Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 1, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
242911 4.3 警告 createch-group - LiSK CMS の cp/edit_email.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2013 2012-06-26 16:19 2010-05-24 Show GitHub Exploit DB Packet Storm
242912 4.3 警告 Angry Donuts
Drupal		 - Drupal の Chaos Tool Suite モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2010 2012-06-26 16:19 2010-05-19 Show GitHub Exploit DB Packet Storm
242913 9.3 危険 AB Team - BS.Global BS.Player のメディアライブラリにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-2009 2012-06-26 16:19 2010-05-21 Show GitHub Exploit DB Packet Storm
242914 7.5 危険 datalifecms - DLE における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2010-2005 2012-06-26 16:19 2010-05-20 Show GitHub Exploit DB Packet Storm
242915 9.3 危険 AB Team - BS.Global BS.Player におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-2004 2012-06-26 16:19 2010-05-20 Show GitHub Exploit DB Packet Storm
242916 2.1 注意 Drupal
jeff warrington		 - Drupal の Wordfilter モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2002 2012-06-26 16:19 2010-05-12 Show GitHub Exploit DB Packet Storm
242917 6.8 警告 Joomla!
Fabrik		 - Joomla! 用 Fabrik コンポーネントにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-1981 2012-06-26 16:19 2010-05-19 Show GitHub Exploit DB Packet Storm
242918 6.8 警告 affiliatefeeds
Joomla!		 - Joomla! 用の Affiliate Datafeeds コンポーネントにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-1979 2012-06-26 16:19 2010-05-19 Show GitHub Exploit DB Packet Storm
242919 6.8 警告 freephpblogsoftware - FreePHPBlogSoftware の default_theme.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2010-1978 2012-06-26 16:19 2010-05-19 Show GitHub Exploit DB Packet Storm
242920 7.5 危険 Joomla!
gohigheris		 - Joomla! 用の J!WHMCS integrator コンポーネントにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-1977 2012-06-26 16:19 2010-05-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
266761 9.8 CRITICAL
Network 		ffmpeg ffmpeg Integer overflow in the mov_build_index function in libavformat/mov.c in FFmpeg before 2.8.8, 3.0.x before 3.0.3 and 3.1.x before 3.1.1 allows remote attackers to have unspecified impact via vectors … CWE-190
 Integer Overflow or Wraparound 		CVE-2016-6164 2024-11-21 11:55 2017-01-24 Show GitHub Exploit DB Packet Storm
266762 7.5 HIGH
Network 		broadcom tcpreplay tcprewrite in tcpreplay before 4.1.2 allows remote attackers to cause a denial of service (segmentation fault) via a large frame, a related issue to CVE-2017-14266. CWE-399
 Resource Management Errors 		CVE-2016-6160 2024-11-21 11:55 2017-01-24 Show GitHub Exploit DB Packet Storm
266763 5.9 MEDIUM
Network 		owncloud owncloud ownCloud server before 8.2.6 and 9.x before 9.0.3, when the gallery app is enabled, allows remote attackers to download arbitrary images via a direct request. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-5876 2024-11-21 11:55 2017-01-24 Show GitHub Exploit DB Packet Storm
266764 9.8 CRITICAL
Network 		php pecl_http Buffer overflow in the HTTP URL parsing functions in pecl_http before 3.0.1 might allow remote attackers to execute arbitrary code via non-printable characters in a URL. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-5873 2024-11-21 11:55 2017-01-24 Show GitHub Exploit DB Packet Storm
266765 7.8 HIGH
Local 		netbsd netbsd mail.local in NetBSD versions 6.0 through 6.0.6, 6.1 through 6.1.5, and 7.0 allows local users to change ownership of or append data to arbitrary files on the target system via a symlink attack on th… CWE-59
Link Following 		CVE-2016-6253 2024-11-21 11:55 2017-01-21 Show GitHub Exploit DB Packet Storm
266766 6.1 MEDIUM
Network 		atlassian confluence Cross-site scripting (XSS) vulnerability in Atlassian Confluence before 5.10.6 allows remote attackers to inject arbitrary web script or HTML via the newFileName parameter to pages/doeditattachment.a… CWE-79
Cross-site Scripting 		CVE-2016-6283 2024-11-21 11:55 2017-01-19 Show GitHub Exploit DB Packet Storm
266767 7.5 HIGH
Network 		bzrtp_project bzrtp The Bzrtp library (aka libbzrtp) 1.0.x before 1.0.4 allows man-in-the-middle attackers to conduct spoofing attacks by leveraging a missing HVI check on DHPart2 packet reception. CWE-254
 7PK - Security Features 		CVE-2016-6271 2024-11-21 11:55 2017-01-19 Show GitHub Exploit DB Packet Storm
266768 7.5 HIGH
Network 		call-cc http-client The "http-client" egg always used a HTTP_PROXY environment variable to determine whether HTTP traffic should be routed via a proxy, even when running as a CGI process. Under several web servers this … CWE-19
 Data Processing Errors 		CVE-2016-6287 2024-11-21 11:55 2017-01-11 Show GitHub Exploit DB Packet Storm
266769 7.5 HIGH
Network 		call-cc http-client The "spiffy-cgi-handlers" egg would convert a nonexistent "Proxy" header to the HTTP_PROXY environment variable, which would allow attackers to direct CGI programs which use this environment variable… CWE-19
 Data Processing Errors 		CVE-2016-6286 2024-11-21 11:55 2017-01-11 Show GitHub Exploit DB Packet Storm
266770 4.7 MEDIUM
Local 		linux linux_kernel fs/namespace.c in the Linux kernel before 4.9 does not restrict how many mounts may exist in a mount namespace, which allows local users to cause a denial of service (memory consumption and deadlock)… CWE-400
 Uncontrolled Resource Consumption 		CVE-2016-6213 2024-11-21 11:55 2016-12-28 Show GitHub Exploit DB Packet Storm