Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 20, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251501	4.3	警告	VideoLAN	-	VLC media player におけるサービス運用妨害 (クラッシュ) の脆弱性	CWE-399 リソース管理の問題	CVE-2012-0904	2012-01-25 10:54	2012-01-20	Show	GitHub Exploit DB Packet Storm

251502	4.3	警告	VMware	-	VMware Zimbra Desktop におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-0903	2012-01-25 10:51	2012-01-20	Show	GitHub Exploit DB Packet Storm

251503	5	警告	AirTies	-	AirTies Air 4450 におけるサービス運用妨害 (リブート) の脆弱性	CWE-noinfo 情報不足	CVE-2012-0902	2012-01-25 10:43	2012-01-20	Show	GitHub Exploit DB Packet Storm

251504	4.3	警告	attenzione	-	WordPress 用 YouSayToo auto-publishing プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-0901	2012-01-25 10:39	2012-01-20	Show	GitHub Exploit DB Packet Storm

251505	4.3	警告	Beehive Forum	-	Beehive Forum におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-0900	2012-01-25 10:35	2012-01-20	Show	GitHub Exploit DB Packet Storm

251506	4.3	警告	Annuaire PHP	-	Annuaire PHP におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-0899	2012-01-25 10:32	2012-01-20	Show	GitHub Exploit DB Packet Storm

251507	5	警告	camaleo	-	WordPress 用 myEASYbackup プラグインにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2012-0898	2012-01-25 10:30	2012-01-20	Show	GitHub Exploit DB Packet Storm

251508	5	警告	Tom Braider	-	WordPress 用 Count Per Day モジュールにおける絶対パストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2012-0896	2012-01-25 10:23	2012-01-20	Show	GitHub Exploit DB Packet Storm

251509	4.3	警告	Tom Braider	-	WordPress 用 Count Per Day モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-0895	2012-01-25 10:21	2012-01-20	Show	GitHub Exploit DB Packet Storm

251510	9.3	危険	IBM	-	IBM Lotus Symphony の vclmi.dll における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2012-0192	2012-01-24 16:45	2012-01-23	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 20, 2026, 4:14 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
266221	7.7	HIGH Network	symantec	endpoint_protection_manager	Symantec Endpoint Protection Manager (SEPM) 12.1 before RU6 MP5 allows remote authenticated users to conduct server-side request forgery (SSRF) attacks, and trigger network traffic to arbitrary intra…	NVD-CWE-Other	CVE-2016-3647	2024-11-21 11:50	2016-07-1	Show	GitHub Exploit DB Packet Storm

266222	8.4	HIGH Local	symantec	norton_security protection_engine advanced_threat_protection norton_bootable_removal_tool data_center_security_server protection_for_sharepoint_servers message_gateway_for_service_p…	The AntiVirus Decomposer engine in Symantec Advanced Threat Protection (ATP); Symantec Data Center Security:Server (SDCS:S) 6.x through 6.6 MP1; Symantec Web Gateway; Symantec Endpoint Protection (SE…	CWE-20 Improper Input Validation	CVE-2016-3646	2024-11-21 11:50	2016-07-1	Show	GitHub Exploit DB Packet Storm

266223	9.8	CRITICAL Network	symantec	norton_security protection_engine advanced_threat_protection norton_bootable_removal_tool data_center_security_server protection_for_sharepoint_servers message_gateway_for_service_p…	Integer overflow in the TNEF unpacker in the AntiVirus Decomposer engine in Symantec Advanced Threat Protection (ATP); Symantec Data Center Security:Server (SDCS:S) 6.x through 6.6 MP1; Symantec Web …	CWE-189 Numeric Errors	CVE-2016-3645	2024-11-21 11:50	2016-07-1	Show	GitHub Exploit DB Packet Storm

266224	8.4	HIGH Local	symantec	norton_security protection_engine advanced_threat_protection norton_bootable_removal_tool data_center_security_server protection_for_sharepoint_servers message_gateway_for_service_p…	The AntiVirus Decomposer engine in Symantec Advanced Threat Protection (ATP); Symantec Data Center Security:Server (SDCS:S) 6.x through 6.6 MP1; Symantec Web Gateway; Symantec Endpoint Protection (SE…	CWE-20 Improper Input Validation	CVE-2016-3644	2024-11-21 11:50	2016-07-1	Show	GitHub Exploit DB Packet Storm

266225	7.1	HIGH Local	linux	linux_kernel	The msr_mtrr_valid function in arch/x86/kvm/mtrr.c in the Linux kernel before 4.6.1 supports MSR 0x2f8, which allows guest OS users to read or write to the kvm_arch_vcpu data structure, and consequen…	CWE-284 Improper Access Control	CVE-2016-3713	2024-11-21 11:50	2016-06-27	Show	GitHub Exploit DB Packet Storm

266226	8.1	HIGH Network	linux redhat novell	linux_kernel-rt enterprise_linux_for_real_time enterprise_linux_for_real_time_for_nfv suse_linux_enterprise_real_time_extension	The icmp_check_sysrq function in net/ipv4/icmp.c in the kernel.org projects/rt patches for the Linux kernel, as used in the kernel-rt package before 3.10.0-327.22.1 in Red Hat Enterprise Linux for Re…	CWE-284 Improper Access Control	CVE-2016-3707	2024-11-21 11:50	2016-06-27	Show	GitHub Exploit DB Packet Storm

266227	9.8	CRITICAL Network	solarwinds	virtualization_manager	The RMI service in SolarWinds Virtualization Manager 6.3.1 and earlier allows remote attackers to execute arbitrary commands via a crafted serialized Java object, related to the Apache Commons Collec…	NVD-CWE-Other	CVE-2016-3642	2024-11-21 11:50	2016-06-18	Show	GitHub Exploit DB Packet Storm

266228	5.3	MEDIUM Network	f5	big-ip_access_policy_manager big-ip_edge_gateway	Open redirect vulnerability in F5 BIG-IP APM 11.2.1, 11.4.x, 11.5.x, and 11.6.x before 11.6.0 HF6 and Edge Gateway 11.2.1, when using multi-domain single sign-on (SSO), allows remote attackers to red…	NVD-CWE-Other	CVE-2016-3687	2024-11-21 11:50	2016-06-17	Show	GitHub Exploit DB Packet Storm

266229	8.1	HIGH Network	redhat libndp debian canonical	enterprise_linux_desktop enterprise_linux_server_aus enterprise_linux_workstation enterprise_linux_server enterprise_linux_hpc_node enterprise_linux_server_eus enterprise_linux_hpc_…	libndp before 1.6, as used in NetworkManager, does not properly validate the origin of Neighbor Discovery Protocol (NDP) messages, which allows remote attackers to conduct man-in-the-middle attacks o…	CWE-284 Improper Access Control	CVE-2016-3698	2024-11-21 11:50	2016-06-14	Show	GitHub Exploit DB Packet Storm

266230	6.5	MEDIUM Network	huawei	wear_app hilink_app	The Huawei Wear App application before 15.0.0.307 for Android does not validate SSL certificates, which allows local users to have unspecified impact via unknown vectors, aka HWPSIRT-2016-03008.	CWE-254 CWE-345 7PK - Security Features Insufficient Verification of Data Authenticity	CVE-2016-3677	2024-11-21 11:50	2016-06-13	Show	GitHub Exploit DB Packet Storm