Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 2, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
242601 4.3 警告 vBulletin Solutions, Inc. - vBulletin におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-3844 2012-07-5 15:42 2012-07-3 Show GitHub Exploit DB Packet Storm
242602 4.3 警告 e107.org - e107 の登録ページにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-3843 2012-07-5 15:39 2012-07-3 Show GitHub Exploit DB Packet Storm
242603 4.3 警告 JBMC Software - JBMC Software DirectAdmin の CMD_DOMAIN におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-3842 2012-07-5 15:38 2012-07-3 Show GitHub Exploit DB Packet Storm
242604 9.3 危険 KMPlayer's Forums - KMPlayer における任意のコードを実行される脆弱性 CWE-Other
その他 		CVE-2012-3841 2012-07-5 15:35 2012-07-3 Show GitHub Exploit DB Packet Storm
242605 4.3 警告 Jesse Terry - MyClientBase の index.php/users/form/user_id におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-3840 2012-07-5 15:32 2012-07-3 Show GitHub Exploit DB Packet Storm
242606 7.5 危険 Jesse Terry - MyClientBase の application/core/MY_Model.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-3839 2012-07-5 15:31 2012-07-3 Show GitHub Exploit DB Packet Storm
242607 5 警告 SCHLIX - Gekko におけるインストールパスを取得される脆弱性 CWE-200
情報漏えい 		CVE-2012-3838 2012-07-5 15:29 2012-05-2 Show GitHub Exploit DB Packet Storm
242608 4.3 警告 SCHLIX - Baby Gekko の apps/users/registration.template.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-3837 2012-07-5 15:28 2012-07-3 Show GitHub Exploit DB Packet Storm
242609 4.3 警告 SCHLIX - Baby Gekko におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-3836 2012-07-5 15:26 2012-05-2 Show GitHub Exploit DB Packet Storm
242610 4.3 警告 AlienVault - AlienVault の OSSIM におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-3835 2012-07-5 15:13 2012-07-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
266421 4.3 MEDIUM
Network 		sap hybris Hybris Management Console (HMC) in SAP Hybris before 6.0 allows remote attackers to obtain sensitive information by triggering an error and then reading a Java stack trace. CWE-200
Information Exposure 		CVE-2016-6859 2024-11-21 11:56 2016-12-31 Show GitHub Exploit DB Packet Storm
266422 5.4 MEDIUM
Network 		sap hybris Cross-site scripting (XSS) vulnerability in the Create Employee feature in Hybris Management Console (HMC) in SAP Hybris before 5.0.4.11, 5.1.0.x before 5.1.0.11, 5.1.1.x before 5.1.1.12, 5.2.0.x and… CWE-79
Cross-site Scripting 		CVE-2016-6858 2024-11-21 11:56 2016-12-31 Show GitHub Exploit DB Packet Storm
266423 5.4 MEDIUM
Network 		sap hybris Cross-site scripting (XSS) vulnerability in the Create Catalogue feature in Hybris Management Console (HMC) in SAP Hybris before 5.2.0.13, 5.3.x before 5.3.0.11, 5.4.x before 5.4.0.11, 5.5.0.x before… CWE-79
Cross-site Scripting 		CVE-2016-6857 2024-11-21 11:56 2016-12-31 Show GitHub Exploit DB Packet Storm
266424 6.1 MEDIUM
Network 		sap hybris Cross-site scripting (XSS) vulnerability in the Inbox Search feature in Hybris Management Console (HMC) in SAP Hybris before 6.0 allows remote attackers to inject arbitrary web script or HTML via the… CWE-79
Cross-site Scripting 		CVE-2016-6856 2024-11-21 11:56 2016-12-31 Show GitHub Exploit DB Packet Storm
266425 7.0 HIGH
Local 		linux linux_kernel kernel/events/core.c in the performance subsystem in the Linux kernel before 4.0 mismanages locks during certain migrations, which allows local users to gain privileges via a crafted application, aka… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-6787 2024-11-21 11:56 2016-12-28 Show GitHub Exploit DB Packet Storm
266426 7.0 HIGH
Local 		linux linux_kernel kernel/events/core.c in the performance subsystem in the Linux kernel before 4.0 mismanages locks during certain migrations, which allows local users to gain privileges via a crafted application, aka… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-6786 2024-11-21 11:56 2016-12-28 Show GitHub Exploit DB Packet Storm
266427 7.8 HIGH
Local 		ffmpeg ffmpeg The raw_decode function in libavcodec/rawdec.c in FFmpeg before 3.1.2 allows remote attackers to cause a denial of service (memory corruption) or execute arbitrary code via a crafted SWF file. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-6671 2024-11-21 11:56 2016-12-23 Show GitHub Exploit DB Packet Storm
266428 8.1 HIGH
Network 		pivotal_software
cloudfoundry 		cloud_foundry
cloud_foundry_uaa
cloud_foundry_uaa_bosh 		Cloud Foundry before 248; UAA 2.x before 2.7.4.12, 3.x before 3.6.5, and 3.7.x through 3.9.x before 3.9.3; and UAA bosh release (aka uaa-release) before 13.9 for UAA 3.6.5 and before 24 for UAA 3.9.3… CWE-287
Improper Authentication 		CVE-2016-6659 2024-11-21 11:56 2016-12-23 Show GitHub Exploit DB Packet Storm
266429 7.4 HIGH
Network 		pivotal_software cloud_foundry_ops_manager
cloud_foundry_elastic_runtime 		An open redirect vulnerability has been detected with some Pivotal Cloud Foundry Elastic Runtime components. Users of affected versions should apply the following mitigation: Upgrade PCF Elastic Runt… CWE-601
Open Redirect 		CVE-2016-6657 2024-11-21 11:56 2016-12-16 Show GitHub Exploit DB Packet Storm
266430 7.2 HIGH
Network 		pivotal_software greenplum An issue was discovered in Pivotal Greenplum before 4.3.10.0. Creation of external tables using GPHDFS protocol has a vulnerability whereby arbitrary commands can be injected into the system. In orde… CWE-77
Command Injection 		CVE-2016-6656 2024-11-21 11:56 2016-12-16 Show GitHub Exploit DB Packet Storm