Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 2, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
251011 7.5 危険 wsnlinks - WSN Links の search.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4006 2012-03-27 18:42 2010-11-3 Show GitHub Exploit DB Packet Storm
251012 6.9 警告 GNOME Project - GNOME Tomboy の tomboy スクリプトにおける権限を取得される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-4005 2012-03-27 18:42 2010-11-5 Show GitHub Exploit DB Packet Storm
251013 6.9 警告 GNOME Project - GNOME Shell の gnome-shell における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-4000 2012-03-27 18:42 2010-11-5 Show GitHub Exploit DB Packet Storm
251014 6.9 警告 gnucash - GnuCash の gnc-test-env における権限を取得される脆弱性 CWE-DesignError
CVE-2010-3999 2012-03-27 18:42 2010-11-5 Show GitHub Exploit DB Packet Storm
251015 6.9 警告 banshee-project - Banshee の banshee-1 スクリプトにおける権限を取得される脆弱性 CWE-DesignError
CVE-2010-3998 2012-03-27 18:42 2010-11-5 Show GitHub Exploit DB Packet Storm
251016 6.9 警告 cstr - CSTR Festival の festival_server における権限を取得される脆弱性 CWE-DesignError
CVE-2010-3996 2012-03-27 18:42 2010-11-5 Show GitHub Exploit DB Packet Storm
251017 4.3 警告 ヒューレット・パッカード - HP VCRM におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-3994 2012-03-27 18:42 2010-10-25 Show GitHub Exploit DB Packet Storm
251018 6.4 警告 ヒューレット・パッカード - HP Insight Control Server Migration における重要な情報を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2010-3993 2012-03-27 18:42 2010-10-25 Show GitHub Exploit DB Packet Storm
251019 9 危険 ヒューレット・パッカード - HP Insight Control Server Migration における権限を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2010-3992 2012-03-27 18:42 2010-10-25 Show GitHub Exploit DB Packet Storm
251020 10 危険 Novell - SUSE Linux Enterprise の supportconfig スクリプトにおける脆弱性 CWE-255
証明書・パスワード管理 		CVE-2010-3912 2012-03-27 18:42 2011-01-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
270121 7.5 HIGH
Network 		squid-cache squid Squid 3.x before 3.5.15 and 4.x before 4.0.7 does not properly append data to String objects, which allows remote servers to cause a denial of service (assertion failure and daemon exit) via a long s… CWE-20
 Improper Input Validation  		CVE-2016-2569 2024-11-21 11:48 2016-02-27 Show GitHub Exploit DB Packet Storm
270122 7.8 HIGH
Local 		flexera installshield Untrusted search path vulnerability in Flexera InstallShield through 2015 SP1 allows local users to gain privileges via a Trojan horse DLL in the current working directory of a setup-launcher executa… NVD-CWE-Other
CVE-2016-2542 2024-11-21 11:48 2016-02-24 Show GitHub Exploit DB Packet Storm
270123 7.5 HIGH
Network 		is_my_json_valid_project is_my_json_valid The is-my-json-valid package before 2.12.4 for Node.js has an incorrect exports['utc-millisec'] regular expression, which allows remote attackers to cause a denial of service (blocked event loop) via… CWE-20
 Improper Input Validation  		CVE-2016-2537 2024-11-21 11:48 2016-02-23 Show GitHub Exploit DB Packet Storm
270124 8.8 HIGH
Network 		sap
google 		3d_visual_enterprise_viewer
sketchup 		Multiple use-after-free vulnerabilities in SAP 3D Visual Enterprise Viewer allow remote attackers to execute arbitrary code via a crafted SketchUp document. NOTE: the primary affected product may be… CWE-399
 Resource Management Errors 		CVE-2016-2536 2024-11-21 11:48 2016-02-23 Show GitHub Exploit DB Packet Storm
270125 5.9 MEDIUM
Network 		fedoraproject
digium 		fedora
asterisk
certified_asterisk 		chan_sip in Asterisk Open Source 1.8.x, 11.x before 11.21.1, 12.x, and 13.x before 13.7.1 and Certified Asterisk 1.8.28, 11.6 before 11.6-cert12, and 13.1 before 13.1-cert3, when the timert1 sip.conf… CWE-191
 Integer Underflow (Wrap or Wraparound) 		CVE-2016-2316 2024-11-21 11:48 2016-02-23 Show GitHub Exploit DB Packet Storm
270126 6.5 MEDIUM
Network 		digium asterisk
certified_asterisk 		Asterisk Open Source 1.8.x, 11.x before 11.21.1, 12.x, and 13.x before 13.7.1 and Certified Asterisk 1.8.28, 11.6 before 11.6-cert12, and 13.1 before 13.1-cert3 allow remote authenticated users to ca… NVD-CWE-Other
CVE-2016-2232 2024-11-21 11:48 2016-02-23 Show GitHub Exploit DB Packet Storm
270127 9.8 CRITICAL
Network 		advantech vesp211-eu_firmware
vesp211-232_firmware 		The web interface on Advantech/B+B SmartWorx VESP211-EU devices with firmware 1.7.2 and VESP211-232 devices with firmware 1.5.1 and 1.7.2 relies on the client to implement access control, which allow… CWE-284
Improper Access Control 		CVE-2016-2275 2024-11-21 11:48 2016-02-21 Show GitHub Exploit DB Packet Storm
270128 5.5 MEDIUM
Local 		xen xen VMX in Xen 4.6.x and earlier, when using an Intel or Cyrix CPU, allows local HVM guest users to cause a denial of service (guest crash) via vectors related to a non-canonical RIP. NVD-CWE-Other
CVE-2016-2271 2024-11-21 11:48 2016-02-20 Show GitHub Exploit DB Packet Storm
270129 6.8 MEDIUM
Network 		debian
fedoraproject
xen
oracle 		debian_linux
fedora
xen
vm_server 		Xen 4.6.x and earlier allows local guest administrators to cause a denial of service (host reboot) via vectors related to multiple mappings of MMIO pages with different cachability settings. CWE-20
 Improper Input Validation  		CVE-2016-2270 2024-11-21 11:48 2016-02-20 Show GitHub Exploit DB Packet Storm
270130 5.3 MEDIUM
Adjacent 		belden hirschmann_firmware
hirschmann_l2b 		The password-sync feature on Belden Hirschmann Classic Platform switches L2B before 05.3.07 and L2E, L2P, L3E, and L3P before 09.0.06 sets an SNMP community to the same string as the administrator pa… CWE-200
Information Exposure 		CVE-2016-2509 2024-11-21 11:48 2016-02-19 Show GitHub Exploit DB Packet Storm