Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 2, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
243091 4.3 警告 2bits
Drupal		 - Drupal の Currency Exchange モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-1074 2012-06-26 16:19 2009-01-6 Show GitHub Exploit DB Packet Storm
243092 4.3 警告 chris wederka
TYPO3 Association		 - TYPO3 の tgm_newsletter 拡張におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-1025 2012-06-26 16:19 2010-03-19 Show GitHub Exploit DB Packet Storm
243093 7.5 危険 chris wederka
TYPO3 Association		 - TYPO3 の tgm_newsletter 拡張における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-1024 2012-06-26 16:19 2010-03-19 Show GitHub Exploit DB Packet Storm
243094 4.3 警告 georg ringer, patrick gaumond
TYPO3 Association		 - TYPO3 の taskcenter_recent 拡張 におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-1023 2012-06-26 16:19 2010-03-19 Show GitHub Exploit DB Packet Storm
243095 4.3 警告 christian hennecke
TYPO3 Association		 - TYPO3 の chsellector 拡張におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-1008 2012-06-26 16:19 2010-03-19 Show GitHub Exploit DB Packet Storm
243096 5 警告 TYPO3 Association
chi hoang		 - TYPO3 の Power Extension Manager 拡張における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2010-1007 2012-06-26 16:19 2010-03-19 Show GitHub Exploit DB Packet Storm
243097 6.8 警告 eFront Learning - eFront の www/editor/tiny_mce/langs/language.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-1003 2012-06-26 16:19 2010-03-19 Show GitHub Exploit DB Packet Storm
243098 7.1 危険 Free Download Manager.ORG - FDM におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-0999 2012-06-26 16:19 2010-05-17 Show GitHub Exploit DB Packet Storm
243099 10 危険 Free Download Manager.ORG - FDM におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-0998 2012-06-26 16:19 2010-05-17 Show GitHub Exploit DB Packet Storm
243100 3.5 注意 e107.org - e107 の 107_plugins/content/content_manager.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-0997 2012-06-26 16:19 2010-04-20 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
268791 8.4 HIGH
Local 		bluestacks bluestacks A local privilege escalation vulnerability exists in BlueStacks App Player. The BlueStacks App Player installer creates a registry key with weak permissions that allows users to execute arbitrary pro… CWE-275
 Permission Issues 		CVE-2016-4288 2024-11-21 11:51 2017-01-7 Show GitHub Exploit DB Packet Storm
268792 7.8 HIGH
Local 		hancom hancom_office_2014 When opening a Hangul HShow Document (.hpt) and processing a structure within the document, Hancom Office 2014 will attempt to allocate space for a block of data within the file. When calculating thi… CWE-190
 Integer Overflow or Wraparound 		CVE-2016-4290 2024-11-21 11:51 2017-01-7 Show GitHub Exploit DB Packet Storm
268793 4.3 MEDIUM
Network 		open-xchange open-xchange_appsuite An issue was discovered in Open-Xchange OX App Suite before 7.8.1-rev11. Custom messages can be shown at the login screen to notify external users about issues with sharing links. This mechanism can … NVD-CWE-Other
CVE-2016-4048 2024-11-21 11:51 2016-12-15 Show GitHub Exploit DB Packet Storm
268794 4.3 MEDIUM
Network 		open-xchange open-xchange_appsuite An issue was discovered in Open-Xchange OX App Suite before 7.8.1-rev8. References to external Open XML document type definitions (.dtd resources) can be placed within .docx and .xslx files. Those re… CWE-200
CWE-611
Information Exposure
XXE 		CVE-2016-4047 2024-11-21 11:51 2016-12-15 Show GitHub Exploit DB Packet Storm
268795 5.8 MEDIUM
Network 		open-xchange open-xchange_appsuite An issue was discovered in Open-Xchange OX App Suite before 7.8.1-rev11. The API to configure external mail accounts can be abused to map and access network components within the trust boundary of th… CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2016-4046 2024-11-21 11:51 2016-12-15 Show GitHub Exploit DB Packet Storm
268796 6.1 MEDIUM
Network 		open-xchange open-xchange_appsuite An issue was discovered in Open-Xchange OX App Suite before 7.8.1-rev11. Script code can be embedded to RSS feeds using a URL notation. In case a user clicks the corresponding link at the RSS reader … CWE-79
Cross-site Scripting 		CVE-2016-4045 2024-11-21 11:51 2016-12-15 Show GitHub Exploit DB Packet Storm
268797 7.5 HIGH
Network 		open-xchange ox_guard An issue was discovered in Open-Xchange OX Guard before 2.4.0-rev8. OX Guard uses an authentication token to identify and transfer guest users' credentials. The OX Guard API acts as a padding oracle… CWE-255
Credentials Management 		CVE-2016-4028 2024-11-21 11:51 2016-12-15 Show GitHub Exploit DB Packet Storm
268798 3.5 LOW
Network 		open-xchange open-xchange_appsuite An issue was discovered in Open-Xchange OX App Suite before 7.8.1-rev10. App Suite frontend offers to control whether a user wants to store cookies that exceed the session duration. This functionalit… CWE-200
Information Exposure 		CVE-2016-4027 2024-11-21 11:51 2016-12-15 Show GitHub Exploit DB Packet Storm
268799 6.1 MEDIUM
Network 		open-xchange open-xchange_appsuite An issue was discovered in Open-Xchange OX App Suite before 7.8.1-rev11. The content sanitizer component has an issue with filtering malicious content in case invalid HTML code is provided. In such c… CWE-79
Cross-site Scripting 		CVE-2016-4026 2024-11-21 11:51 2016-12-15 Show GitHub Exploit DB Packet Storm
268800 9.8 CRITICAL
Network 		bmc bladelogic_server_automation_console BMC BladeLogic Server Automation (BSA) before 8.7 Patch 3 allows remote attackers to bypass authentication and consequently read arbitrary files or possibly have unspecified other impact by leveragin… CWE-287
Improper Authentication 		CVE-2016-4322 2024-11-21 11:51 2016-12-14 Show GitHub Exploit DB Packet Storm