Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 2, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
242841 7.5 危険 eicrasoft - Eicra Realestate Script の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-2357 2012-06-26 16:19 2010-06-21 Show GitHub Exploit DB Packet Storm
242842 6.8 警告 daniel mealha cabrita - Ziproxy の PNG デコーダにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-2350 2012-06-26 16:19 2010-06-21 Show GitHub Exploit DB Packet Storm
242843 9.3 危険 freesoftwaretoolbox - Batch Audio Converter Lite Edition におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-2348 2012-06-26 16:19 2010-06-21 Show GitHub Exploit DB Packet Storm
242844 9.3 危険 dennisre - D.R. Software Audio Converter におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-2343 2012-06-26 16:19 2010-06-21 Show GitHub Exploit DB Packet Storm
242845 7.5 危険 DMXReady - DMXReady Online Notebook Manager の onlinenotebookmanager.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-2342 2012-06-26 16:19 2010-06-21 Show GitHub Exploit DB Packet Storm
242846 7.5 危険 ezpx - EZPX Photoblog の における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2010-2341 2012-06-26 16:19 2010-06-18 Show GitHub Exploit DB Packet Storm
242847 6.8 警告 Arab Portal - Arab Portal の members.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-2340 2012-06-26 16:19 2010-06-18 Show GitHub Exploit DB Packet Storm
242848 9.3 危険 アドビシステムズ - Adobe inDesign CS3 におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-2321 2012-06-26 16:19 2010-06-18 Show GitHub Exploit DB Packet Storm
242849 5 警告 ETERNA - bozotic HTTP サーバにおけるユーザアカウントの存在を決定される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-2320 2012-06-26 16:19 2010-08-2 Show GitHub Exploit DB Packet Storm
242850 6.8 警告 Nucleus
edmondhui.homeip		 - Nucleus の NP_Twitter プラグインにおける PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2010-2314 2012-06-26 16:19 2010-06-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
266781 7.5 HIGH
Network 		mediawiki mediawiki MediaWiki before 1.23.15, 1.26.x before 1.26.4, and 1.27.x before 1.27.1 does not generate head items in the context of a given title, which allows remote attackers to obtain sensitive information vi… CWE-200
Information Exposure 		CVE-2016-6335 2024-11-21 11:55 2017-04-21 Show GitHub Exploit DB Packet Storm
266782 6.1 MEDIUM
Network 		mediawiki mediawiki Cross-site scripting (XSS) vulnerability in the Parser::replaceInternalLinks2 method in MediaWiki before 1.23.15, 1.26.x before 1.26.4, and 1.27.x before 1.27.1 allows remote attackers to inject arbi… CWE-79
Cross-site Scripting 		CVE-2016-6334 2024-11-21 11:55 2017-04-21 Show GitHub Exploit DB Packet Storm
266783 6.1 MEDIUM
Network 		mediawiki mediawiki Cross-site scripting (XSS) vulnerability in the CSS user subpage preview feature in MediaWiki before 1.23.15, 1.26.x before 1.26.4, and 1.27.x before 1.27.1 allows remote attackers to inject arbitrar… CWE-79
Cross-site Scripting 		CVE-2016-6333 2024-11-21 11:55 2017-04-21 Show GitHub Exploit DB Packet Storm
266784 7.5 HIGH
Network 		mediawiki mediawiki MediaWiki before 1.23.15, 1.26.x before 1.26.4, and 1.27.x before 1.27.1, when $wgBlockDisablesLogin is true, might allow remote attackers to obtain sensitive information by leveraging failure to ter… CWE-200
Information Exposure 		CVE-2016-6332 2024-11-21 11:55 2017-04-21 Show GitHub Exploit DB Packet Storm
266785 7.5 HIGH
Network 		mediawiki mediawiki ApiParse in MediaWiki before 1.23.15, 1.26.x before 1.26.4, and 1.27.x before 1.27.1 allows remote attackers to bypass intended per-title read restrictions via a parse action to api.php. CWE-284
Improper Access Control 		CVE-2016-6331 2024-11-21 11:55 2017-04-21 Show GitHub Exploit DB Packet Storm
266786 7.8 HIGH
Local 		fedoraproject
mock_project 		fedora
scm_plugin 		The scm plug-in in mock might allow attackers to bypass the intended chroot protection mechanism and gain root privileges via a crafted spec file. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-6299 2024-11-21 11:55 2017-04-15 Show GitHub Exploit DB Packet Storm
266787 9.8 CRITICAL
Network 		sap hana SAP HANA DB 1.00.73.00.389160 allows remote attackers to execute arbitrary code via vectors involving the audit logs, aka SAP Security Note 2170806. CWE-284
Improper Access Control 		CVE-2016-6143 2024-11-21 11:55 2017-04-13 Show GitHub Exploit DB Packet Storm
266788 6.1 MEDIUM
Network 		redhat resteasy JacksonJsonpInterceptor in RESTEasy might allow remote attackers to conduct a cross-site script inclusion (XSSI) attack. CWE-79
Cross-site Scripting 		CVE-2016-6348 2024-11-21 11:55 2017-04-13 Show GitHub Exploit DB Packet Storm
266789 7.0 HIGH
Local 		linux
google 		linux_kernel
android 		Drivers/soc/qcom/spcom.c in the Qualcomm SPCom driver in the Android kernel 2017-03-05 allows local users to gain privileges, a different vulnerability than CVE-2016-5857. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-5856 2024-11-21 11:55 2017-04-13 Show GitHub Exploit DB Packet Storm
266790 8.8 HIGH
Network 		ibm disposal_and_governance_management_for_it
global_retention_policy_and_schedule_management 		IBM Disposal and Governance Management for IT and IBM Global Retention Policy and Schedule Management, components of IBM Atlas Policy Suite 6.0.3 is vulnerable to cross-site request forgery which cou… CWE-352
 Origin Validation Error 		CVE-2016-6100 2024-11-21 11:55 2017-04-6 Show GitHub Exploit DB Packet Storm