Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 1, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
250631	3.5	注意	OTRS プロジェクト	-	OTRS における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2010-4760	2012-03-27 18:42	2011-03-18	Show	GitHub Exploit DB Packet Storm

250632	4	警告	OTRS プロジェクト	-	OTRS におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-4759	2012-03-27 18:42	2011-03-18	Show	GitHub Exploit DB Packet Storm

250633	1.9	注意	OTRS プロジェクト	-	OTRS の installer.pl におけるパスワード取得される脆弱性	CWE-310 暗号の問題	CVE-2010-4758	2012-03-27 18:42	2011-03-18	Show	GitHub Exploit DB Packet Storm

250634	4.3	警告	e107.org	-	e107 におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4757	2012-03-27 18:42	2011-03-15	Show	GitHub Exploit DB Packet Storm

250635	4	警告	GNU Project	-	GNU C Library の glob 実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2010-4756	2012-03-27 18:42	2011-03-2	Show	GitHub Exploit DB Packet Storm

250636	4	警告	OpenBSD FreeBSD NetBSD	-	OpenSSH の remote_glob 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2010-4755	2012-03-27 18:42	2011-03-2	Show	GitHub Exploit DB Packet Storm

250637	4	警告	OpenBSD アップル FreeBSD NetBSD	-	FreeBSD などで使用される libc の glob 実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2010-4754	2012-03-27 18:42	2011-03-2	Show	GitHub Exploit DB Packet Storm

250638	4.3	警告	blogcms	-	BLOG:CMS におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4749	2012-03-27 18:42	2011-03-1	Show	GitHub Exploit DB Packet Storm

250639	4.3	警告	PmWiki	-	PmWiki の pmwiki.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4748	2012-03-27 18:42	2011-03-1	Show	GitHub Exploit DB Packet Storm

250640	4.3	警告	ahmattox WordPress.org	-	WordPress の wordpress-processing-embed/data/popup.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4747	2012-03-27 18:42	2011-03-1	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
269511	8.8	HIGH Network	cacti	cacti	SQL injection vulnerability in tree.php in Cacti 0.8.8g and earlier allows remote authenticated users to execute arbitrary SQL commands via the parent_id parameter in an item_edit action.	CWE-89 SQL Injection	CVE-2016-3172	2024-11-21 11:49	2016-04-13	Show	GitHub Exploit DB Packet Storm

269512	7.8	HIGH Local	xen canonical	xen ubuntu_linux	The __switch_to function in arch/x86/kernel/process_64.c in the Linux kernel does not properly context-switch IOPL on 64-bit PV Xen guests, which allows local guest OS users to gain privileges, cause…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-3157	2024-11-21 11:49	2016-04-13	Show	GitHub Exploit DB Packet Storm

269513	8.1	HIGH Network	drupal debian	drupal debian_linux	Drupal 6.x before 6.38, when used with PHP before 5.4.45, 5.5.x before 5.5.29, or 5.6.x before 5.6.13, might allow remote attackers to execute arbitrary code via vectors related to session data trunc…	CWE-19 Data Processing Errors	CVE-2016-3171	2024-11-21 11:49	2016-04-13	Show	GitHub Exploit DB Packet Storm

269514	5.3	MEDIUM Network	debian drupal	debian_linux drupal	The "have you forgotten your password" links in the User module in Drupal 7.x before 7.43 and 8.x before 8.0.4 allow remote attackers to obtain sensitive username information by leveraging a configur…	CWE-200 Information Exposure	CVE-2016-3170	2024-11-21 11:49	2016-04-13	Show	GitHub Exploit DB Packet Storm

269515	8.1	HIGH Network	debian drupal	debian_linux drupal	The User module in Drupal 6.x before 6.38 and 7.x before 7.43 allows remote attackers to gain privileges by leveraging contributed or custom code that calls the user_save function with an explicit ca…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-3169	2024-11-21 11:49	2016-04-13	Show	GitHub Exploit DB Packet Storm

269516	6.4	MEDIUM Network	drupal debian	drupal debian_linux	The System module in Drupal 6.x before 6.38 and 7.x before 7.43 might allow remote attackers to hijack the authentication of site administrators for requests that download and run files with arbitrar…	CWE-254 7PK - Security Features	CVE-2016-3168	2024-11-21 11:49	2016-04-13	Show	GitHub Exploit DB Packet Storm

269517	7.4	HIGH Network	drupal debian	drupal debian_linux	Open redirect vulnerability in the drupal_goto function in Drupal 6.x before 6.38, when used with PHP before 5.4.7, allows remote attackers to redirect users to arbitrary web sites and conduct phishi…	NVD-CWE-Other	CVE-2016-3167	2024-11-21 11:49	2016-04-13	Show	GitHub Exploit DB Packet Storm

269518	5.9	MEDIUM Network	debian drupal	debian_linux drupal	CRLF injection vulnerability in the drupal_set_header function in Drupal 6.x before 6.38, when used with PHP before 5.1.2, allows remote attackers to inject arbitrary HTTP headers and conduct HTTP re…	NVD-CWE-Other	CVE-2016-3166	2024-11-21 11:49	2016-04-13	Show	GitHub Exploit DB Packet Storm

269519	7.5	HIGH Network	drupal	drupal	The Form API in Drupal 6.x before 6.38 ignores access restrictions on submit buttons, which might allow remote attackers to bypass intended access restrictions by leveraging permission to submit a fo…	CWE-284 Improper Access Control	CVE-2016-3165	2024-11-21 11:49	2016-04-13	Show	GitHub Exploit DB Packet Storm

269520	7.4	HIGH Network	drupal debian	drupal debian_linux	Drupal 6.x before 6.38, 7.x before 7.43, and 8.x before 8.0.4 might allow remote attackers to conduct open redirect attacks by leveraging (1) custom code or (2) a form shown on a 404 error page, rela…	NVD-CWE-Other	CVE-2016-3164	2024-11-21 11:49	2016-04-13	Show	GitHub Exploit DB Packet Storm