Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 5, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
242731	7.5	危険	Uiga	-	Uiga Personal Portal の index2.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-4056	2012-07-30 11:11	2012-07-25	Show	GitHub Exploit DB Packet Storm

242732	7.5	危険	Uiga	-	Uiga FanClub の index2.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-4055	2012-07-30 11:09	2012-07-25	Show	GitHub Exploit DB Packet Storm

242733	6.9	警告	CPE17	-	CPE17 Autorun Killer の readfile 関数におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-4054	2012-07-30 11:04	2012-07-25	Show	GitHub Exploit DB Packet Storm

242734	3.5	注意	Oleg Kovalchuk	-	Drupal 用の cctags モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-2310	2012-07-30 11:03	2012-05-2	Show	GitHub Exploit DB Packet Storm

242735	3.5	注意	Propeople	-	Drupal 用の Glossify Internal Links Auto SEO モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-2309	2012-07-30 11:03	2012-05-2	Show	GitHub Exploit DB Packet Storm

242736	3.5	注意	tahiticlic	-	Drupal 用の Taxonomy Grid : Catalog モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-2308	2012-07-30 11:01	2012-05-2	Show	GitHub Exploit DB Packet Storm

242737	6.8	警告	Willem Van Der Plaat	-	Drupal 用の Addressbook モジュールにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2012-2307	2012-07-30 11:00	2012-05-2	Show	GitHub Exploit DB Packet Storm

242738	7.5	危険	Willem Van Der Plaat	-	Drupal 用の Addressbook モジュールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-2306	2012-07-30 10:59	2012-05-2	Show	GitHub Exploit DB Packet Storm

242739	6.8	警告	Justin Ellison	-	Drupal 用の Node Gallery モジュールにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2012-2305	2012-07-30 10:50	2012-05-2	Show	GitHub Exploit DB Packet Storm

242740	5	警告	JanRain	-	Drupal 用の Janrain Engage モジュールにおける重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2012-2296	2012-07-30 10:48	2012-04-4	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
266511	6.0	MEDIUM Local	qemu opensuse	qemu leap	Memory leak in the ehci_process_itd function in hw/usb/hcd-ehci.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (memory consumption) via a large numbe…	CWE-772 Missing Release of Resource after Effective Lifetime	CVE-2016-7995	2024-11-21 11:58	2016-12-10	Show	GitHub Exploit DB Packet Storm

266512	6.0	MEDIUM Local	qemu opensuse	qemu leap	Memory leak in the virtio_gpu_resource_create_2d function in hw/display/virtio-gpu.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (memory consumption…	CWE-772 Missing Release of Resource after Effective Lifetime	CVE-2016-7994	2024-11-21 11:58	2016-12-10	Show	GitHub Exploit DB Packet Storm

266513	6.0	MEDIUM Local	qemu opensuse redhat	qemu leap openstack virtualization	Memory leak in the usb_xhci_exit function in hw/usb/hcd-xhci.c in QEMU (aka Quick Emulator), when the xhci uses msix, allows local guest OS administrators to cause a denial of service (memory consump…	CWE-772 Missing Release of Resource after Effective Lifetime	CVE-2016-7466	2024-11-21 11:58	2016-12-10	Show	GitHub Exploit DB Packet Storm

266514	5.5	MEDIUM Local	intel	proset\/wireless_software_and_drivers	Buffer overflow in Intel PROSet/Wireless Software and Drivers in versions before 19.20.3 allows a local user to crash iframewrk.exe causing a potential denial of service.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-8104	2024-11-21 11:58	2016-12-9	Show	GitHub Exploit DB Packet Storm

266515	6.7	MEDIUM Local	intel	city_bios canyon_bios swift_canyon_bios citry_bios	SMM call out in all Intel Branded NUC Kits allows a local privileged user to access the System Management Mode and take full control of the platform.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-8103	2024-11-21 11:58	2016-12-9	Show	GitHub Exploit DB Packet Storm

266516	7.8	HIGH Local	intel	wireless_bluetooth_drivers	Unquoted service path vulnerability in Intel Wireless Bluetooth Drivers 16.x, 17.x, and before 18.1.1607.3129 allows local users to launch processes with elevated privileges.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-8102	2024-11-21 11:58	2016-12-9	Show	GitHub Exploit DB Packet Storm

266517	5.0	MEDIUM Local	linux	linux_kernel	The nfnetlink_rcv_batch function in net/netfilter/nfnetlink.c in the Linux kernel before 4.5 does not check whether a batch message's length field is large enough, which allows local users to obtain …	CWE-200 CWE-125 Information Exposure Out-of-bounds Read	CVE-2016-7917	2024-11-21 11:58	2016-11-16	Show	GitHub Exploit DB Packet Storm

266518	5.5	MEDIUM Local	linux	linux_kernel	Race condition in the environ_read function in fs/proc/base.c in the Linux kernel before 4.5.4 allows local users to obtain sensitive information from kernel memory by reading a /proc/*/environ file …	CWE-362 Race Condition	CVE-2016-7916	2024-11-21 11:58	2016-11-16	Show	GitHub Exploit DB Packet Storm

266519	5.5	MEDIUM Local	linux	linux_kernel	The hid_input_field function in drivers/hid/hid-core.c in the Linux kernel before 4.6 allows physically proximate attackers to obtain sensitive information from kernel memory or cause a denial of ser…	CWE-125 Out-of-bounds Read	CVE-2016-7915	2024-11-21 11:58	2016-11-16	Show	GitHub Exploit DB Packet Storm

266520	5.5	MEDIUM Local	linux	linux_kernel	The assoc_array_insert_into_terminal_node function in lib/assoc_array.c in the Linux kernel before 4.5.3 does not check whether a slot is a leaf, which allows local users to obtain sensitive informat…	CWE-125 CWE-476 Out-of-bounds Read NULL Pointer Dereference	CVE-2016-7914	2024-11-21 11:58	2016-11-16	Show	GitHub Exploit DB Packet Storm