Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 2, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
243191 7.5 危険 a3malnet - magic-portal の home.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-0457 2012-06-26 16:19 2010-01-28 Show GitHub Exploit DB Packet Storm
243192 7.5 危険 fabricadigital - Publique! の cgi/cgilua.exe/sys/start.htm における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-0454 2012-06-26 16:19 2010-01-28 Show GitHub Exploit DB Packet Storm
243193 5 警告 Digium - Asterisk Open Source におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2010-0441 2012-06-26 16:19 2010-02-4 Show GitHub Exploit DB Packet Storm
243194 6.9 警告 chip salzenberg - Chip Salzenberg Deliver における重要な情報を取得される脆弱性 CWE-59
リンク解釈の問題 		CVE-2010-0439 2012-06-26 16:19 2010-03-26 Show GitHub Exploit DB Packet Storm
243195 4.3 警告 entente-oya
Apache Software Foundation
neogia		 - Opentaps などで使用される Apache Open For Business Project におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-0432 2012-06-26 16:19 2010-04-15 Show GitHub Exploit DB Packet Storm
243196 3.3 注意 paul vixie
fedorahosted.org		 - cronie および Vixie cron の edit_cmd 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-59
リンク解釈の問題 		CVE-2010-0424 2012-06-26 16:19 2010-02-25 Show GitHub Exploit DB Packet Storm
243197 4 警告 GNOME Project - gnome-screensaver における画面がロックされている無人のワークステーションにアクセスされる脆弱性 CWE-Other
その他 		CVE-2010-0422 2012-06-26 16:19 2010-02-12 Show GitHub Exploit DB Packet Storm
243198 10 危険 chumby - chumby classic の chumby one の Web インターフェースにおける任意のコマンドを実行される脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2010-0418 2012-06-26 16:19 2010-03-4 Show GitHub Exploit DB Packet Storm
243199 7.2 危険 GNOME Project - gnome-screensaver における画面がロックされている無人のワークステーションにアクセスされる脆弱性 CWE-Other
その他 		CVE-2010-0414 2012-06-26 16:19 2010-02-8 Show GitHub Exploit DB Packet Storm
243200 7.5 危険 GNOME Project - GMime の GMIME_UUENCODE_LEN マクロにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-0409 2012-06-26 16:19 2010-02-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
267751 6.5 MEDIUM
Network 		libdwarf_project libdwarf The create_fullest_file_path function in libdwarf before 20160923 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted dwarf file. CWE-476
 NULL Pointer Dereference 		CVE-2016-5029 2024-11-21 11:53 2017-02-18 Show GitHub Exploit DB Packet Storm
267752 6.5 MEDIUM
Network 		libdwarf_project libdwarf The print_frame_inst_bytes function in libdwarf before 20160923 allows remote attackers to cause a denial of service (NULL pointer dereference) via an object file with empty bss-like sections. CWE-476
 NULL Pointer Dereference 		CVE-2016-5028 2024-11-21 11:53 2017-02-18 Show GitHub Exploit DB Packet Storm
267753 9.8 CRITICAL
Network 		fedoraproject
zend 		fedora
zend_framework 		The (1) order and (2) group methods in Zend_Db_Select in the Zend Framework before 1.12.20 might allow remote attackers to conduct SQL injection attacks by leveraging failure to remove comments from … CWE-89
SQL Injection 		CVE-2016-4861 2024-11-21 11:53 2017-02-17 Show GitHub Exploit DB Packet Storm
267754 9.8 CRITICAL
Network 		froxlor froxlor Froxlor before 0.9.35 uses the PHP rand function for random number generation, which makes it easier for remote attackers to guess the password reset token by predicting a value. CWE-330
 Use of Insufficiently Random Values 		CVE-2016-5100 2024-11-21 11:53 2017-02-14 Show GitHub Exploit DB Packet Storm
267755 6.1 MEDIUM
Network 		jenkins build_failure_analyzer Cross-site scripting (XSS) vulnerability in the Build Failure Analyzer plugin before 1.16.0 in Jenkins allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter. CWE-79
Cross-site Scripting 		CVE-2016-4988 2024-11-21 11:53 2017-02-10 Show GitHub Exploit DB Packet Storm
267756 6.5 MEDIUM
Network 		jenkins image_gallery Directory traversal vulnerability in the Image Gallery plugin before 1.4 in Jenkins allows remote attackers to list arbitrary directories and read arbitrary files via unspecified form fields. CWE-22
Path Traversal 		CVE-2016-4987 2024-11-21 11:53 2017-02-10 Show GitHub Exploit DB Packet Storm
267757 7.5 HIGH
Network 		jenkins tap Directory traversal vulnerability in the TAP plugin before 1.25 in Jenkins allows remote attackers to read arbitrary files via an unspecified parameter. CWE-22
Path Traversal 		CVE-2016-4986 2024-11-21 11:53 2017-02-10 Show GitHub Exploit DB Packet Storm
267758 5.5 MEDIUM
Local 		libtiff libtiff Buffer overflow in the readgifimage function in gif2tiff.c in the gif2tiff tool in LibTIFF 4.0.6 allows remote attackers to cause a denial of service (segmentation fault) via a crafted gif file. CWE-20
 Improper Input Validation  		CVE-2016-5102 2024-11-21 11:53 2017-02-7 Show GitHub Exploit DB Packet Storm
267759 5.5 MEDIUM
Local 		graphicsmagick
debian
opensuse 		graphicsmagick
debian_linux
leap
opensuse 		magick/render.c in GraphicsMagick before 1.3.24 allows remote attackers to cause a denial of service (arithmetic exception and application crash) via a crafted svg file. CWE-189
Numeric Errors 		CVE-2016-5241 2024-11-21 11:53 2017-02-4 Show GitHub Exploit DB Packet Storm
267760 5.5 MEDIUM
Local 		libavformat_project libavformat The avcodec_decode_audio4 function in libavcodec in libavformat 57.34.103, as used in MPlayer, allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted mp3 file. CWE-125
Out-of-bounds Read 		CVE-2016-5115 2024-11-21 11:53 2017-02-4 Show GitHub Exploit DB Packet Storm