Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 22, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251661	7.5	危険	4homepages	-	4images の admin/categories.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-1022	2012-02-10 11:08	2012-02-8	Show	GitHub Exploit DB Packet Storm

251662	4.3	警告	4homepages	-	4images の admin/categories.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-1021	2012-02-10 10:35	2012-02-8	Show	GitHub Exploit DB Packet Storm

251663	4.3	警告	Overseas	-	NexorONE Online Banking の login.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-1020	2012-02-10 10:29	2012-02-8	Show	GitHub Exploit DB Packet Storm

251664	4.3	警告	XWiki	-	XWiki Enterprise におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-1019	2012-02-10 10:16	2012-02-8	Show	GitHub Exploit DB Packet Storm

251665	4.3	警告	D-Mack Media	-	Joomla! 用 D-Mack Media Currency Converter モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-1018	2012-02-10 10:15	2012-02-8	Show	GitHub Exploit DB Packet Storm

251666	7.5	危険	Secure Ideas	-	Basic Analysis and Security Engine の base_qry_main.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-1017	2012-02-10 10:14	2012-02-8	Show	GitHub Exploit DB Packet Storm

251667	4.3	警告	]project-open[	-	Project Open にクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-1027	2012-02-9 18:34	2012-02-6	Show	GitHub Exploit DB Packet Storm

251668	4.3	警告	Sphinx Software	-	Sphinx Software Mobile Web Server におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-1005	2012-02-9 16:52	2012-02-7	Show	GitHub Exploit DB Packet Storm

251669	7.5	危険	Hudong	-	HDWiki の attachement.php における任意のコードを実行される脆弱性	CWE-Other その他	CVE-2011-5077	2012-02-9 16:01	2012-02-8	Show	GitHub Exploit DB Packet Storm

251670	7.5	危険	Hudong	-	HDWiki の model/comment.class.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-5076	2012-02-9 16:00	2012-02-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 22, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
266101	5.5	MEDIUM Local	huawei	hilink_app	The Huawei Hilink App application before 3.19.2 for Android does not validate SSL certificates, which allows local users to have unspecified impact via unknown vectors, aka HWPSIRT-2016-03008.	CWE-310 Cryptographic Issues	CVE-2016-4005	2024-11-21 11:51	2016-06-13	Show	GitHub Exploit DB Packet Storm

266102	9.8	CRITICAL Network	medhost	perioperative_information_management_system	MEDHOST Perioperative Information Management System (aka PIMS or VPIMS) before 2015R1 has hardcoded credentials, which makes it easier for remote attackers to obtain sensitive information via direct …	NVD-CWE-Other	CVE-2016-4328	2024-11-21 11:51	2016-06-10	Show	GitHub Exploit DB Packet Storm

266103	9.8	CRITICAL Network	chef	chef_manage	The Chef Manage (formerly opscode-manage) add-on before 1.12.0 for Chef allows remote attackers to execute arbitrary code via crafted serialized data in a cookie.	NVD-CWE-Other	CVE-2016-4326	2024-11-21 11:51	2016-06-10	Show	GitHub Exploit DB Packet Storm

266104	8.8	HIGH Network	hpe	project_and_portfolio_management_center	HPE Project and Portfolio Management Center (PPM) 9.2x and 9.3x before 9.32.0002 allows remote authenticated users to execute arbitrary commands or obtain sensitive information via unspecified vector…	NVD-CWE-noinfo	CVE-2016-4370	2024-11-21 11:51	2016-06-9	Show	GitHub Exploit DB Packet Storm

266105	8.8	HIGH Network	hp	discovery_and_dependency_mapping_inventory	HPE Discovery and Dependency Mapping Inventory (DDMi) 9.30, 9.31, 9.32, 9.32 update 1, 9.32 update 2, and 9.32 update 3 allows remote authenticated users to execute arbitrary commands via a crafted s…	CWE-284 Improper Access Control	CVE-2016-4369	2024-11-21 11:51	2016-06-9	Show	GitHub Exploit DB Packet Storm

266106	9.8	CRITICAL Network	hp	universal_cmbd_foundation universal_cmbd_configuration_manager universal_discovery	HPE Universal CMDB 10.0 through 10.21, Universal CMDB Configuration Manager 10.0 through 10.21, and Universal Discovery 10.0 through 10.21 allow remote attackers to execute arbitrary commands via a c…	CWE-20 Improper Input Validation	CVE-2016-4368	2024-11-21 11:51	2016-06-8	Show	GitHub Exploit DB Packet Storm

266107	7.5	HIGH Network	hp	universal_cmbd_foundation	The Universal Discovery component in HPE Universal CMDB 10.0, 10.01, 10.10, 10.11, 10.20, and 10.21 allows remote attackers to obtain sensitive information via unspecified vectors.	CWE-200 Information Exposure	CVE-2016-4367	2024-11-21 11:51	2016-06-8	Show	GitHub Exploit DB Packet Storm

266108	9.8	CRITICAL Network	hp	systems_insight_manager	HPE Systems Insight Manager (SIM) before 7.5.1 allows remote attackers to obtain sensitive information, modify data, or cause a denial of service via unspecified vectors.	NVD-CWE-noinfo	CVE-2016-4366	2024-11-21 11:51	2016-06-8	Show	GitHub Exploit DB Packet Storm

266109	7.5	HIGH Network	hp	insight_control_server_deployment	HPE Insight Control server deployment allows remote attackers to obtain sensitive information via unspecified vectors.	NVD-CWE-noinfo	CVE-2016-4365	2024-11-21 11:51	2016-06-8	Show	GitHub Exploit DB Packet Storm

266110	8.4	HIGH Local	hp	insight_control_server_deployment	HPE Insight Control server deployment allows local users to gain privileges via unspecified vectors.	NVD-CWE-noinfo	CVE-2016-4364	2024-11-21 11:51	2016-06-8	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed