Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 6, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
243311 6.8 警告 Arab Portal - Arab Portal の members.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-2340 2012-06-26 16:19 2010-06-18 Show GitHub Exploit DB Packet Storm
243312 9.3 危険 アドビシステムズ - Adobe inDesign CS3 におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-2321 2012-06-26 16:19 2010-06-18 Show GitHub Exploit DB Packet Storm
243313 5 警告 ETERNA - bozotic HTTP サーバにおけるユーザアカウントの存在を決定される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-2320 2012-06-26 16:19 2010-08-2 Show GitHub Exploit DB Packet Storm
243314 6.8 警告 Nucleus
edmondhui.homeip		 - Nucleus の NP_Twitter プラグインにおける PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2010-2314 2012-06-26 16:19 2010-06-17 Show GitHub Exploit DB Packet Storm
243315 6.8 警告 anodyne-productions - Anodyne Productions SIMM Management System (SMS) の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-2313 2012-06-26 16:19 2010-06-17 Show GitHub Exploit DB Packet Storm
243316 7.5 危険 evological - EvoLogical EvoCam の Web サーバにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-2309 2012-06-26 16:19 2010-06-16 Show GitHub Exploit DB Packet Storm
243317 6.8 警告 D-Link Systems, Inc. - Dlink Di-604 ルータの Ping ツール Web インターフェースにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2010-2293 2012-06-26 16:19 2010-06-15 Show GitHub Exploit DB Packet Storm
243318 4.3 警告 D-Link Systems, Inc. - Dlink Di-604 ルータの Ping ツール Web インターフェースにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2292 2012-06-26 16:19 2010-06-15 Show GitHub Exploit DB Packet Storm
243319 10 危険 The Dojo Foundation - Dojo の ビルド処理のディフォルト設定における詳細不明な脆弱性 CWE-16
環境設定 		CVE-2010-2276 2012-06-26 16:19 2010-06-15 Show GitHub Exploit DB Packet Storm
243320 4.3 警告 The Dojo Foundation - Dojo Toolkit SDK の dijit/tests/_testCommon.js におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2275 2012-06-26 16:19 2010-06-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 7, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
268551 7.8 HIGH
Local 		wecon levistudio Stack-based buffer overflow in WECON LeviStudio allows remote attackers to execute arbitrary code via a crafted file. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-5781 2024-11-21 11:55 2016-07-12 Show GitHub Exploit DB Packet Storm
268552 6.5 MEDIUM
Network 		isc
redhat 		bind
enterprise_linux 		ISC BIND through 9.9.9-P1, 9.10.x through 9.10.4-P1, and 9.11.x through 9.11.0b1 allows primary DNS servers to cause a denial of service (secondary DNS server crash) via a large AXFR response, and po… CWE-20
 Improper Input Validation  		CVE-2016-6170 2024-11-21 11:55 2016-07-6 Show GitHub Exploit DB Packet Storm
268553 2.5 LOW
Local 		siemens sicam_pas\/pqs Siemens SICAM PAS through 8.07 allows local users to obtain sensitive configuration information by leveraging database stoppage. CWE-200
Information Exposure 		CVE-2016-5849 2024-11-21 11:55 2016-07-5 Show GitHub Exploit DB Packet Storm
268554 6.7 MEDIUM
Local 		siemens sicam_pas\/pqs Siemens SICAM PAS before 8.07 does not properly restrict password data in the database, which makes it easier for local users to calculate passwords by leveraging unspecified database privileges. CWE-255
CWE-200
Credentials Management
Information Exposure 		CVE-2016-5848 2024-11-21 11:55 2016-07-5 Show GitHub Exploit DB Packet Storm
268555 4.7 MEDIUM
Local 		debian
linux 		debian_linux
linux_kernel 		Race condition in the sclp_ctl_ioctl_sccb function in drivers/s390/char/sclp_ctl.c in the Linux kernel before 4.6 allows local users to obtain sensitive information from kernel memory by changing a c… CWE-362
Race Condition 		CVE-2016-6130 2024-11-21 11:55 2016-07-4 Show GitHub Exploit DB Packet Storm
268556 7.2 HIGH
Network 		trend_micro deep_discovery_inspector hotfix_upload.cgi in Trend Micro Deep Discovery Inspector (DDI) 3.7, 3.8 SP1 (3.81), and 3.8 SP2 (3.82) allows remote administrators to execute arbitrary code via shell metacharacters in the filename… CWE-20
 Improper Input Validation  		CVE-2016-5840 2024-11-21 11:55 2016-07-1 Show GitHub Exploit DB Packet Storm
268557 7.5 HIGH
Network 		wordpress wordpress WordPress before 4.5.3 allows remote attackers to bypass the sanitize_file_name protection mechanism via unspecified vectors. NVD-CWE-noinfo
CVE-2016-5839 2024-11-21 11:55 2016-06-29 Show GitHub Exploit DB Packet Storm
268558 7.5 HIGH
Network 		wordpress wordpress WordPress before 4.5.3 allows remote attackers to bypass intended password-change restrictions by leveraging knowledge of a cookie. CWE-255
Credentials Management 		CVE-2016-5838 2024-11-21 11:55 2016-06-29 Show GitHub Exploit DB Packet Storm
268559 7.5 HIGH
Network 		wordpress wordpress WordPress before 4.5.3 allows remote attackers to bypass intended access restrictions and remove a category attribute from a post via unspecified vectors. NVD-CWE-noinfo
CVE-2016-5837 2024-11-21 11:55 2016-06-29 Show GitHub Exploit DB Packet Storm
268560 7.5 HIGH
Network 		wordpress wordpress The oEmbed protocol implementation in WordPress before 4.5.3 allows remote attackers to cause a denial of service via unspecified vectors. NVD-CWE-noinfo
CVE-2016-5836 2024-11-21 11:55 2016-06-29 Show GitHub Exploit DB Packet Storm