5 Show GitHub Exploit DB Packet Storm
268813 8.1 HIGH
Network 		oracle
apache 		banking_platform
portal
struts 		ActionServlet.java in Apache Struts 1 1.x through 1.3.10 mishandles multithreaded access to an ActionForm instance, which allows remote attackers to execute arbitrary code or cause a denial of servic… NVD-CWE-noinfo
CVE-2016-1181 2024-11-21 11:45 2016-07-5 Show GitHub Exploit DB Packet Storm
268814 8.8 HIGH
Network 		ntt-west
ntt-east 		pr-400mi_firmware
pr-400mi
rt-400mi_firmware
rv-440mi_firmware 		Cross-site request forgery (CSRF) vulnerability on NTT EAST Hikari Denwa routers with firmware PR-400MI, RT-400MI, and RV-440MI 07.00.1006 and earlier and NTT WEST Hikari Denwa routers with firmware … CWE-352
 Origin Validation Error 		CVE-2016-1228 2024-11-21 11:45 2016-07-3 Show GitHub Exploit DB Packet Storm
268815 7.2 HIGH
Network 		ntt-east
ntt-west 		rt-400mi_firmware
pr-400mi_firmware
rv-440mi_firmware 		NTT EAST Hikari Denwa routers with firmware PR-400MI, RT-400MI, and RV-440MI 07.00.1006 and earlier and NTT WEST Hikari Denwa routers with firmware PR-400MI, RT-400MI, and RV-440MI 07.00.1005 and ear… NVD-CWE-noinfo
CVE-2016-1227 2024-11-21 11:45 2016-07-3 Show GitHub Exploit DB Packet Storm
268816 7.5 HIGH
Network 		cybozu garoon Cybozu Garoon 3.7 through 4.2 allows remote attackers to obtain sensitive email-reading information via unspecified vectors. CWE-200
Information Exposure 		CVE-2016-1193 2024-11-21 11:45 2016-06-26 Show GitHub Exploit DB Packet Storm
268817 6.5 MEDIUM
Network 		cybozu garoon Cybozu Garoon 3.1 through 4.2 allows remote authenticated users to bypass intended restrictions on MultiReport reading via unspecified vectors. CWE-284
Improper Access Control 		CVE-2016-1190 2024-11-21 11:45 2016-06-26 Show GitHub Exploit DB Packet Storm
268818 8.1 HIGH
Network 		cybozu garoon Cybozu Garoon 3.x and 4.x before 4.2.1 allows remote authenticated users to bypass intended restrictions on reading, creating, or modifying a portlet via unspecified vectors. NVD-CWE-noinfo
CVE-2016-1189 2024-11-21 11:45 2016-06-26 Show GitHub Exploit DB Packet Storm
268819 6.5 MEDIUM
Network 		cybozu garoon Cybozu Garoon 3.x and 4.x before 4.2.1 allows remote authenticated users to send spoofed e-mail messages via unspecified vectors. NVD-CWE-noinfo
CVE-2016-1188 2024-11-21 11:45 2016-06-26 Show GitHub Exploit DB Packet Storm
268820 4.3 MEDIUM
Network 		cybozu garoon Cybozu Garoon 3.x and 4.x before 4.2.1 allows remote authenticated users to bypass intended access restrictions and obtain sensitive Address Book information via an API call, a different vulnerabilit… CWE-264
CWE-200
Permissions, Privileges, and Access Controls
Information Exposure 		CVE-2016-1196 2024-11-21 11:45 2016-06-20 Show GitHub Exploit DB Packet Storm