Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
242541 7.5 危険 e107.org - e107 の bbcode/php.bb における PHP リモートファイルインクルージョンの脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-2099 2012-06-26 16:19 2010-05-27 Show GitHub Exploit DB Packet Storm
242542 7.5 危険 e107.org - e107 の usersettings.php におけるSQL インジェクション攻撃を誘発される脆弱性 CWE-Other
その他 		CVE-2010-2098 2012-06-26 16:19 2010-05-27 Show GitHub Exploit DB Packet Storm
242543 7.5 危険 cmsqlite - CMSQlite の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-2096 2012-06-26 16:19 2010-05-27 Show GitHub Exploit DB Packet Storm
242544 7.5 危険 cmsqlite - CMSQlite の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-2095 2012-06-26 16:19 2010-05-27 Show GitHub Exploit DB Packet Storm
242545 7.5 危険 The Cacti Group - Cacti の graph.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-2092 2012-06-26 16:19 2010-05-27 Show GitHub Exploit DB Packet Storm
242546 4 警告 Apache Software Foundation - IBM WebSphere Application Server などで使用される Apache MyFaces における任意の EL 宣言文を実行される脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2086 2012-06-26 16:19 2010-05-27 Show GitHub Exploit DB Packet Storm
242547 5 警告 シスコシステムズ - Cisco Scientific Atlanta WebSTAR DPC2100R2 ケーブルモデムの Web インターフェースにおける特権を取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2010-2082 2012-06-26 16:19 2010-05-26 Show GitHub Exploit DB Packet Storm
242548 7.5 危険 Apache Software Foundation - Apache ServiceMix などで使用される Apache CXF における任意のファイルを読まれ任意の HTTP リクエストをサーバに送信される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-2076 2012-06-26 16:19 2010-06-16 Show GitHub Exploit DB Packet Storm
242549 3.3 注意 GNU Project - GNU gv における任意のファイルを上書きされる脆弱性 CWE-59
リンク解釈の問題 		CVE-2010-2056 2012-06-26 16:19 2010-06-6 Show GitHub Exploit DB Packet Storm
242550 3.3 注意 emesene - emesene の emesenelib/ProfileManager.py における任意のファイルを上書きされる脆弱性 CWE-59
リンク解釈の問題 		CVE-2010-2053 2012-06-26 16:19 2010-06-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
266571 4.3 MEDIUM
Network 		open-xchange open-xchange_appsuite An issue was discovered in Open-Xchange OX App Suite before 7.8.1-rev8. References to external Open XML document type definitions (.dtd resources) can be placed within .docx and .xslx files. Those re… CWE-200
CWE-611
Information Exposure
XXE 		CVE-2016-4047 2024-11-21 11:51 2016-12-15 Show GitHub Exploit DB Packet Storm
266572 5.8 MEDIUM
Network 		open-xchange open-xchange_appsuite An issue was discovered in Open-Xchange OX App Suite before 7.8.1-rev11. The API to configure external mail accounts can be abused to map and access network components within the trust boundary of th… CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2016-4046 2024-11-21 11:51 2016-12-15 Show GitHub Exploit DB Packet Storm
266573 6.1 MEDIUM
Network 		open-xchange open-xchange_appsuite An issue was discovered in Open-Xchange OX App Suite before 7.8.1-rev11. Script code can be embedded to RSS feeds using a URL notation. In case a user clicks the corresponding link at the RSS reader … CWE-79
Cross-site Scripting 		CVE-2016-4045 2024-11-21 11:51 2016-12-15 Show GitHub Exploit DB Packet Storm
266574 7.5 HIGH
Network 		open-xchange ox_guard An issue was discovered in Open-Xchange OX Guard before 2.4.0-rev8. OX Guard uses an authentication token to identify and transfer guest users' credentials. The OX Guard API acts as a padding oracle… CWE-255
Credentials Management 		CVE-2016-4028 2024-11-21 11:51 2016-12-15 Show GitHub Exploit DB Packet Storm
266575 3.5 LOW
Network 		open-xchange open-xchange_appsuite An issue was discovered in Open-Xchange OX App Suite before 7.8.1-rev10. App Suite frontend offers to control whether a user wants to store cookies that exceed the session duration. This functionalit… CWE-200
Information Exposure 		CVE-2016-4027 2024-11-21 11:51 2016-12-15 Show GitHub Exploit DB Packet Storm
266576 6.1 MEDIUM
Network 		open-xchange open-xchange_appsuite An issue was discovered in Open-Xchange OX App Suite before 7.8.1-rev11. The content sanitizer component has an issue with filtering malicious content in case invalid HTML code is provided. In such c… CWE-79
Cross-site Scripting 		CVE-2016-4026 2024-11-21 11:51 2016-12-15 Show GitHub Exploit DB Packet Storm
266577 9.8 CRITICAL
Network 		bmc bladelogic_server_automation_console BMC BladeLogic Server Automation (BSA) before 8.7 Patch 3 allows remote attackers to bypass authentication and consequently read arbitrary files or possibly have unspecified other impact by leveragin… CWE-287
Improper Authentication 		CVE-2016-4322 2024-11-21 11:51 2016-12-14 Show GitHub Exploit DB Packet Storm
266578 8.6 HIGH
Local 		hdfgroup hdf5 The HDF5 1.8.16 library allocating space for the array using a value from the file has an impact within the loop for initializing said array allowing a value within the file to modify the loop's term… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-4333 2024-11-21 11:51 2016-11-19 Show GitHub Exploit DB Packet Storm
266579 8.6 HIGH
Local 		hdfgroup hdf5 The library's failure to check if certain message types support a particular flag, the HDF5 1.8.16 library will cast the structure to an alternative structure and then assign to fields that aren't su… CWE-20
 Improper Input Validation  		CVE-2016-4332 2024-11-21 11:51 2016-11-19 Show GitHub Exploit DB Packet Storm
266580 8.6 HIGH
Local 		hdfgroup hdf5 When decoding data out of a dataset encoded with the H5Z_NBIT decoding, the HDF5 1.8.16 library will fail to ensure that the precision is within the bounds of the size leading to arbitrary code execu… CWE-787
 Out-of-bounds Write 		CVE-2016-4331 2024-11-21 11:51 2016-11-19 Show GitHub Exploit DB Packet Storm