Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 31, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
243101 7.5 危険 chris simon
Joomla!		 - Joomla! の abbrev コンポーネントにおける任意のローカルファイルをインクルードおよび実行される脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-0985 2012-06-26 16:19 2010-03-16 Show GitHub Exploit DB Packet Storm
243102 5 警告 Acidcat - Acidcat CMS における資格情報を含むデータベースをダウンロードされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-0984 2012-06-26 16:19 2010-03-16 Show GitHub Exploit DB Packet Storm
243103 7.5 危険 Acidcat - Acidcat CMS におけるインストールプロセスを再起動される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-0976 2012-06-26 16:19 2010-03-16 Show GitHub Exploit DB Packet Storm
243104 7.5 危険 Joomla!
g4j.laoneo		 - Joomla! 用 GCalendar コンポーネントにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-0972 2012-06-26 16:19 2010-03-16 Show GitHub Exploit DB Packet Storm
243105 2.1 注意 ATutor - ATutor におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-0971 2012-06-26 16:19 2010-03-16 Show GitHub Exploit DB Packet Storm
243106 7.5 危険 fr.simon rundell
TYPO3 Association		 - TYPO3 の pd_diocesedatabase 拡張における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-1013 2012-06-26 16:19 2008-07-9 Show GitHub Exploit DB Packet Storm
243107 7.5 危険 geekhelps - Geekhelps ADMP の bannershow.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-0968 2012-06-26 16:19 2010-03-16 Show GitHub Exploit DB Packet Storm
243108 5.1 警告 geekhelps - Geekhelps ADMP におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-0967 2012-06-26 16:19 2010-03-16 Show GitHub Exploit DB Packet Storm
243109 6.8 警告 deV!L'z Clanportal - DZCP の inc/config.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2010-0966 2012-06-26 16:19 2010-03-16 Show GitHub Exploit DB Packet Storm
243110 5 警告 アップル - Apple AirPort Express などの FTP プロキシサーバにおけるイントラネット FTP サーバから TCP 転送をされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-0962 2012-06-26 16:19 2010-03-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
267301 9.8 CRITICAL
Network 		crestron airmedia_am-100_firmware Directory traversal vulnerability in cgi-bin/rftest.cgi on Crestron AirMedia AM-100 devices with firmware before 1.4.0.13 allows remote attackers to execute arbitrary commands via a .. (dot dot) in t… CWE-77
Command Injection 		CVE-2016-5640 2024-11-21 11:54 2016-08-3 Show GitHub Exploit DB Packet Storm
267302 7.5 HIGH
Network 		crestron airmedia_am-100_firmware Directory traversal vulnerability in cgi-bin/login.cgi on Crestron AirMedia AM-100 devices with firmware before 1.4.0.13 allows remote attackers to read arbitrary files via a .. (dot dot) in the src … CWE-22
Path Traversal 		CVE-2016-5639 2024-11-21 11:54 2016-08-3 Show GitHub Exploit DB Packet Storm
267303 5.5 MEDIUM
Local 		canonical
oracle
qemu
debian
redhat 		ubuntu_linux
vm_server
linux
qemu
debian_linux
enterprise_linux_desktop
enterprise_linux_server_aus
enterprise_linux_workstation
enterprise_linux_server_tus
openstack
en… 		The virtqueue_pop function in hw/virtio/virtio.c in QEMU allows local guest OS administrators to cause a denial of service (memory consumption and QEMU process crash) by submitting requests without w… CWE-400
 Uncontrolled Resource Consumption 		CVE-2016-5403 2024-11-21 11:54 2016-08-3 Show GitHub Exploit DB Packet Storm
267304 8.1 HIGH
Network 		intel crosswalk Intel Crosswalk before 19.49.514.5, 20.x before 20.50.533.11, 21.x before 21.51.546.0, and 22.x before 22.51.549.0 interprets a user's acceptance of one invalid X.509 certificate to mean that all inv… CWE-310
CWE-20
Cryptographic Issues
 Improper Input Validation  		CVE-2016-5672 2024-11-21 11:54 2016-08-1 Show GitHub Exploit DB Packet Storm
267305 7.5 HIGH
Network 		siemens simatic_wincc Siemens SIMATIC WinCC 7.0 through SP3 and 7.2 allows remote attackers to read arbitrary WinCC station files via crafted packets. CWE-200
Information Exposure 		CVE-2016-5744 2024-11-21 11:54 2016-07-23 Show GitHub Exploit DB Packet Storm
267306 9.8 CRITICAL
Network 		siemens simatic_batch
simatic_wincc
simatic_openpcs_7 		Siemens SIMATIC WinCC before 7.3 Update 10 and 7.4 before Update 1, SIMATIC BATCH before 8.1 SP1 Update 9 as distributed in SIMATIC PCS 7 through 8.1 SP1, SIMATIC OpenPCS 7 before 8.1 Update 3 as dis… CWE-20
 Improper Input Validation  		CVE-2016-5743 2024-11-21 11:54 2016-07-23 Show GitHub Exploit DB Packet Storm
267307 5.8 MEDIUM
Network 		oracle glassfish_server Unspecified vulnerability in the Oracle GlassFish Server component in Oracle Fusion Middleware 2.1.1 and 3.0.1 allows remote attackers to affect confidentiality via vectors related to Administration. NVD-CWE-noinfo
CVE-2016-5477 2024-11-21 11:54 2016-07-21 Show GitHub Exploit DB Packet Storm
267308 7.6 HIGH
Network 		oracle retail_integration_bus Unspecified vulnerability in the Oracle Retail Integration Bus component in Oracle Retail Applications 13.0, 13.1, 13.2, 14.0, 14.1, and 15.0 allows remote authenticated users to affect confidentiali… NVD-CWE-noinfo
CVE-2016-5476 2024-11-21 11:54 2016-07-21 Show GitHub Exploit DB Packet Storm
267309 7.6 HIGH
Network 		oracle retail_service_backbone Unspecified vulnerability in the Oracle Retail Service Backbone component in Oracle Retail Applications 14.0, 14.1, and 15.0 allows remote authenticated users to affect confidentiality, integrity, an… NVD-CWE-noinfo
CVE-2016-5475 2024-11-21 11:54 2016-07-21 Show GitHub Exploit DB Packet Storm
267310 8.8 HIGH
Network 		oracle retail_service_backbone Unspecified vulnerability in the Oracle Retail Service Backbone component in Oracle Retail Applications 14.0, 14.1, and 15.0 allows remote authenticated users to affect confidentiality, integrity, an… NVD-CWE-noinfo
CVE-2016-5474 2024-11-21 11:54 2016-07-21 Show GitHub Exploit DB Packet Storm