Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 5, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
251501 6.8 警告 Vtiger - vtiger CRM の return_application_language 関数におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-3910 2012-03-27 18:42 2010-11-26 Show GitHub Exploit DB Packet Storm
251502 6.8 警告 FFmpeg
mplayerhq		 - MPlayer などの製品で使用される FFmpeg におけるサービス運用妨害 (DoS) 状態の脆弱性 CWE-119
バッファエラー 		CVE-2010-3908 2012-03-27 18:42 2011-05-20 Show GitHub Exploit DB Packet Storm
251503 6 警告 Vtiger - vtiger CRM の config.template.php における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-3909 2012-03-27 18:42 2010-11-26 Show GitHub Exploit DB Packet Storm
251504 9.3 危険 VideoLAN - VideoLAN VLC Media Player の Real demuxer プラグインにおける整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2010-3907 2012-03-27 18:42 2010-12-14 Show GitHub Exploit DB Packet Storm
251505 7.5 危険 Eucalyptus Systems - Eucalyptus の管理者のインターフェース のパスワードリセット機能における権限を取得される脆弱性 CWE-287
不適切な認証 		CVE-2010-3905 2012-03-27 18:42 2010-12-16 Show GitHub Exploit DB Packet Storm
251506 5 警告 infradead - OpenConnect におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2010-3903 2012-03-27 18:42 2010-10-14 Show GitHub Exploit DB Packet Storm
251507 5 警告 infradead - OpenConnect における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2010-3902 2012-03-27 18:42 2010-10-14 Show GitHub Exploit DB Packet Storm
251508 6.4 警告 infradead - OpenConnect における任意の AnyConnect SSL VPN サーバを偽装される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-3901 2012-03-27 18:42 2010-10-14 Show GitHub Exploit DB Packet Storm
251509 5.8 警告 christian dywan - Midori における任意の HTTPS Web サイトになりすまされる脆弱性 CWE-Other
その他 		CVE-2010-3900 2012-03-27 18:42 2010-10-14 Show GitHub Exploit DB Packet Storm
251510 5 警告 IBM - IBM OmniFind におけるサービス運用妨害 (DoS) 状態となる脆弱性 CWE-399
リソース管理の問題 		CVE-2010-3899 2012-03-27 18:42 2010-11-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
265451 8.1 HIGH
Network 		ibm rational_rhapsody_design_manager IBM Rhapsody DM 4.0, 5.0 and 6.0 is vulnerable to a denial of service, caused by an XML External Entity Injection (XXE) error when processing XML data. A remote attacker could exploit this vulnerabil… CWE-611
XXE 		CVE-2016-8974 2024-11-21 12:00 2017-02-24 Show GitHub Exploit DB Packet Storm
265452 6.5 MEDIUM
Network 		ibm websphere_mq IBM WebSphere MQ 8.0 could allow an authenticated user with access to the queue manager to bring down MQ channels using specially crafted HTTP requests. IBM Reference #: 1998648. CWE-284
Improper Access Control 		CVE-2016-8986 2024-11-21 12:00 2017-02-23 Show GitHub Exploit DB Packet Storm
265453 6.5 MEDIUM
Network 		ibm websphere_mq IBM WebSphere MQ 8.0 could allow an authenticated user with access to the queue manager and queue, to deny service to other channels running under the same process. IBM Reference #: 1998649. CWE-284
Improper Access Control 		CVE-2016-8915 2024-11-21 12:00 2017-02-23 Show GitHub Exploit DB Packet Storm
265454 9.8 CRITICAL
Network 		aerospike database_server An exploitable out-of-bounds indexing vulnerability exists within the RW fabric message particle type of Aerospike Database Server 3.10.0.3. A specially crafted packet can cause the server to fetch a… CWE-129
 Improper Validation of Array Index 		CVE-2016-9053 2024-11-21 12:00 2017-02-22 Show GitHub Exploit DB Packet Storm
265455 9.8 CRITICAL
Network 		aerospike database_server An exploitable out-of-bounds write vulnerability exists in the batch transaction field parsing functionality of Aerospike Database Server 3.10.0.3. A specially crafted packet can cause an out-of-boun… CWE-787
 Out-of-bounds Write 		CVE-2016-9051 2024-11-21 12:00 2017-02-22 Show GitHub Exploit DB Packet Storm
265456 7.5 HIGH
Network 		aerospike database_server An exploitable denial-of-service vulnerability exists in the fabric-worker component of Aerospike Database Server 3.10.0.3. A specially crafted packet can cause the server process to dereference a nu… CWE-476
 NULL Pointer Dereference 		CVE-2016-9049 2024-11-21 12:00 2017-02-22 Show GitHub Exploit DB Packet Storm
265457 5.4 MEDIUM
Network 		trendmicro interscan_web_security_virtual_appliance Multiple stored Cross-Site-Scripting (XSS) vulnerabilities in com.trend.iwss.gui.servlet.updateaccountadministration in Trend Micro InterScan Web Security Virtual Appliance (IWSVA) version 6.5-SP2_Bu… CWE-79
Cross-site Scripting 		CVE-2016-9316 2024-11-21 12:00 2017-02-21 Show GitHub Exploit DB Packet Storm
265458 8.8 HIGH
Network 		trendmicro interscan_web_security_virtual_appliance Privilege Escalation Vulnerability in com.trend.iwss.gui.servlet.updateaccountadministration in Trend Micro InterScan Web Security Virtual Appliance (IWSVA) version 6.5-SP2_Build_Linux_1707 and earli… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-9315 2024-11-21 12:00 2017-02-21 Show GitHub Exploit DB Packet Storm
265459 7.8 HIGH
Local 		trendmicro interscan_web_security_virtual_appliance Sensitive Information Disclosure in com.trend.iwss.gui.servlet.ConfigBackup in Trend Micro InterScan Web Security Virtual Appliance (IWSVA) version 6.5-SP2_Build_Linux_1707 and earlier allows authent… CWE-200
Information Exposure 		CVE-2016-9314 2024-11-21 12:00 2017-02-21 Show GitHub Exploit DB Packet Storm
265460 9.9 CRITICAL
Network 		trendmicro interscan_web_security_virtual_appliance Remote Command Execution in com.trend.iwss.gui.servlet.ManagePatches in Trend Micro Interscan Web Security Virtual Appliance (IWSVA) version 6.5-SP2_Build_Linux_1707 and earlier allows authenticated,… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-9269 2024-11-21 12:00 2017-02-21 Show GitHub Exploit DB Packet Storm