Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 6, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
242731 7.5 危険 Uiga - Uiga Personal Portal の index2.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-4056 2012-07-30 11:11 2012-07-25 Show GitHub Exploit DB Packet Storm
242732 7.5 危険 Uiga - Uiga FanClub の index2.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-4055 2012-07-30 11:09 2012-07-25 Show GitHub Exploit DB Packet Storm
242733 6.9 警告 CPE17 - CPE17 Autorun Killer の readfile 関数におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-4054 2012-07-30 11:04 2012-07-25 Show GitHub Exploit DB Packet Storm
242734 3.5 注意 Oleg Kovalchuk - Drupal 用の cctags モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2310 2012-07-30 11:03 2012-05-2 Show GitHub Exploit DB Packet Storm
242735 3.5 注意 Propeople - Drupal 用の Glossify Internal Links Auto SEO モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2309 2012-07-30 11:03 2012-05-2 Show GitHub Exploit DB Packet Storm
242736 3.5 注意 tahiticlic - Drupal 用の Taxonomy Grid : Catalog モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2308 2012-07-30 11:01 2012-05-2 Show GitHub Exploit DB Packet Storm
242737 6.8 警告 Willem Van Der Plaat - Drupal 用の Addressbook モジュールにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-2307 2012-07-30 11:00 2012-05-2 Show GitHub Exploit DB Packet Storm
242738 7.5 危険 Willem Van Der Plaat - Drupal 用の Addressbook モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-2306 2012-07-30 10:59 2012-05-2 Show GitHub Exploit DB Packet Storm
242739 6.8 警告 Justin Ellison - Drupal 用の Node Gallery モジュールにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-2305 2012-07-30 10:50 2012-05-2 Show GitHub Exploit DB Packet Storm
242740 5 警告 JanRain - Drupal 用の Janrain Engage モジュールにおける重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2012-2296 2012-07-30 10:48 2012-04-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 6, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
266461 7.5 HIGH
Network 		libarchive
opensuse 		libarchive
leap 		Stack-based buffer overflow in the safe_fprintf function in tar/util.c in libarchive 3.2.1 allows remote attackers to cause a denial of service via a crafted non-printable multibyte character in a fi… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-8687 2024-11-21 11:59 2017-02-16 Show GitHub Exploit DB Packet Storm
266462 7.8 HIGH
Local 		graphicsmagick
opensuse
debian 		graphicsmagick
opensuse
debian_linux 		The MagickMalloc function in magick/memory.c in GraphicsMagick 1.3.25 allows remote attackers to have unspecified impact via a crafted image, which triggers a memory allocation failure and a "file tr… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-8684 2024-11-21 11:59 2017-02-16 Show GitHub Exploit DB Packet Storm
266463 7.8 HIGH
Local 		graphicsmagick
opensuse
debian 		graphicsmagick
opensuse
debian_linux 		The ReadPCXImage function in coders/pcx.c in GraphicsMagick 1.3.25 allows remote attackers to have unspecified impact via a crafted image, which triggers a memory allocation failure and a "file trunc… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-8683 2024-11-21 11:59 2017-02-16 Show GitHub Exploit DB Packet Storm
266464 7.5 HIGH
Network 		graphicsmagick
opensuse
debian 		graphicsmagick
opensuse
debian_linux 		The ReadSCTImage function in coders/sct.c in GraphicsMagick 1.3.25 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted SCT header. CWE-125
Out-of-bounds Read 		CVE-2016-8682 2024-11-21 11:59 2017-02-16 Show GitHub Exploit DB Packet Storm
266465 8.5 HIGH
Network 		smiths-medical cadd-solis_medication_safety_software An issue was discovered in Smiths-Medical CADD-Solis Medication Safety Software, Version 1.0; 2.0; 3.0; and 3.1. The affected software does not verify the identities at communication endpoints, which… CWE-346
 Origin Validation Error 		CVE-2016-8358 2024-11-21 11:59 2017-02-14 Show GitHub Exploit DB Packet Storm
266466 9.9 CRITICAL
Network 		smiths-medical cadd-solis_medication_safety_software An issue was discovered in Smiths-Medical CADD-Solis Medication Safety Software, Version 1.0; 2.0; 3.0; and 3.1. CADD-Solis Medication Safety Software grants an authenticated user elevated privileges… CWE-306
Missing Authentication for Critical Function 		CVE-2016-8355 2024-11-21 11:59 2017-02-14 Show GitHub Exploit DB Packet Storm
266467 4.9 MEDIUM
Physics 		bd alaris_8015_pc_unit An issue was discovered in Becton, Dickinson and Company (BD) Alaris 8015 Point of Care (PC) unit, Version 9.5 and prior versions, and Version 9.7, and 8000 PC unit. An unauthorized user with physica… CWE-255
Credentials Management 		CVE-2016-8375 2024-11-21 11:59 2017-02-14 Show GitHub Exploit DB Packet Storm
266468 9.8 CRITICAL
Network 		siemens sicam_pas\/pqs An issue was discovered in Siemens SICAM PAS before 8.00. A factory account with hard-coded passwords is present in the SICAM PAS installations. Attackers might gain privileged access to the database… CWE-798
 Use of Hard-coded Credentials 		CVE-2016-8567 2024-11-21 11:59 2017-02-14 Show GitHub Exploit DB Packet Storm
266469 7.8 HIGH
Local 		siemens sicam_pas\/pqs An issue was discovered in Siemens SICAM PAS before 8.00. Because of Storing Passwords in a Recoverable Format, an authenticated local attacker with certain privileges could possibly reconstruct the … CWE-255
Credentials Management 		CVE-2016-8566 2024-11-21 11:59 2017-02-14 Show GitHub Exploit DB Packet Storm
266470 9.8 CRITICAL
Network 		lynxspring jenesys_bas_bridge An issue was discovered in Lynxspring JENEsys BAS Bridge versions 1.1.8 and older. The application's database lacks sufficient safeguards for protecting credentials. CWE-255
Credentials Management 		CVE-2016-8378 2024-11-21 11:59 2017-02-14 Show GitHub Exploit DB Packet Storm