Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 31, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 242851 | 4.3 | 警告 | D-Link Systems, Inc. | - | Dlink Di-604 ルータの Ping ツール Web インターフェースにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2010-2292 | 2012-06-26 16:19 | 2010-06-15 | Show | GitHub Exploit DB Packet Storm |
| 242852 | 10 | 危険 | The Dojo Foundation | - | Dojo の ビルド処理のディフォルト設定における詳細不明な脆弱性 |
CWE-16
環境設定 |
CVE-2010-2276 | 2012-06-26 16:19 | 2010-06-15 | Show | GitHub Exploit DB Packet Storm |
| 242853 | 4.3 | 警告 | The Dojo Foundation | - | Dojo Toolkit SDK の dijit/tests/_testCommon.js におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2010-2275 | 2012-06-26 16:19 | 2010-06-15 | Show | GitHub Exploit DB Packet Storm |
| 242854 | 4.3 | 警告 | The Dojo Foundation | - | Dojo におけるオープンリダイレクトの脆弱性 |
CWE-Other
その他 |
CVE-2010-2274 | 2012-06-26 16:19 | 2010-06-15 | Show | GitHub Exploit DB Packet Storm |
| 242855 | 4.3 | 警告 | The Dojo Foundation | - | Dojo におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2010-2273 | 2012-06-26 16:19 | 2010-06-15 | Show | GitHub Exploit DB Packet Storm |
| 242856 | 10 | 危険 | The Dojo Foundation | - | Dojo の iframe_history.html における詳細不明な脆弱性 |
CWE-noinfo
情報不足 |
CVE-2010-2272 | 2012-06-26 16:19 | 2010-06-15 | Show | GitHub Exploit DB Packet Storm |
| 242857 | 7.5 | 危険 | Accoria Networks | - | Accoria Web Server の authcfg.cgi におけるフォーマットストリングの脆弱性 |
CWE-134
書式文字列の問題 |
CVE-2010-2271 | 2012-06-26 16:19 | 2010-06-15 | Show | GitHub Exploit DB Packet Storm |
| 242858 | 7.5 | 危険 | Accoria Networks | - | Accoria Web Server におけるセッションをハイジャックされる脆弱性 |
CWE-310
暗号の問題 |
CVE-2010-2270 | 2012-06-26 16:19 | 2010-06-15 | Show | GitHub Exploit DB Packet Storm |
| 242859 | 5 | 警告 | Accoria Networks | - | Accoria Web Server の loadstatic.cgi におけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2010-2269 | 2012-06-26 16:19 | 2010-06-15 | Show | GitHub Exploit DB Packet Storm |
| 242860 | 6.8 | 警告 | Accoria Networks | - | Accoria Web Server の authcfg.cgi におけるクロスサイトリクエストフォージェリの脆弱性 |
CWE-352
同一生成元ポリシー違反 |
CVE-2010-2268 | 2012-06-26 16:19 | 2010-06-15 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 31, 2026, 4:16 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 268981 | 5.5 |
MEDIUM
Local |
oracle qemu canonical debian redhat citrix |
vm_server qemu ubuntu_linux debian_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterprise_linux_server_tus enterprise_linux_server_aus<… |
Integer overflow in the VGA module in QEMU allows local guest OS users to cause a denial of service (out-of-bounds read and QEMU process crash) by editing VGA registers in VBE mode. |
CWE-190
Integer Overflow or Wraparound |
CVE-2016-3712 | 2024-11-21 11:50 | 2016-05-12 | Show | GitHub Exploit DB Packet Storm |
| 268982 | 8.8 |
HIGH
Local |
debian hp canonical qemu oracle citrix redhat |
debian_linux helion_openstack ubuntu_linux qemu linux vm_server xenserver enterprise_linux_desktop enterprise_linux_server_aus enterprise_linux_workstation enterprise_li… |
The VGA module in QEMU improperly performs bounds checking on banked access to video memory, which allows local guest OS administrators to execute arbitrary code on the host by changing access modes … |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2016-3710 | 2024-11-21 11:50 | 2016-05-12 | Show | GitHub Exploit DB Packet Storm |
| 268983 | 5.5 |
MEDIUM
Local |
canonical redhat imagemagick |
