Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 3, 2026, 6:08 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
242901 6.5 警告 AlienVault - AlienVault の OSSIM における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-3834 2012-07-5 15:11 2012-07-3 Show GitHub Exploit DB Packet Storm
242902 4.3 警告 OpenSolution - Quick.CMS の admin/ 内のデフォルトインデックスページにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-3833 2012-07-5 15:09 2012-07-3 Show GitHub Exploit DB Packet Storm
242903 4.3 警告 Miles Johnson - Decoda の decoda/Decoda.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-3832 2012-07-5 14:40 2012-07-3 Show GitHub Exploit DB Packet Storm
242904 4.3 警告 Miles Johnson - Decoda の decoda/templates/video.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-3831 2012-07-5 14:35 2012-07-3 Show GitHub Exploit DB Packet Storm
242905 4.3 警告 Miles Johnson - Decoda の decoda/templates/video.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-3830 2012-07-5 14:28 2012-07-3 Show GitHub Exploit DB Packet Storm
242906 5 警告 Joomla! - Joomla! におけるインストールパスを取得される脆弱性 CWE-200
情報漏えい 		CVE-2012-3829 2012-07-5 14:23 2012-07-3 Show GitHub Exploit DB Packet Storm
242907 4.3 警告 Joomla! - Joomla! におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-3828 2012-07-5 14:22 2012-07-3 Show GitHub Exploit DB Packet Storm
242908 2.1 注意 Fedora Project - Anacond のブートローダ設定モジュールにおけるパスワードハッシュを取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-2314 2012-07-5 14:09 2012-05-10 Show GitHub Exploit DB Packet Storm
242909 2.6 注意 Ned T. Crigler - dtach の attach.cにおける整数符号エラーの脆弱性 CWE-189
数値処理の問題 		CVE-2012-3368 2012-07-5 14:00 2012-07-3 Show GitHub Exploit DB Packet Storm
242910 5 警告 IBM - IBM WebSphere Portal の Dojo モジュールにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2012-2181 2012-07-5 13:57 2012-07-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
266621 7.5 HIGH
Network 		samsung samsung_mobile A vulnerability on Samsung Mobile M(6.0) devices exists because external access to SystemUI activities is not properly restricted, leading to a SystemUI crash and device restart, aka SVE-2016-6248. CWE-476
 NULL Pointer Dereference 		CVE-2016-7160 2024-11-21 11:57 2016-11-3 Show GitHub Exploit DB Packet Storm
266622 9.8 CRITICAL
Network 		exponentcms exponent_cms Exponent CMS before 2.3.9 is vulnerable to an attacker uploading a malicious script file using redirection to place the script in an unprotected folder, one allowing script execution. CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2016-7095 2024-11-21 11:57 2016-11-3 Show GitHub Exploit DB Packet Storm
266623 7.8 HIGH
Local 		linux
canonical 		linux_kernel
ubuntu_linux 		The arcmsr_iop_message_xfer function in drivers/scsi/arcmsr/arcmsr_hba.c in the Linux kernel through 4.8.2 does not restrict a certain length field, which allows local users to gain privileges or cau… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-7425 2024-11-21 11:57 2016-10-17 Show GitHub Exploit DB Packet Storm
266624 4.4 MEDIUM
Local 		linux linux_kernel The filesystem implementation in the Linux kernel through 4.8.2 preserves the setgid bit during a setxattr call, which allows local users to gain group privileges by leveraging the existence of a set… CWE-285
Improper Authorization 		CVE-2016-7097 2024-11-21 11:57 2016-10-17 Show GitHub Exploit DB Packet Storm
266625 6.2 MEDIUM
Local 		linux linux_kernel The proc_keys_show function in security/keys/proc.c in the Linux kernel through 4.8.2, when the GNU Compiler Collection (gcc) stack protector is enabled, uses an incorrect buffer size for certain tim… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-7042 2024-11-21 11:57 2016-10-17 Show GitHub Exploit DB Packet Storm
266626 7.5 HIGH
Network 		oracle
linux 		vm_server
linux
linux_kernel 		The IP stack in the Linux kernel through 4.8.2 allows remote attackers to cause a denial of service (stack consumption and panic) or possibly have unspecified other impact by triggering use of the GR… CWE-399
 Resource Management Errors 		CVE-2016-7039 2024-11-21 11:57 2016-10-17 Show GitHub Exploit DB Packet Storm
266627 7.5 HIGH
Network 		microsoft edge The Chakra JavaScript engine in Microsoft Edge allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Scripting Engine Memory … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-7194 2024-11-21 11:57 2016-10-14 Show GitHub Exploit DB Packet Storm
266628 7.5 HIGH
Network 		microsoft edge The Chakra JavaScript engine in Microsoft Edge allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Scripting Engine Memory … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-7190 2024-11-21 11:57 2016-10-14 Show GitHub Exploit DB Packet Storm
266629 7.3 HIGH
Local 		microsoft windows_rt_8.1
windows_server_2012
windows_7
windows_10
windows_8.1
windows_server_2008
windows_vista 		The kernel-mode drivers in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold, 1511, and… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-7211 2024-11-21 11:57 2016-10-14 Show GitHub Exploit DB Packet Storm
266630 7.5 HIGH
Network 		microsoft edge The Chakra JavaScript engine in Microsoft Edge allows remote attackers to execute arbitrary code via a crafted web site, aka "Scripting Engine Remote Code Execution Vulnerability." CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-7189 2024-11-21 11:57 2016-10-14 Show GitHub Exploit DB Packet Storm