Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 7, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
243061 6.8 警告 webatall.org - web@all におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-3231 2012-07-5 16:38 2012-06-27 Show GitHub Exploit DB Packet Storm
243062 6.8 警告 アップル - 複数の Apple 製品で使用される WebKit における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2012-0608 2012-07-5 16:33 2012-03-8 Show GitHub Exploit DB Packet Storm
243063 4.3 警告 Atmoner - PHP-pastebin の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-3846 2012-07-5 15:58 2012-07-3 Show GitHub Exploit DB Packet Storm
243064 5 警告 Qualia Digital Solutions - LAN Messenger におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-3845 2012-07-5 15:56 2012-07-3 Show GitHub Exploit DB Packet Storm
243065 4.3 警告 vBulletin Solutions, Inc. - vBulletin におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-3844 2012-07-5 15:42 2012-07-3 Show GitHub Exploit DB Packet Storm
243066 4.3 警告 e107.org - e107 の登録ページにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-3843 2012-07-5 15:39 2012-07-3 Show GitHub Exploit DB Packet Storm
243067 4.3 警告 JBMC Software - JBMC Software DirectAdmin の CMD_DOMAIN におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-3842 2012-07-5 15:38 2012-07-3 Show GitHub Exploit DB Packet Storm
243068 9.3 危険 KMPlayer's Forums - KMPlayer における任意のコードを実行される脆弱性 CWE-Other
その他 		CVE-2012-3841 2012-07-5 15:35 2012-07-3 Show GitHub Exploit DB Packet Storm
243069 4.3 警告 Jesse Terry - MyClientBase の index.php/users/form/user_id におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-3840 2012-07-5 15:32 2012-07-3 Show GitHub Exploit DB Packet Storm
243070 7.5 危険 Jesse Terry - MyClientBase の application/core/MY_Model.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-3839 2012-07-5 15:31 2012-07-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 7, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
268901 9.8 CRITICAL
Network 		crestron dm-txrx-100-str_firmware Crestron Electronics DM-TXRX-100-STR devices with firmware before 1.3039.00040 use a hardcoded 0xb9eed4d955a59eb3 X.509 certificate from an OpenSSL Test Certification Authority, which makes it easier… NVD-CWE-Other
CVE-2016-5669 2024-11-21 11:54 2016-08-3 Show GitHub Exploit DB Packet Storm
268902 9.8 CRITICAL
Network 		crestron dm-txrx-100-str_firmware Crestron Electronics DM-TXRX-100-STR devices with firmware before 1.3039.00040 allow remote attackers to bypass authentication and change settings via a JSON API call. NVD-CWE-Other
CVE-2016-5668 2024-11-21 11:54 2016-08-3 Show GitHub Exploit DB Packet Storm
268903 9.8 CRITICAL
Network 		crestron dm-txrx-100-str_firmware Crestron Electronics DM-TXRX-100-STR devices with firmware before 1.3039.00040 allow remote attackers to bypass authentication via a direct request to a page other than index.html. NVD-CWE-Other
CVE-2016-5667 2024-11-21 11:54 2016-08-3 Show GitHub Exploit DB Packet Storm
268904 9.8 CRITICAL
Network 		crestron dm-txrx-100-str_firmware Crestron Electronics DM-TXRX-100-STR devices with firmware before 1.3039.00040 rely on the client to perform authentication, which allows remote attackers to obtain access by setting the value of obj… NVD-CWE-Other
CVE-2016-5666 2024-11-21 11:54 2016-08-3 Show GitHub Exploit DB Packet Storm
268905 9.8 CRITICAL
Network 		crestron airmedia_am-100_firmware Directory traversal vulnerability in cgi-bin/rftest.cgi on Crestron AirMedia AM-100 devices with firmware before 1.4.0.13 allows remote attackers to execute arbitrary commands via a .. (dot dot) in t… CWE-77
Command Injection 		CVE-2016-5640 2024-11-21 11:54 2016-08-3 Show GitHub Exploit DB Packet Storm
268906 7.5 HIGH
Network 		crestron airmedia_am-100_firmware Directory traversal vulnerability in cgi-bin/login.cgi on Crestron AirMedia AM-100 devices with firmware before 1.4.0.13 allows remote attackers to read arbitrary files via a .. (dot dot) in the src … CWE-22
Path Traversal 		CVE-2016-5639 2024-11-21 11:54 2016-08-3 Show GitHub Exploit DB Packet Storm
268907 5.5 MEDIUM
Local 		canonical
oracle
qemu
debian
redhat 		ubuntu_linux
vm_server
linux
qemu
debian_linux
enterprise_linux_desktop
enterprise_linux_server_aus
enterprise_linux_workstation
enterprise_linux_server_tus
openstack
en… 		The virtqueue_pop function in hw/virtio/virtio.c in QEMU allows local guest OS administrators to cause a denial of service (memory consumption and QEMU process crash) by submitting requests without w… CWE-400
 Uncontrolled Resource Consumption 		CVE-2016-5403 2024-11-21 11:54 2016-08-3 Show GitHub Exploit DB Packet Storm
268908 8.1 HIGH
Network 		intel crosswalk Intel Crosswalk before 19.49.514.5, 20.x before 20.50.533.11, 21.x before 21.51.546.0, and 22.x before 22.51.549.0 interprets a user's acceptance of one invalid X.509 certificate to mean that all inv… CWE-310
CWE-20
Cryptographic Issues
 Improper Input Validation  		CVE-2016-5672 2024-11-21 11:54 2016-08-1 Show GitHub Exploit DB Packet Storm
268909 7.5 HIGH
Network 		siemens simatic_wincc Siemens SIMATIC WinCC 7.0 through SP3 and 7.2 allows remote attackers to read arbitrary WinCC station files via crafted packets. CWE-200
Information Exposure 		CVE-2016-5744 2024-11-21 11:54 2016-07-23 Show GitHub Exploit DB Packet Storm
268910 9.8 CRITICAL
Network 		siemens simatic_batch
simatic_wincc
simatic_openpcs_7 		Siemens SIMATIC WinCC before 7.3 Update 10 and 7.4 before Update 1, SIMATIC BATCH before 8.1 SP1 Update 9 as distributed in SIMATIC PCS 7 through 8.1 SP1, SIMATIC OpenPCS 7 before 8.1 Update 3 as dis… CWE-20
 Improper Input Validation  		CVE-2016-5743 2024-11-21 11:54 2016-07-23 Show GitHub Exploit DB Packet Storm