Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 27, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 242691 | 7.5 | 危険 | cookex Joomla! |
- | Joomla! の Cookex Agency ckforms コンポーネントにおける SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2010-1344 | 2012-06-26 16:19 | 2010-04-9 | Show | GitHub Exploit DB Packet Storm |
| 242692 | 7.5 | 危険 | bjsintay | - | SiteX における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2010-1343 | 2012-06-26 16:19 | 2010-04-9 | Show | GitHub Exploit DB Packet Storm |
| 242693 | 6.8 | 警告 | directnews | - | Direct News における PHP リモートファイルインクルージョンの脆弱性 |
CWE-94
コード・インジェクション |
CVE-2010-1342 | 2012-06-26 16:19 | 2010-04-9 | Show | GitHub Exploit DB Packet Storm |
| 242694 | 5 | 警告 | ermenegildo fiorito | - | Irmin CMS におけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2010-1309 | 2012-06-26 16:19 | 2010-04-8 | Show | GitHub Exploit DB Packet Storm |
| 242695 | 5 | 警告 | decryptweb Joomla! |
- | Joomla! の dwgraphs コンポーネントの dwgraphs.php におけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2010-1302 | 2012-06-26 16:19 | 2010-04-7 | Show | GitHub Exploit DB Packet Storm |
| 242696 | 7.5 | 危険 | The Cacti Group | - | Cacti の templates_export.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2010-1431 | 2012-06-26 16:19 | 2009-06-28 | Show | GitHub Exploit DB Packet Storm |
| 242697 | 5.1 | 警告 | dynpg | - | DynPG CMS における PHP リモートファイルインクルージョンの脆弱性 |
CWE-94
コード・インジェクション |
CVE-2010-1299 | 2012-06-26 16:19 | 2010-04-7 | Show | GitHub Exploit DB Packet Storm |
| 242698 | 4.3 | 警告 | bbsxp | - | BBSXP 2008 SP2 におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2010-1276 | 2012-06-26 16:19 | 2010-04-6 | Show | GitHub Exploit DB Packet Storm |
| 242699 | 4.3 | 警告 | bbsxp | - | BBSXP 2008 の ShowPost.asp におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2010-1275 | 2012-06-26 16:19 | 2010-04-6 | Show | GitHub Exploit DB Packet Storm |
| 242700 | 9.3 | 危険 | emweb | - | Emweb Wt における詳細不明な脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2010-1273 | 2012-06-26 16:19 | 2010-03-16 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 27, 2026, 4:52 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 268851 | 5.5 |
MEDIUM
Local |
canonical |
ubuntu_linux lxd |
LXD before 2.0.2 uses world-readable permissions for /var/lib/lxd/zfs.img when setting up a loop based ZFS pool, which allows local users to copy and read data from arbitrary containers via unspecifi… |
CWE-284
Improper Access Control |
CVE-2016-1581 | 2024-11-21 11:46 | 2016-06-10 | Show | GitHub Exploit DB Packet Storm |
| 268852 | 7.8 |
HIGH
Local |
cisco | aironet_access_point_software_ | Cisco Aironet Access Point Software 8.2(100.0) on 1830e, 1830i, 1850e, 1850i, 2800, and 3800 access points allows local users to obtain Linux root access via crafted CLI command parameters, aka Bug I… |
CWE-20
Improper Input Validation |
CVE-2016-1418 | 2024-11-21 11:46 | 2016-06-8 | Show | GitHub Exploit DB Packet Storm |
| 268853 | 7.5 |
HIGH
Network |
clamav cisco |
clamav email_security_appliance web_security_appliance |
libclamav in ClamAV (aka Clam AntiVirus), as used in Advanced Malware Protection (AMP) on Cisco Email Security Appliance (ESA) devices before 9.7.0-125 and Web Security Appliance (WSA) devices before… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2016-1405 | 2024-11-21 11:46 | 2016-06-8 | Show | GitHub Exploit DB Packet Storm |
| 268854 | 8.8 |
HIGH
Network |
google debian canonical redhat suse opensuse |
chrome debian_linux ubuntu_linux enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation linux_enterprise leap opensuse |
Multiple unspecified vulnerabilities in Google Chrome before 51.0.2704.79 allow attackers to cause a denial of service or possibly have other impact via unknown vectors. |
NVD-CWE-noinfo
|
CVE-2016-1703 | 2024-11-21 11:46 | 2016-06-6 | Show | GitHub Exploit DB Packet Storm |
| 268855 | 6.5 |
MEDIUM
Network |
debian canonical redhat suse opensuse |
debian_linux ubuntu_linux enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation linux_enterprise leap opensuse chrome |
The SkRegion::readFromMemory function in core/SkRegion.cpp in Skia, as used in Google Chrome before 51.0.2704.79, does not validate the interval count, which allows remote attackers to cause a denial… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2016-1702 | 2024-11-21 11:46 | 2016-06-6 | Show | GitHub Exploit DB Packet Storm |
| 268856 | 8.8 |
HIGH
Network |
google debian redhat suse opensuse |
chrome debian_linux enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation linux_enterprise leap opensuse |
The Autofill implementation in Google Chrome before 51.0.2704.79 mishandles the interaction between field updates and JavaScript code that triggers a frame deletion, which allows remote attackers to … |
NVD-CWE-Other
|
CVE-2016-1701 | 2024-11-21 11:46 | 2016-06-6 | Show | GitHub Exploit DB Packet Storm |
| 268857 | 6.5 |
MEDIUM
Network |
debian redhat suse opensuse |
debian_linux enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation linux_enterprise leap opensuse chrome |
The createCustomType function in extensions/renderer/resources/binding.js in the extension bindings in Google Chrome before 51.0.2704.79 does not validate module types, which might allow attackers to… |
CWE-200
Information Exposure |
CVE-2016-1698 | 2024-11-21 11:46 | 2016-06-6 | Show | GitHub Exploit DB Packet Storm |
| 268858 | 8.8 |
HIGH
Network |
google debian redhat suse opensuse |
chrome debian_linux enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation linux_enterprise leap opensuse |
The extensions subsystem in Google Chrome before 51.0.2704.79 does not properly restrict bindings access, which allows remote attackers to bypass the Same Origin Policy via unspecified vectors. |
CWE-254 CWE-284 7PK - Security Features Improper Access Control |
CVE-2016-1696 | 2024-11-21 11:46 | 2016-06-6 | Show | GitHub Exploit DB Packet Storm |
| 268859 | 8.8 |
HIGH
Network |
google debian canonical redhat suse opensuse |
chrome debian_linux ubuntu_linux enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation linux_enterprise leap opensuse |
Multiple unspecified vulnerabilities in Google Chrome before 51.0.2704.63 allow attackers to cause a denial of service or possibly have other impact via unknown vectors. |
NVD-CWE-noinfo
|
CVE-2016-1695 | 2024-11-21 11:46 | 2016-06-6 | Show | GitHub Exploit DB Packet Storm |
| 268860 | 7.5 |
HIGH
Network |
debian redhat suse opensuse |
debian_linux enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation linux_enterprise leap opensuse chrome |
extensions/renderer/runtime_custom_bindings.cc in Google Chrome before 51.0.2704.79 does not consider side effects during creation of an array of extension views, which allows remote attackers to cau… |
NVD-CWE-Other
|
CVE-2016-1700 | 2024-11-21 11:46 | 2016-06-6 | Show | GitHub Exploit DB Packet Storm |