Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 1, 2026, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
242601	9.3	危険	KMPlayer's Forums	-	KMPlayer における任意のコードを実行される脆弱性	CWE-Other その他	CVE-2012-3841	2012-07-5 15:35	2012-07-3	Show	GitHub Exploit DB Packet Storm

242602	4.3	警告	Jesse Terry	-	MyClientBase の index.php/users/form/user_id におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-3840	2012-07-5 15:32	2012-07-3	Show	GitHub Exploit DB Packet Storm

242603	7.5	危険	Jesse Terry	-	MyClientBase の application/core/MY_Model.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-3839	2012-07-5 15:31	2012-07-3	Show	GitHub Exploit DB Packet Storm

242604	5	警告	SCHLIX	-	Gekko におけるインストールパスを取得される脆弱性	CWE-200 情報漏えい	CVE-2012-3838	2012-07-5 15:29	2012-05-2	Show	GitHub Exploit DB Packet Storm

242605	4.3	警告	SCHLIX	-	Baby Gekko の apps/users/registration.template.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-3837	2012-07-5 15:28	2012-07-3	Show	GitHub Exploit DB Packet Storm

242606	4.3	警告	SCHLIX	-	Baby Gekko におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-3836	2012-07-5 15:26	2012-05-2	Show	GitHub Exploit DB Packet Storm

242607	4.3	警告	AlienVault	-	AlienVault の OSSIM におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-3835	2012-07-5 15:13	2012-07-3	Show	GitHub Exploit DB Packet Storm

242608	6.5	警告	AlienVault	-	AlienVault の OSSIM における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-3834	2012-07-5 15:11	2012-07-3	Show	GitHub Exploit DB Packet Storm

242609	4.3	警告	OpenSolution	-	Quick.CMS の admin/ 内のデフォルトインデックスページにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-3833	2012-07-5 15:09	2012-07-3	Show	GitHub Exploit DB Packet Storm

242610	4.3	警告	Miles Johnson	-	Decoda の decoda/Decoda.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-3832	2012-07-5 14:40	2012-07-3	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
266501	8.6	HIGH Network	vbulletin	vbulletin	The media-file upload feature in vBulletin before 3.8.7 Patch Level 6, 3.8.8 before Patch Level 2, 3.8.9 before Patch Level 1, 4.x before 4.2.2 Patch Level 6, 4.2.3 before Patch Level 2, 5.x before 5…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2016-6483	2024-11-21 11:56	2016-09-2	Show	GitHub Exploit DB Packet Storm

266502	6.5	MEDIUM Adjacent	cisco	wireless_lan_controller wireless_lan_controller_7.2 wireless_lan_controller_7.0 wireless_lan_controller_7.4 wireless_lan_controller_6.0 wireless_lan_controller_7.1	The Adaptive Wireless Intrusion Prevention System (wIPS) feature on Cisco Wireless LAN Controller (WLC) devices before 8.0.140.0, 8.1.x and 8.2.x before 8.2.121.0, and 8.3.x before 8.3.102.0 allows r…	CWE-399 Resource Management Errors	CVE-2016-6376	2024-11-21 11:56	2016-09-2	Show	GitHub Exploit DB Packet Storm

266503	9.8	CRITICAL Network	citrix	xenapp xendesktop	Citrix XenApp 6.x before 6.5 HRP07 and 7.x before 7.9 and Citrix XenDesktop before 7.9 might allow attackers to weaken an unspecified security mitigation via vectors related to memory permission.	CWE-254 7PK - Security Features	CVE-2016-6493	2024-11-21 11:56	2016-08-20	Show	GitHub Exploit DB Packet Storm

266504	8.6	HIGH Network	sophos	mobile_control_eas_proxy	Sophos EAS Proxy before 6.2.0 for Sophos Mobile Control, when Lotus Traveler is enabled, allows remote attackers to access arbitrary web-resources from the backend mail system via a request for the r…	CWE-254 7PK - Security Features	CVE-2016-6597	2024-11-21 11:56	2016-08-10	Show	GitHub Exploit DB Packet Storm

266505	7.8	HIGH Local	siemens	sinema_server	Siemens SINEMA Server uses weak permissions for the application folder, which allows local users to gain privileges via unspecified vectors.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-6486	2024-11-21 11:56	2016-08-8	Show	GitHub Exploit DB Packet Storm

266506	7.5	HIGH Network	openbsd fedoraproject	openssh fedora	The auth_password function in auth-passwd.c in sshd in OpenSSH before 7.3 does not limit password lengths for password authentication, which allows remote attackers to cause a denial of service (cryp…	CWE-20 Improper Input Validation	CVE-2016-6515	2024-11-21 11:56	2016-08-8	Show	GitHub Exploit DB Packet Storm

266507	8.8	HIGH Network	wordpress	wordpress	Cross-site request forgery (CSRF) vulnerability in the wp_ajax_wp_compression_test function in wp-admin/includes/ajax-actions.php in WordPress before 4.5 allows remote attackers to hijack the authent…	CWE-352 Origin Validation Error	CVE-2016-6635	2024-11-21 11:56	2016-08-8	Show	GitHub Exploit DB Packet Storm

266508	6.1	MEDIUM Network	wordpress	wordpress	Cross-site scripting (XSS) vulnerability in the network settings page in WordPress before 4.5 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.	CWE-79 Cross-site Scripting	CVE-2016-6634	2024-11-21 11:56	2016-08-8	Show	GitHub Exploit DB Packet Storm

266509	5.9	MEDIUM Network	wireshark	wireshark	epan/dissectors/packet-wbxml.c in the WBXML dissector in Wireshark 2.x before 2.0.5 does not restrict the recursion depth, which allows remote attackers to cause a denial of service (application cras…	CWE-399 Resource Management Errors	CVE-2016-6513	2024-11-21 11:56	2016-08-7	Show	GitHub Exploit DB Packet Storm

266510	5.9	MEDIUM Network	wireshark	wireshark	epan/dissectors/packet-wap.c in Wireshark 2.x before 2.0.5 omits an overflow check in the tvb_get_guintvar function, which allows remote attackers to cause a denial of service (infinite loop) via a c…	CWE-20 Improper Input Validation	CVE-2016-6512	2024-11-21 11:56	2016-08-7	Show	GitHub Exploit DB Packet Storm