Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 26, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
250821 10 危険 TIBCO Software - TIBCO ActiveMatrix Service Grid などで使用される ActiveMatrix Runtime コンポーネントにおける任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-3491 2012-03-27 18:42 2010-10-19 Show GitHub Exploit DB Packet Storm
250822 6.5 警告 FreePBX - FreePBX の設定インターフェース の System Recordings コンポーネントにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-3490 2012-03-27 18:42 2010-09-28 Show GitHub Exploit DB Packet Storm
250823 4.3 警告 digitalworkroom - CMS Digital Workroom の netautor/napro4/home/login2.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-3489 2012-03-27 18:42 2010-09-22 Show GitHub Exploit DB Packet Storm
250824 5 警告 houbysoft - QuickShare におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-3488 2012-03-27 18:42 2010-09-22 Show GitHub Exploit DB Packet Storm
250825 5 警告 yellosoft - YelloSoft Pinky におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-3487 2012-03-27 18:42 2010-09-22 Show GitHub Exploit DB Packet Storm
250826 5 警告 SmarterTools Inc. - SmarterMail の FileStorageUpload.ashx におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-3486 2012-03-27 18:42 2010-09-22 Show GitHub Exploit DB Packet Storm
250827 7.5 危険 LightNEasy - LightNEasy の common.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-3485 2012-03-27 18:42 2010-09-22 Show GitHub Exploit DB Packet Storm
250828 7.5 危険 LightNEasy - LightNEasy の common.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-3484 2012-03-27 18:42 2010-09-22 Show GitHub Exploit DB Packet Storm
250829 7.5 危険 bouzouste - Primitive CMS の cms_write.php における管理者権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-3483 2012-03-27 18:42 2010-09-22 Show GitHub Exploit DB Packet Storm
250830 6.5 警告 bouzouste - Primitive CMS の cms_write.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-3482 2012-03-27 18:42 2010-09-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
268751 6.5 MEDIUM
Network 		juniper junos PKId in Juniper Junos OS before 12.1X44-D52, 12.1X46 before 12.1X46-D37, 12.1X47 before 12.1X47-D30, 12.3 before 12.3R12, 12.3X48 before 12.3X48-D20, 13.3 before 13.3R10, 14.1 before 14.1R8, 14.1X53 … CWE-297
 Improper Validation of Certificate with Host Mismatch 		CVE-2016-1280 2024-11-21 11:46 2016-09-9 Show GitHub Exploit DB Packet Storm
268752 7.5 HIGH
Network 		juniper junos Juniper Junos OS before 12.1X46-D45, 12.1X46-D50, 12.1X47 before 12.1X47-D35, 12.3X48 before 12.3X48-D30, 13.3 before 13.3R9-S1, 14.1 before 14.1R7, 14.2 before 14.2R6, 15.1 before 15.1F2-S5, 15.1F4 … CWE-20
 Improper Input Validation  		CVE-2016-1263 2024-11-21 11:46 2016-09-9 Show GitHub Exploit DB Packet Storm
268753 4.4 MEDIUM
Network 		tryton tryton file_open in Tryton before 3.2.17, 3.4.x before 3.4.14, 3.6.x before 3.6.12, 3.8.x before 3.8.8, and 4.x before 4.0.4 allows remote authenticated users with certain permissions to read arbitrary file… CWE-200
Information Exposure 		CVE-2016-1242 2024-11-21 11:46 2016-09-8 Show GitHub Exploit DB Packet Storm
268754 5.3 MEDIUM
Network 		tryton tryton Tryton 3.x before 3.2.17, 3.4.x before 3.4.14, 3.6.x before 3.6.12, 3.8.x before 3.8.8, and 4.x before 4.0.4 allow remote authenticated users to discover user password hashes via unspecified vectors. CWE-200
Information Exposure 		CVE-2016-1241 2024-11-21 11:46 2016-09-8 Show GitHub Exploit DB Packet Storm
268755 7.8 HIGH
Local 		cisco webex_wrf_player_t29 Cisco WebEx Meetings Player T29.10, when WRF file support is enabled, allows remote attackers to execute arbitrary code via a crafted file, aka Bug ID CSCva09375. CWE-20
 Improper Input Validation  		CVE-2016-1464 2024-11-21 11:46 2016-09-4 Show GitHub Exploit DB Packet Storm
268756 5.5 MEDIUM
Local 		cisco webex_wrf_player_t29 Cisco WebEx Meetings Player T29.10, when WRF file support is enabled, allows remote attackers to cause a denial of service (application crash) via a crafted file, aka Bug ID CSCuz80455. CWE-399
 Resource Management Errors 		CVE-2016-1415 2024-11-21 11:46 2016-09-4 Show GitHub Exploit DB Packet Storm
268757 9.8 CRITICAL
Network 		cisco small_business_220_series_smart_plus_switches Cisco Small Business 220 devices with firmware before 1.0.1.1 have a hardcoded SNMP community, which allows remote attackers to read or modify SNMP objects by leveraging knowledge of this community, … CWE-200
Information Exposure 		CVE-2016-1473 2024-11-21 11:46 2016-09-2 Show GitHub Exploit DB Packet Storm
268758 7.5 HIGH
Network 		cisco small_business_220_series_smart_plus_switches The web-based management interface on Cisco Small Business 220 devices with firmware before 1.0.1.1 allows remote attackers to cause a denial of service (interface outage) via a crafted HTTP request,… CWE-20
 Improper Input Validation  		CVE-2016-1472 2024-11-21 11:46 2016-09-2 Show GitHub Exploit DB Packet Storm
268759 6.1 MEDIUM
Network 		cisco small_business_220_series_smart_plus_switches Cross-site scripting (XSS) vulnerability in the web-based management interface on Cisco Small Business 220 devices with firmware before 1.0.1.1 allows remote attackers to inject arbitrary web script … CWE-79
Cross-site Scripting 		CVE-2016-1471 2024-11-21 11:46 2016-09-2 Show GitHub Exploit DB Packet Storm
268760 8.8 HIGH
Network 		cisco small_business_220_series_smart_plus_switches Cross-site request forgery (CSRF) vulnerability in the web-based management interface on Cisco Small Business 220 devices with firmware before 1.0.1.1 allows remote attackers to hijack the authentica… CWE-352
 Origin Validation Error 		CVE-2016-1470 2024-11-21 11:46 2016-09-2 Show GitHub Exploit DB Packet Storm