ubuntu_linux enterprise_linux_server_supplementary_eus enterprise_linux_desktop enterprise_linux_server_aus enterprise_linux_workstation enterprise_linux_server enterprise_linux_hpc… |
The LABEL coder in ImageMagick before 6.9.3-10 and 7.x before 7.0.1-1 allows remote attackers to read arbitrary files via a crafted image. |
CWE-200
Information Exposure |
CVE-2016-3717 | 2024-11-21 11:50 | 2016-05-6 | Show | GitHub Exploit DB Packet Storm |
| 268984 | 3.3 |
LOW
Local |
canonical imagemagick redhat |
ubuntu_linux imagemagick enterprise_linux_server_supplementary_eus enterprise_linux_desktop enterprise_linux_server_aus enterprise_linux_workstation enterprise_linux_server enter… |
The MSL coder in ImageMagick before 6.9.3-10 and 7.x before 7.0.1-1 allows remote attackers to move arbitrary files via a crafted image. |
CWE-264
Permissions, Privileges, and Access Controls |
CVE-2016-3716 | 2024-11-21 11:50 | 2016-05-6 | Show | GitHub Exploit DB Packet Storm |
| 268985 | 4.6 |
MEDIUM
Physics |
novell linux canonical |
suse_linux_enterprise_module_for_public_cloud suse_linux_enterprise_server suse_linux_enterprise_live_patching suse_linux_enterprise_desktop suse_linux_enterprise_real_time_extension s… |
The ims_pcu_parse_cdc_data function in drivers/input/misc/ims-pcu.c in the Linux kernel before 4.5.1 allows physically proximate attackers to cause a denial of service (system crash) via a USB device… |
NVD-CWE-Other
|
CVE-2016-3689 | 2024-11-21 11:50 | 2016-05-2 | Show | GitHub Exploit DB Packet Storm |
| 268986 | 7.8 |
HIGH
Local |
canonical novell linux |
ubuntu_linux suse_linux_enterprise_module_for_public_cloud suse_linux_enterprise_server suse_linux_enterprise_live_patching suse_linux_enterprise_real_time_extension suse_linux_enterpr… |
The arch_pick_mmap_layout function in arch/x86/mm/mmap.c in the Linux kernel through 4.5.2 does not properly randomize the legacy base address, which makes it easier for local users to defeat the int… |
CWE-254
7PK - Security Features |
CVE-2016-3672 | 2024-11-21 11:50 | 2016-04-28 | Show | GitHub Exploit DB Packet Storm |
| 268987 | 9.1 |
CRITICAL
Network |
oracle | field_service | Unspecified vulnerability in the Oracle Field Service component in Oracle E-Business Suite 12.1.1, 12.1.2, and 12.1.3 allows remote attackers to affect confidentiality and integrity via vectors relat… |
NVD-CWE-noinfo
|
CVE-2016-3466 | 2024-11-21 11:50 | 2016-04-21 | Show | GitHub Exploit DB Packet Storm |
| 268988 | 5.5 |
MEDIUM
Local |
oracle | solaris | Unspecified vulnerability in Oracle Sun Solaris 10 and 11.3 allows local users to affect availability via vectors related to ZFS. |
NVD-CWE-noinfo
|
CVE-2016-3465 | 2024-11-21 11:50 | 2016-04-21 | Show | GitHub Exploit DB Packet Storm |
| 268989 | 5.7 |
MEDIUM
Network |
oracle | flexcube_direct_banking | Unspecified vulnerability in the Oracle FLEXCUBE Direct Banking component in Oracle Financial Services Software 12.0.3 allows remote authenticated users to affect confidentiality via vectors related … |
NVD-CWE-noinfo
|
CVE-2016-3464 | 2024-11-21 11:50 | 2016-04-21 | Show | GitHub Exploit DB Packet Storm |
| 268990 | 6.1 |
MEDIUM
Network |
oracle | flexcube_direct_banking | Unspecified vulnerability in the Oracle FLEXCUBE Direct Banking component in Oracle Financial Services Software 12.0.3 allows remote attackers to affect confidentiality and integrity via vectors rela… |
NVD-CWE-noinfo
|
CVE-2016-3463 | 2024-11-21 11:50 | 2016-04-21 | Show | GitHub Exploit DB Packet Storm |