Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 2, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
242881	4.3	警告	Apache Software Foundation	-	SAP Business Objects などで使用される Apache Axis2/Java の axis2-admin/axis2-admin/engagingglobally におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-2103	2012-06-26 16:19	2010-05-27	Show	GitHub Exploit DB Packet Storm

242882	7.5	危険	e107.org	-	e107 の bbcode/php.bb における PHP リモートファイルインクルージョンの脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-2099	2012-06-26 16:19	2010-05-27	Show	GitHub Exploit DB Packet Storm

242883	7.5	危険	e107.org	-	e107 の usersettings.php におけるSQL インジェクション攻撃を誘発される脆弱性	CWE-Other その他	CVE-2010-2098	2012-06-26 16:19	2010-05-27	Show	GitHub Exploit DB Packet Storm

242884	7.5	危険	cmsqlite	-	CMSQlite の index.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-2096	2012-06-26 16:19	2010-05-27	Show	GitHub Exploit DB Packet Storm

242885	7.5	危険	cmsqlite	-	CMSQlite の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-2095	2012-06-26 16:19	2010-05-27	Show	GitHub Exploit DB Packet Storm

242886	7.5	危険	The Cacti Group	-	Cacti の graph.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-2092	2012-06-26 16:19	2010-05-27	Show	GitHub Exploit DB Packet Storm

242887	4	警告	Apache Software Foundation	-	IBM WebSphere Application Server などで使用される Apache MyFaces における任意の EL 宣言文を実行される脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-2086	2012-06-26 16:19	2010-05-27	Show	GitHub Exploit DB Packet Storm

242888	5	警告	シスコシステムズ	-	Cisco Scientific Atlanta WebSTAR DPC2100R2 ケーブルモデムの Web インターフェースにおける特権を取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2010-2082	2012-06-26 16:19	2010-05-26	Show	GitHub Exploit DB Packet Storm

242889	7.5	危険	Apache Software Foundation	-	Apache ServiceMix などで使用される Apache CXF における任意のファイルを読まれ任意の HTTP リクエストをサーバに送信される脆弱性	CWE-20 不適切な入力確認	CVE-2010-2076	2012-06-26 16:19	2010-06-16	Show	GitHub Exploit DB Packet Storm

242890	3.3	注意	GNU Project	-	GNU gv における任意のファイルを上書きされる脆弱性	CWE-59 リンク解釈の問題	CVE-2010-2056	2012-06-26 16:19	2010-06-6	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
266681	7.5	HIGH Network	cisco	ace_application_control_engine_module_a3 ace_4700_series_application_control_engine_appliance_a3 ace_4700_series_application_control_engine_appliance_a4 ace_4700_series_application_control_e…	Cisco ACE30 Application Control Engine Module through A5 3.3 and ACE 4700 Application Control Engine appliances through A5 3.3 allow remote attackers to cause a denial of service (device reload) via …	CWE-20 Improper Input Validation	CVE-2016-6399	2024-11-21 11:56	2016-09-12	Show	GitHub Exploit DB Packet Storm

266682	5.3	MEDIUM Network	cisco	ios	The PPTP server in Cisco IOS 15.5(3)M does not properly initialize packet buffers, which allows remote attackers to obtain sensitive information from earlier network communication by reading packet d…	CWE-200 Information Exposure	CVE-2016-6398	2024-11-21 11:56	2016-09-12	Show	GitHub Exploit DB Packet Storm

266683	5.3	MEDIUM Network	cisco	firesight_system_software	Cisco Firepower Management Center before 6.1 and FireSIGHT System Software before 6.1, when certain malware blocking options are enabled, allow remote attackers to bypass malware detection via crafte…	CWE-20 Improper Input Validation	CVE-2016-6396	2024-11-21 11:56	2016-09-12	Show	GitHub Exploit DB Packet Storm

266684	5.4	MEDIUM Network	cisco	firesight_system_software	Cross-site scripting (XSS) vulnerability in the web-based management interface in Cisco Firepower Management Center before 6.1 and FireSIGHT System Software before 6.1 allows remote authenticated use…	CWE-79 Cross-site Scripting	CVE-2016-6395	2024-11-21 11:56	2016-09-12	Show	GitHub Exploit DB Packet Storm

266685	9.1	CRITICAL Network	cisco	firesight_system_software	Session fixation vulnerability in Cisco Firepower Management Center and Cisco FireSIGHT System Software through 6.1.0 allows remote attackers to hijack web sessions via a session identifier, aka Bug …	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-6394	2024-11-21 11:56	2016-09-12	Show	GitHub Exploit DB Packet Storm

266686	7.5	HIGH Network	cisco	hosted_collaboration_mediation_fulfillment	Directory traversal vulnerability in the web interface in Cisco Hosted Collaboration Mediation Fulfillment (HCM-F) 10.6(3) and earlier allows remote attackers to write to arbitrary files via a crafte…	CWE-22 Path Traversal	CVE-2016-6371	2024-11-21 11:56	2016-09-12	Show	GitHub Exploit DB Packet Storm

266687	5.3	MEDIUM Adjacent	cisco	wireless_lan_controller_software wireless_lan_controller_software_6.0 wireless_lan_controller_software_7.0 wireless_lan_controller_software_7.1 wireless_lan_controller_software_7.2 wir…	Cisco Wireless LAN Controller (WLC) devices before 8.0.140.0, 8.1.x and 8.2.x before 8.2.121.0, and 8.3.x before 8.3.102.0 allow remote attackers to cause a denial of service (device reload) by sendi…	CWE-399 Resource Management Errors	CVE-2016-6375	2024-11-21 11:56	2016-09-12	Show	GitHub Exploit DB Packet Storm

266688	6.1	MEDIUM Network	huawei	fusionaccess	CRLF injection vulnerability in Huawei FusionAccess before V100R006C00 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified vectors.	CWE-113 HTTP Response Splitting	CVE-2016-6839	2024-11-21 11:56	2016-09-8	Show	GitHub Exploit DB Packet Storm

266689	5.3	MEDIUM Network	huawei_firmware huawei	s12700 s9700_firmware s7700_firmware s9300_firmware	Huawei S7700, S9300, S9700, and S12700 devices with software before V200R008C00SPC500 use random numbers with insufficient entropy to generate self-signed certificates, which makes it easier for remo…	CWE-200 Information Exposure	CVE-2016-6670	2024-11-21 11:56	2016-09-8	Show	GitHub Exploit DB Packet Storm

266690	7.5	HIGH Network	huawei	rh1288_v3_server_firmware rh2288_v3_server_firmware x6800_v3_server_firmware xh620_v3_server_firmware ch121_v3_server_firmware ch140_v3_server_firmware ch220_v3_server_firmware c…	Huawei X6800 and XH620 V3 servers with software before V100R003C00SPC606, RH1288 V3 servers with software before V100R003C00SPC613, RH2288 V3 servers with software before V100R003C00SPC617, CH140 V3 …	CWE-310 CWE-200 Cryptographic Issues Information Exposure	CVE-2016-6838	2024-11-21 11:56	2016-09-8	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed