Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 5, 2026, 2:06 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
243291 7.5 危険 2daybiz - 2daybiz Web Template Software の customize.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-2510 2012-06-26 16:19 2010-06-28 Show GitHub Exploit DB Packet Storm
243292 4.3 警告 2daybiz - 2daybiz Web Template Software におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2509 2012-06-26 16:19 2010-06-28 Show GitHub Exploit DB Packet Storm
243293 7.5 危険 2daybiz - 2daybiz Video Community Portal Script の user-profile.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-2508 2012-06-26 16:19 2010-06-28 Show GitHub Exploit DB Packet Storm
243294 2.9 注意 シスコシステムズ - Linksys WAP54Gv3 の debug.cgi におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2506 2012-06-26 16:19 2010-06-28 Show GitHub Exploit DB Packet Storm
243295 5 警告 bogofilter - bogofilter の base64.c の base64 デコーダにおけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2010-2494 2012-06-26 16:19 2010-07-8 Show GitHub Exploit DB Packet Storm
243296 7.5 危険 2daybiz - 2daybiz Video Community Portal Script の video.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-2459 2012-06-26 16:19 2010-06-25 Show GitHub Exploit DB Packet Storm
243297 4.3 警告 2daybiz - 2daybiz Video Community Portal Script の video.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2458 2012-06-26 16:19 2010-06-25 Show GitHub Exploit DB Packet Storm
243298 6.8 警告 codelib - Linker IMG の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-2456 2012-06-26 16:19 2010-06-25 Show GitHub Exploit DB Packet Storm
243299 4.3 警告 アップル - Apple Safari におけるなりすまし攻撃を実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-2454 2012-06-26 16:19 2010-06-25 Show GitHub Exploit DB Packet Storm
243300 10 危険 freeciv - freeciv における任意のコマンドを実行される脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2010-2445 2012-06-26 16:19 2010-07-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
267221 4.4 MEDIUM
Local 		qemu qemu The virtqueue_map_desc function in hw/virtio/virtio.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (infinite loop and QEMU process crash) via a zero … CWE-120
Classic Buffer Overflow 		CVE-2016-6490 2024-11-21 11:56 2016-12-10 Show GitHub Exploit DB Packet Storm
267222 9.8 CRITICAL
Network 		jfrog artifactory JFrog Artifactory before 4.11 allows remote attackers to execute arbitrary code via an LDAP attribute with a crafted serialized Java object, aka LDAP entry poisoning. CWE-20
 Improper Input Validation  		CVE-2016-6501 2024-11-21 11:56 2016-12-10 Show GitHub Exploit DB Packet Storm
267223 9.8 CRITICAL
Network 		atlassian crowd The LDAP directory connector in Atlassian Crowd before 2.8.8 and 2.9.x before 2.9.5 allows remote attackers to execute arbitrary code via an LDAP attribute with a crafted serialized Java object, aka … CWE-20
 Improper Input Validation  		CVE-2016-6496 2024-11-21 11:56 2016-12-10 Show GitHub Exploit DB Packet Storm
267224 9.8 CRITICAL
Network 		barclamp-trove_project
crowbar-openstack_project 		barclamp-trove
crowbar-openstack 		The trove service user in (1) Openstack deployment (aka crowbar-openstack) and (2) Trove Barclamp (aka barclamp-trove and crowbar-barclamp-trove) in the Crowbar Framework has a default password, whic… CWE-798
 Use of Hard-coded Credentials 		CVE-2016-6829 2024-11-21 11:56 2016-12-10 Show GitHub Exploit DB Packet Storm
267225 6.1 MEDIUM
Network 		dotclear dotclear Multiple cross-site scripting (XSS) vulnerabilities in the media manager in Dotclear before 2.10 allow remote attackers to inject arbitrary web script or HTML via the (1) q or (2) link_type parameter… CWE-79
Cross-site Scripting 		CVE-2016-6523 2024-11-21 11:56 2016-12-10 Show GitHub Exploit DB Packet Storm
267226 8.8 HIGH
Network 		google android A remote code execution vulnerability in Webview in Android 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-11-05 could enable a remote attacker to execute arbitrary code when the user is… CWE-74
Injection 		CVE-2016-6754 2024-11-21 11:56 2016-11-26 Show GitHub Exploit DB Packet Storm
267227 5.5 MEDIUM
Local 		google android An information disclosure vulnerability in kernel components, including the process-grouping subsystem and the networking subsystem, in Android before 2016-11-05 could enable a local malicious applic… CWE-200
Information Exposure 		CVE-2016-6753 2024-11-21 11:56 2016-11-26 Show GitHub Exploit DB Packet Storm
267228 5.5 MEDIUM
Local 		google android An information disclosure vulnerability in Qualcomm components including the GPU driver, power driver, SMSM Point-to-Point driver, and sound driver in Android before 2016-11-05 could enable a local m… CWE-200
Information Exposure 		CVE-2016-6752 2024-11-21 11:56 2016-11-26 Show GitHub Exploit DB Packet Storm
267229 5.5 MEDIUM
Local 		google android An information disclosure vulnerability in Qualcomm components including the GPU driver, power driver, SMSM Point-to-Point driver, and sound driver in Android before 2016-11-05 could enable a local m… CWE-200
Information Exposure 		CVE-2016-6751 2024-11-21 11:56 2016-11-26 Show GitHub Exploit DB Packet Storm
267230 5.5 MEDIUM
Local 		google android An information disclosure vulnerability in Qualcomm components including the GPU driver, power driver, SMSM Point-to-Point driver, and sound driver in Android before 2016-11-05 could enable a local m… CWE-200
Information Exposure 		CVE-2016-6750 2024-11-21 11:56 2016-11-26 Show GitHub Exploit DB Packet Storm