Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 26, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
250851 4.3 警告 Horde - Horde Gollem の view.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-3447 2012-03-27 18:42 2011-04-4 Show GitHub Exploit DB Packet Storm
250852 7.5 危険 fribidi - PyFriBidi で使用される GNU FriBidi の log2vis_utf8 関数におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-3444 2012-03-27 18:42 2011-01-10 Show GitHub Exploit DB Packet Storm
250853 7.5 危険 moinejf - abcm2ps における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-3441 2012-03-27 18:42 2011-02-18 Show GitHub Exploit DB Packet Storm
250854 1.9 注意 kernel.org - Linux-PAM の privilege-dropping 実装における重要情報を取得される脆弱性 CWE-DesignError
CVE-2010-3431 2012-03-27 18:42 2011-01-24 Show GitHub Exploit DB Packet Storm
250855 4.7 警告 kernel.org - Linux-PAM の privilege-dropping 実装における重要情報を取得される脆弱性 CWE-DesignError
CVE-2010-3430 2012-03-27 18:42 2011-01-24 Show GitHub Exploit DB Packet Storm
250856 7.5 危険 Symphony CMS - Symphony CMS の lib/toolkit/events/event.section.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-3458 2012-03-27 18:42 2010-09-17 Show GitHub Exploit DB Packet Storm
250857 4.3 警告 Symphony CMS - Symphony CMS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-3457 2012-03-27 18:42 2010-09-17 Show GitHub Exploit DB Packet Storm
250858 5 警告 energyscripts - ES Simple Download の download.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-3456 2012-03-27 18:42 2010-09-17 Show GitHub Exploit DB Packet Storm
250859 4.3 警告 ATutor - AChecker の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-3455 2012-03-27 18:42 2010-09-17 Show GitHub Exploit DB Packet Storm
250860 6.8 警告 FFmpeg
mplayerhq		 - MPlayer などの製品で使用される FFmpeg の flicvideo.c における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-3429 2012-03-27 18:42 2010-09-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
269521 9.8 CRITICAL
Network 		adobe acrobat
acrobat_dc
acrobat_reader_dc
reader 		Use-after-free vulnerability in Adobe Reader and Acrobat before 11.0.16, Acrobat and Acrobat Reader DC Classic before 15.006.30172, and Acrobat and Acrobat Reader DC Continuous before 15.016.20039 on… NVD-CWE-Other
CVE-2016-1045 2024-11-21 11:45 2016-05-11 Show GitHub Exploit DB Packet Storm
269522 9.8 CRITICAL
Network 		adobe acrobat
acrobat_dc
acrobat_reader_dc
reader 		Adobe Reader and Acrobat before 11.0.16, Acrobat and Acrobat Reader DC Classic before 15.006.30172, and Acrobat and Acrobat Reader DC Continuous before 15.016.20039 on Windows and OS X allow attacker… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-1037 2024-11-21 11:45 2016-05-11 Show GitHub Exploit DB Packet Storm
269523 8.8 HIGH
Network 		lockon ec-cube Cross-site request forgery (CSRF) vulnerability in LOCKON EC-CUBE 3.0.0 through 3.0.9 allows remote attackers to hijack the authentication of administrators. CWE-352
 Origin Validation Error 		CVE-2016-1201 2024-11-21 11:45 2016-04-30 Show GitHub Exploit DB Packet Storm
269524 6.3 MEDIUM
Network 		lockon ec-cube The management screen in LOCKON EC-CUBE 3.0.7 through 3.0.9 allows remote authenticated users to bypass intended access restrictions via unspecified vectors, a different vulnerability than CVE-2016-1… CWE-284
Improper Access Control 		CVE-2016-1200 2024-11-21 11:45 2016-04-30 Show GitHub Exploit DB Packet Storm
269525 5.3 MEDIUM
Network 		lockon ec-cube The login page in the management screen in LOCKON EC-CUBE 3.0.0 through 3.0.9 allows remote attackers to bypass intended IP address restrictions via unspecified vectors, a different vulnerability tha… CWE-200
Information Exposure 		CVE-2016-1199 2024-11-21 11:45 2016-04-30 Show GitHub Exploit DB Packet Storm
269526 8.8 HIGH
Network 		adobe acrobat
acrobat_dc
acrobat_reader
acrobat_reader_dc 		Double free vulnerability in Adobe Reader and Acrobat before 11.0.14, Acrobat and Acrobat Reader DC Classic before 15.006.30119, and Acrobat and Acrobat Reader DC Continuous before 15.010.20056 on Wi… NVD-CWE-Other
CVE-2016-1111 2024-11-21 11:45 2016-04-30 Show GitHub Exploit DB Packet Storm
269527 6.1 MEDIUM
Network 		shiro8 category_freearea_addition
itemdetail_freearea_addition 		Cross-site scripting (XSS) vulnerability in the shiro8 (1) category_freearea_ addition_plugin plugin 1.0 and (2) itemdetail_freearea_ addition_plugin plugin 1.0 for EC-CUBE allows remote attackers to… CWE-79
Cross-site Scripting 		CVE-2016-1205 2024-11-21 11:45 2016-04-28 Show GitHub Exploit DB Packet Storm
269528 7.8 HIGH
Local 		atom electron Untrusted search path vulnerability in Atom Electron before 0.33.5 allows local users to gain privileges via a Trojan horse Node.js module in a parent directory of a directory named on a require line. NVD-CWE-Other
CVE-2016-1202 2024-11-21 11:45 2016-04-26 Show GitHub Exploit DB Packet Storm
269529 2.5 LOW
Local 		cybozu kintone The Cybozu kintone mobile application 1.x before 1.0.6 for Android allows attackers to discover an authentication token via a crafted application. CWE-200
Information Exposure 		CVE-2016-1185 2024-11-21 11:45 2016-04-26 Show GitHub Exploit DB Packet Storm
269530 6.1 MEDIUM
Network 		adobe analytics_appmeasurement_for_flash_library Cross-site scripting (XSS) vulnerability in Adobe Analytics AppMeasurement for Flash Library before 4.0.1, when debugTracking is enabled, allows remote attackers to inject arbitrary web script or HTM… CWE-79
Cross-site Scripting 		CVE-2016-1036 2024-11-21 11:45 2016-04-23 Show GitHub Exploit DB Packet Storm