Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 30, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
242991 3.5 注意 Angry Donuts
Drupal		 - Drupal の Chaos Tool Suite モジュールの auto-complete 機能における非公開ノードのタイトルを読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-1548 2012-06-26 16:19 2010-05-19 Show GitHub Exploit DB Packet Storm
242992 6.8 警告 Angry Donuts
Drupal		 - Drupal の Chaos Tool Suite モジュールにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2010-1547 2012-06-26 16:19 2010-05-19 Show GitHub Exploit DB Packet Storm
242993 6 警告 Angry Donuts
Drupal		 - Drupal の Chaos Tool Suite モジュールの import 機能における任意の PHP コードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-1546 2012-06-26 16:19 2010-05-19 Show GitHub Exploit DB Packet Storm
242994 5 警告 ACME Laboratories
rca		 - RCA DCM425 ケーブルモデムの micro_httpd におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2010-1544 2012-06-26 16:19 2010-04-26 Show GitHub Exploit DB Packet Storm
242995 4.3 警告 etracker
Drupal		 - Drupal の eTracker モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-1543 2012-06-26 16:19 2010-03-3 Show GitHub Exploit DB Packet Storm
242996 6.8 警告 dragonfrugal - DFD Cart の admin/configure.php におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2010-1542 2012-06-26 16:19 2010-04-26 Show GitHub Exploit DB Packet Storm
242997 4.3 警告 dragonfrugal - DFD Cart におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-1541 2012-06-26 16:19 2010-04-26 Show GitHub Exploit DB Packet Storm
242998 7.5 危険 bluestrikeweb - phpRAINCHECK の print_raincheck.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-1538 2012-06-26 16:19 2010-04-26 Show GitHub Exploit DB Packet Storm
242999 7.5 危険 francois bissonnette - phpCDB におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-1537 2012-06-26 16:19 2010-04-26 Show GitHub Exploit DB Packet Storm
243000 5 警告 givesight
Joomla!		 - Joomla! の givesight powermail コンポーネントにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-1532 2012-06-26 16:19 2010-04-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
266971 8.8 HIGH
Network 		netiq access_manager A cross site request forgery protection mechanism in NetIQ Access Manager 4.1 before 4.1.2 Hot Fix 1 and 4.2 before 4.2.2 could be circumvented by repeated uploads causing a high load. CWE-352
 Origin Validation Error 		CVE-2016-5758 2024-11-21 11:54 2017-03-23 Show GitHub Exploit DB Packet Storm
266972 9.8 CRITICAL
Network 		netiq access_manager iManager Admin Console in NetIQ Access Manager 4.1 before 4.1.2 Hot Fix 1 and 4.2 before 4.2.2 was vulnerable to iFrame manipulation attacks, which could allow remote users to gain access to authenti… CWE-200
Information Exposure 		CVE-2016-5757 2024-11-21 11:54 2017-03-23 Show GitHub Exploit DB Packet Storm
266973 6.1 MEDIUM
Network 		netiq access_manager Multiple components of the web tools in NetIQ Access Manager 4.1 before 4.1.2 Hot Fix 1 and 4.2 before 4.2.2 were vulnerable to Reflected Cross Site Scripting attacks which could be used to hijack us… CWE-79
Cross-site Scripting 		CVE-2016-5756 2024-11-21 11:54 2017-03-23 Show GitHub Exploit DB Packet Storm
266974 6.5 MEDIUM
Network 		netiq access_manager NetIQ Access Manager 4.1 before 4.1.2 Hot Fix 1 and 4.2 before 4.2.2 was vulnerable to clickjacking attacks due to a missing SAMEORIGIN filter in the "high encryption" setting. CWE-20
 Improper Input Validation  		CVE-2016-5755 2024-11-21 11:54 2017-03-23 Show GitHub Exploit DB Packet Storm
266975 7.5 HIGH
Network 		netiq access_manager Presence of a .htaccess file could leak information in NetIQ Access Manager 4.1 before 4.1.2 Hot Fix 1 and 4.2 before SP2. CWE-200
Information Exposure 		CVE-2016-5754 2024-11-21 11:54 2017-03-23 Show GitHub Exploit DB Packet Storm
266976 7.5 HIGH
Network 		netiq access_manager The SAML2 implementation in Identity Server in NetIQ Access Manager 4.1 before 4.1.2 HF1 and 4.2 before 4.2.2 was handling unsigned SAML requests incorrectly, leaking results to a potentially malicio… CWE-200
Information Exposure 		CVE-2016-5752 2024-11-21 11:54 2017-03-23 Show GitHub Exploit DB Packet Storm
266977 6.1 MEDIUM
Network 		netiq access_manager An unfiltered finalizer target URL in the SAML processing feature in Identity Server in NetIQ Access Manager 4.1 before 4.1.2 HF1 and 4.2 before 4.2.2 could be used to trigger XSS and leak authentica… CWE-79
Cross-site Scripting 		CVE-2016-5751 2024-11-21 11:54 2017-03-23 Show GitHub Exploit DB Packet Storm
266978 8.8 HIGH
Network 		netiq access_manager The certificate upload feature in iManager in NetIQ Access Manager 4.1 before 4.1.2 Hot Fix 1 and 4.2 before 4.2.2 could be used to upload JSP pages that would be executed as the iManager user, allow… CWE-284
Improper Access Control 		CVE-2016-5750 2024-11-21 11:54 2017-03-23 Show GitHub Exploit DB Packet Storm
266979 5.5 MEDIUM
Local 		netiq access_manager NetIQ Access Manager 4.1 before 4.1.2 HF 1 and 4.2 before 4.2.2 was parsing incoming SAML requests with external entity resolution enabled, which could lead to local file disclosure via an XML Extern… CWE-611
XXE 		CVE-2016-5749 2024-11-21 11:54 2017-03-23 Show GitHub Exploit DB Packet Storm
266980 5.5 MEDIUM
Local 		netiq access_manager External Entity Processing (XXE) vulnerability in the "risk score" application of NetIQ Access Manager 4.1 before 4.1.2 Hot Fix 1 and 4.2 before 4.2.2 could be used to disclose the content of local f… CWE-611
XXE 		CVE-2016-5748 2024-11-21 11:54 2017-03-23 Show GitHub Exploit DB Packet Storm