Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 7, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
242561	7.5	危険	Ushahidi	-	Ushahidi Platform における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-3468	2012-08-14 16:43	2012-08-12	Show	GitHub Exploit DB Packet Storm

242562	4.3	警告	Escon Information Consulting	-	ESCON SupportPortal Professional Edition におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-2590	2012-08-14 16:38	2012-08-12	Show	GitHub Exploit DB Packet Storm

242563	4.3	警告	AfterLogic	-	AfterLogic MailSuite Pro におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-2587	2012-08-14 16:37	2012-08-12	Show	GitHub Exploit DB Packet Storm

242564	4.3	警告	Zoho Corporation	-	ManageEngine ServiceDesk Plus におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-2585	2012-08-14 16:35	2012-08-12	Show	GitHub Exploit DB Packet Storm

242565	4.3	警告	T-dah	-	T-dah WebMail におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-2573	2012-08-14 16:34	2012-08-12	Show	GitHub Exploit DB Packet Storm

242566	4.3	警告	WinWebMail	-	WinWebMail Servert におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-2571	2012-08-14 16:33	2012-08-12	Show	GitHub Exploit DB Packet Storm

242567	10	危険	Amazon.com, Inc.	-	Amazon Kindle Touch における任意のコマンドを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2012-4249	2012-08-14 16:31	2012-08-12	Show	GitHub Exploit DB Packet Storm

242568	9.3	危険	Amazon.com, Inc.	-	Amazon Kindle Touch における脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-4248	2012-08-14 16:30	2012-08-12	Show	GitHub Exploit DB Packet Storm

242569	7.5	危険	Dir2web	-	Dir2web における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-4070	2012-08-14 16:29	2012-08-12	Show	GitHub Exploit DB Packet Storm

242570	5	警告	Dir2web	-	Dir2web におけるデータベースをダウンロードされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-4069	2012-08-14 16:26	2012-08-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 7, 2026, 4:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
266231	5.9	MEDIUM Network	ntp	ntp	ntpd in NTP before 4.2.8p9, when the trap service is enabled, allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a crafted packet.	CWE-476 NULL Pointer Dereference	CVE-2016-9311	2024-11-21 12:00	2017-01-14	Show	GitHub Exploit DB Packet Storm

266232	6.5	MEDIUM Network	ntp	ntp	The control mode (mode 6) functionality in ntpd in NTP before 4.2.8p9 allows remote attackers to set or unset traps via a crafted control mode packet.	CWE-400 Uncontrolled Resource Consumption	CVE-2016-9310	2024-11-21 12:00	2017-01-14	Show	GitHub Exploit DB Packet Storm

266233	7.5	HIGH Network	otr	gajim-otr	The OTR plugin for Gajim sends information in cleartext when using XHTML, which allows remote attackers to obtain sensitive information via unspecified vectors.	CWE-200 Information Exposure	CVE-2016-9107	2024-11-21 12:00	2017-01-14	Show	GitHub Exploit DB Packet Storm

266234	5.5	MEDIUM Local	jasper_project	jasper	The jpc_dec_tiledecode function in jpc_dec.c in JasPer before 1.900.8 allows remote attackers to cause a denial of service (assertion failure) via a crafted file.	CWE-399 Resource Management Errors	CVE-2016-8883	2024-11-21 12:00	2017-01-14	Show	GitHub Exploit DB Packet Storm

266235	5.5	MEDIUM Local	jasper_project	jasper	The jpc_dec_tilefini function in libjasper/jpc/jpc_dec.c in JasPer before 1.900.8 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a crafted file.	CWE-476 NULL Pointer Dereference	CVE-2016-8882	2024-11-21 12:00	2017-01-14	Show	GitHub Exploit DB Packet Storm

266236	9.8	CRITICAL Network	jenkins fedoraproject	jenkins fedora	The remoting module in Jenkins before 2.32 and LTS before 2.19.3 allows remote attackers to execute arbitrary code via a crafted serialized Java object, which triggers an LDAP query to a third-party …	CWE-90 LDAP Injection	CVE-2016-9299	2024-11-21 12:00	2017-01-13	Show	GitHub Exploit DB Packet Storm

266237	7.5	HIGH Network	isc	bind	named in ISC BIND 9.9.9-P4, 9.9.9-S6, 9.10.4-P4, and 9.11.0-P1 allows remote attackers to cause a denial of service (assertion failure and daemon exit) via a response containing an inconsistency amon…	CWE-20 Improper Input Validation	CVE-2016-9147	2024-11-21 12:00	2017-01-12	Show	GitHub Exploit DB Packet Storm

266238	7.5	HIGH Network	isc debian redhat netapp	bind debian_linux enterprise_linux_desktop enterprise_linux_server_aus enterprise_linux_server_tus enterprise_linux_server enterprise_linux_eus enterprise_linux_server_workstatio…	named in ISC BIND 9.x before 9.9.9-P5, 9.10.x before 9.10.4-P5, and 9.11.x before 9.11.0-P2 allows remote attackers to cause a denial of service (assertion failure and daemon exit) via a malformed re…	CWE-20 Improper Input Validation	CVE-2016-9131	2024-11-21 12:00	2017-01-12	Show	GitHub Exploit DB Packet Storm

266239	3.7	LOW Network	python	urllib3	Versions 1.17 and 1.18 of the Python urllib3 library suffer from a vulnerability that can cause them, in certain configurations, to not correctly validate TLS certificates. This places users of the l…	CWE-295 Improper Certificate Validation	CVE-2016-9015	2024-11-21 12:00	2017-01-12	Show	GitHub Exploit DB Packet Storm

266240	5.9	MEDIUM Network	f5	big-ip_local_traffic_manager big-ip_application_acceleration_manager big-ip_advanced_firewall_manager big-ip_analytics big-ip_access_policy_manager big-ip_application_security_manager<…	Under certain conditions for BIG-IP systems using a virtual server with an associated FastL4 profile and TCP analytics profile, a specific sequence of packets may cause the Traffic Management Microke…	CWE-20 Improper Input Validation	CVE-2016-9247	2024-11-21 12:00	2017-01-11	Show	GitHub Exploit DB Packet Storm