Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 28, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
242631 5 警告 code-garage - Joomla! の Code-Garage noticeboard コンポーネントにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-1658 2012-06-26 16:19 2010-05-3 Show GitHub Exploit DB Packet Storm
242632 7.5 危険 airiny - Joomla! 用の Airiny ABC コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-1656 2012-06-26 16:19 2010-05-3 Show GitHub Exploit DB Packet Storm
242633 6.5 警告 The Cacti Group - Red Hat HPC Solution などの製品で使用される Cacti における任意のコマンドを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-1645 2012-06-26 16:19 2010-08-23 Show GitHub Exploit DB Packet Storm
242634 4.3 警告 The Cacti Group - Red Hat HPC Solution などの製品で使用される Cacti におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-1644 2012-06-26 16:19 2010-08-23 Show GitHub Exploit DB Packet Storm
242635 4.3 警告 ClamAV - ClamAV の parseicon 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-189
数値処理の問題 		CVE-2010-1640 2012-06-26 16:19 2010-05-18 Show GitHub Exploit DB Packet Storm
242636 4.3 警告 ClamAV - ClamAV の cli_pdf 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-DesignError
CVE-2010-1639 2012-06-26 16:19 2010-05-10 Show GitHub Exploit DB Packet Storm
242637 7.2 危険 GNUstep - GNUstep Base の gdomap の load_iface 関数における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2010-1620 2012-06-26 16:19 2010-05-12 Show GitHub Exploit DB Packet Storm
242638 6.8 警告 AlegroCart - AlegroCart におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2010-1611 2012-06-26 16:19 2010-04-29 Show GitHub Exploit DB Packet Storm
242639 4.3 警告 g5-scripts - G5-Scripts Auto-Img-Gallery の upload.cgi におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-1709 2012-06-26 16:19 2010-05-4 Show GitHub Exploit DB Packet Storm
242640 7.5 危険 RWC - Free Realty の agentadmin.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-1708 2012-06-26 16:19 2010-05-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
268941 8.8 HIGH
Network 		oracle
mozilla
sil
suse
opensuse 		linux
firefox
graphite2
linux_enterprise
leap
opensuse 		CachedCmap.cpp in Graphite 2 before 1.3.6, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7, allows remote attackers to cause a denial of service (buffer over-read) or possibly… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-2793 2024-11-21 11:48 2016-03-14 Show GitHub Exploit DB Packet Storm
268942 8.8 HIGH
Network 		sil
mozilla
oracle
suse
opensuse 		graphite2
firefox
linux
linux_enterprise
leap
opensuse 		The graphite2::Slot::getAttr function in Slot.cpp in Graphite 2 before 1.3.6, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7, allows remote attackers to cause a denial of ser… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-2792 2024-11-21 11:48 2016-03-14 Show GitHub Exploit DB Packet Storm
268943 8.8 HIGH
Network 		suse
opensuse
mozilla
oracle
sil 		linux_enterprise
leap
opensuse
firefox
linux
graphite2 		The graphite2::GlyphCache::glyph function in Graphite 2 before 1.3.6, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7, allows remote attackers to cause a denial of service (bu… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-2791 2024-11-21 11:48 2016-03-14 Show GitHub Exploit DB Packet Storm
268944 8.8 HIGH
Network 		suse
opensuse
mozilla
sil
oracle 		linux_enterprise
leap
opensuse
firefox
graphite2
linux 		The graphite2::TtfUtil::GetTableInfo function in Graphite 2 before 1.3.6, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7, does not initialize memory for an unspecified data s… CWE-19
 Data Processing Errors 		CVE-2016-2790 2024-11-21 11:48 2016-03-14 Show GitHub Exploit DB Packet Storm
268945 5.9 MEDIUM
Network 		isc
debian
canonical 		dhcp
debian_linux
ubuntu_linux 		ISC DHCP 4.1.x before 4.1-ESV-R13 and 4.2.x and 4.3.x before 4.3.4 does not restrict the number of concurrent TCP sessions, which allows remote attackers to cause a denial of service (INSIST assertio… CWE-20
 Improper Input Validation  		CVE-2016-2774 2024-11-21 11:48 2016-03-10 Show GitHub Exploit DB Packet Storm
268946 5.3 MEDIUM
Network 		google chrome The Content Security Policy (CSP) implementation in Blink, as used in Google Chrome before 49.0.2623.75, does not ignore a URL's path component in the case of a ServiceWorker fetch, which allows remo… CWE-200
Information Exposure 		CVE-2016-2845 2024-11-21 11:48 2016-03-6 Show GitHub Exploit DB Packet Storm
268947 8.8 HIGH
Network 		google chrome WebKit/Source/core/layout/LayoutBlock.cpp in Blink, as used in Google Chrome before 49.0.2623.75, does not properly determine when anonymous block wrappers may exist, which allows remote attackers to… CWE-20
 Improper Input Validation  		CVE-2016-2844 2024-11-21 11:48 2016-03-6 Show GitHub Exploit DB Packet Storm
268948 9.8 CRITICAL
Network 		google chrome
v8 		Multiple unspecified vulnerabilities in Google V8 before 4.9.385.26, as used in Google Chrome before 49.0.2623.75, allow attackers to cause a denial of service or possibly have other impact via unkno… NVD-CWE-noinfo
CVE-2016-2843 2024-11-21 11:48 2016-03-6 Show GitHub Exploit DB Packet Storm
268949 5.3 MEDIUM
Network 		moxa ioadmin_firmware
iologik_firmware 		Moxa ioLogik E2200 devices before 3.12 and ioAdmin Configuration Utility before 3.18 do not properly encrypt data, which makes it easier for remote attackers to obtain the associated cleartext via un… CWE-255
Credentials Management 		CVE-2016-2283 2024-11-21 11:48 2016-03-5 Show GitHub Exploit DB Packet Storm
268950 5.3 MEDIUM
Network 		moxa ioadmin_firmware
iologik_firmware 		Moxa ioLogik E2200 devices before 3.12 and ioAdmin Configuration Utility before 3.18 do not properly encrypt credentials, which makes it easier for remote attackers to obtain the associated cleartext… CWE-255
Credentials Management 		CVE-2016-2282 2024-11-21 11:48 2016-03-5 Show GitHub Exploit DB Packet Storm