Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 1, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
251561 7.8 危険 アップル
サイバートラスト株式会社
PNG Development Group
Lunascape
オラクル
VMware
フェンリル株式会社
レッドハット		 - libpng における圧縮された補助チャンクの処理に脆弱性 CWE-399
リソース管理の問題 		CVE-2010-0205 2012-03-27 10:22 2010-03-4 Show GitHub Exploit DB Packet Storm
251562 7.5 危険 クアンタム
デル
IBM		 - 複数のテープライブラリ製品におけるアクセス権を取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2012-1844 2012-03-26 18:12 2012-03-22 Show GitHub Exploit DB Packet Storm
251563 5 警告 クアンタム
デル		 - Quantum Scalar i500 および Dell ML6000 における絶対パストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2012-1841 2012-03-26 18:08 2012-03-22 Show GitHub Exploit DB Packet Storm
251564 5 警告 LG-Nortel - LG-Nortel ELO GS24M に複数の脆弱性 CWE-287
不適切な認証 		CVE-2012-1838 2012-03-26 16:29 2012-03-22 Show GitHub Exploit DB Packet Storm
251565 7.5 危険 Webglimpse - WebGlimpse に OS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2012-1795 2012-03-26 16:24 2012-03-20 Show GitHub Exploit DB Packet Storm
251566 7.5 危険 Pydio - AjaXplorer におけるログインのアクセス権を取得される脆弱性 CWE-287
不適切な認証 		CVE-2012-1840 2012-03-26 16:08 2012-03-22 Show GitHub Exploit DB Packet Storm
251567 7.5 危険 Pydio - AjaXplorer の Get Template 機能におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2012-1839 2012-03-26 16:08 2012-03-22 Show GitHub Exploit DB Packet Storm
251568 5 警告 IBM - IBM Tivoli Endpoint Manager における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2012-1837 2012-03-26 16:07 2012-03-22 Show GitHub Exploit DB Packet Storm
251569 4.3 警告 IBM - IBM Tivoli Endpoint Manager におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-0719 2012-03-26 16:04 2012-03-22 Show GitHub Exploit DB Packet Storm
251570 4.3 警告 ESET
K7 Computing
AVG Technologies
トレンドマイクロ
Ikarus
Norman
ソフォス
マカフィー
Beijing Rising International Software
BitDefender
VirusBlokAda
フォーティネット
カスペルスキー
Emsisoft
Authentium
シマンテック
エフ・セキュア
Jiangmin		 - 複数の製品の Gzip ファイルパーサにおけるマルウェア検知を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-1461 2012-03-26 14:35 2012-03-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
265721 9.8 CRITICAL
Network 		exponentcms exponent_cms Multiple SQL injection vulnerabilities in Exponent CMS before 2.4.0 allow remote attackers to execute arbitrary SQL commands via the (1) id parameter in an activate_address address controller action,… CWE-89
SQL Injection 		CVE-2016-7400 2024-11-21 11:57 2017-02-8 Show GitHub Exploit DB Packet Storm
265722 7.5 HIGH
Network 		libtorrent libtorrent The construct function in puff.cpp in Libtorrent 1.1.0 allows remote torrent trackers to cause a denial of service (segmentation fault and crash) via a crafted GZIP response. CWE-20
 Improper Input Validation  		CVE-2016-7164 2024-11-21 11:57 2017-02-8 Show GitHub Exploit DB Packet Storm
265723 6.1 MEDIUM
Network 		plone plone Cross-site scripting (XSS) vulnerability in the manage_findResult component in the search feature in Zope ZMI in Plone before 4.3.12 and 5.x before 5.0.7 allows remote attackers to inject arbitrary w… CWE-79
Cross-site Scripting 		CVE-2016-7147 2024-11-21 11:57 2017-02-4 Show GitHub Exploit DB Packet Storm
265724 9.8 CRITICAL
Network 		libgd libgd Double free vulnerability in the gdImageWebPtr function in the GD Graphics Library (aka libgd) before 2.2.4 allows remote attackers to have unspecified impact via large width and height values. CWE-415
 Double Free 		CVE-2016-6912 2024-11-21 11:57 2017-01-27 Show GitHub Exploit DB Packet Storm
265725 5.5 MEDIUM
Local 		libgd libgd The dynamicGetbuf function in the GD Graphics Library (aka libgd) before 2.2.4 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted TIFF image. CWE-125
Out-of-bounds Read 		CVE-2016-6911 2024-11-21 11:57 2017-01-27 Show GitHub Exploit DB Packet Storm
265726 5.5 MEDIUM
Local 		libdwarf_project libdwarf The _dwarf_read_loc_section function in dwarf_loc.c in libdwarf 20160613 allows attackers to cause a denial of service (buffer over-read) via a crafted file. CWE-125
Out-of-bounds Read 		CVE-2016-7410 2024-11-21 11:57 2017-01-24 Show GitHub Exploit DB Packet Storm
265727 8.4 HIGH
Local 		owncloud owncloud_desktop_client ownCloud Desktop before 2.2.3 allows local users to execute arbitrary code and possibly gain privileges via a Trojan library in a "special path" in the C: drive. CWE-94
Code Injection 		CVE-2016-7102 2024-11-21 11:57 2017-01-24 Show GitHub Exploit DB Packet Storm
265728 7.5 HIGH
Network 		jwt_project jwt The verify function in Encryption/Symmetric.php in Malcolm Fell jwt before 1.0.3 does not use a timing-safe function for hash comparison, which allows attackers to spoof signatures via a timing attac… CWE-361
 7PK - Time and State 		CVE-2016-7037 2024-11-21 11:57 2017-01-24 Show GitHub Exploit DB Packet Storm
265729 9.8 CRITICAL
Network 		python-jose_project python-jose python-jose before 1.3.2 allows attackers to have unspecified impact by leveraging failure to use a constant time comparison for HMAC keys. CWE-361
 7PK - Time and State 		CVE-2016-7036 2024-11-21 11:57 2017-01-24 Show GitHub Exploit DB Packet Storm
265730 7.5 HIGH
Network 		ffmpeg ffmpeg Heap-based buffer overflow in the decode_block function in libavcodec/exr.c in FFmpeg before 3.1.3 allows remote attackers to cause a denial of service (application crash) via vectors involving tile … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-6920 2024-11-21 11:57 2017-01-24 Show GitHub Exploit DB Packet Storm