Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 18, 2026, 4:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251851	7.5	危険	ut-files	-	UTStats の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-5009	2011-12-9 14:12	2011-11-2	Show	GitHub Exploit DB Packet Storm

251852	4.3	警告	FullSite Pty Ltd	-	SchoolMation におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-5010	2011-12-9 14:10	2011-11-2	Show	GitHub Exploit DB Packet Storm

251853	7.5	危険	FullSite Pty Ltd	-	SchoolMation における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-5011	2011-12-9 14:10	2011-11-2	Show	GitHub Exploit DB Packet Storm

251854	7.5	危険	David Noguera Gutierrez	-	DaLogin における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-5012	2011-12-9 14:09	2011-11-2	Show	GitHub Exploit DB Packet Storm

251855	7.5	危険	McKenzie Creations	-	Mckenzie Creations Virtual Real Estate Manager における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-5013	2011-12-9 14:04	2011-11-2	Show	GitHub Exploit DB Packet Storm

251856	7.5	危険	ELITE　LADDAERS	-	Elite Gaming Ladders における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-5014	2011-12-9 14:03	2011-11-2	Show	GitHub Exploit DB Packet Storm

251857	7.5	危険	2daybiz	-	2daybiz Network Community Script における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-5015	2011-12-9 14:00	2011-11-2	Show	GitHub Exploit DB Packet Storm

251858	7.5	危険	ELITE　LADDAERS	-	Elite Gaming Ladders における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-5016	2011-12-9 14:00	2011-11-2	Show	GitHub Exploit DB Packet Storm

251859	7.5	危険	ELITE　LADDAERS	-	Elite Gaming Ladders における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-5017	2011-12-9 13:59	2011-11-2	Show	GitHub Exploit DB Packet Storm

251860	4.3	警告	2daybiz	-	2daybiz Online Classified Script におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-5018	2011-12-9 13:59	2011-11-2	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
266121	9.1	CRITICAL Network	synacor	zimbra_collaboration_suite	Zimbra Collaboration before 8.7.0 allows remote attackers to conduct deserialization attacks via unspecified vectors, aka bug 102276.	CWE-502 Deserialization of Untrusted Data	CVE-2016-3415	2024-11-21 11:49	2017-01-19	Show	GitHub Exploit DB Packet Storm

266122	6.5	MEDIUM Network	synacor	zimbra_collaboration_suite	Unspecified vulnerability in Zimbra Collaboration before 8.6.0 Patch 7 allows remote authenticated users to affect availability via unknown vectors, aka bug 102029.	NVD-CWE-noinfo	CVE-2016-3414	2024-11-21 11:49	2017-01-19	Show	GitHub Exploit DB Packet Storm

266123	7.5	HIGH Network	synacor	zimbra_collaboration_suite	Unspecified vulnerability in Zimbra Collaboration before 8.7.0 allows remote attackers to affect integrity via unknown vectors, aka bug 103996.	NVD-CWE-noinfo	CVE-2016-3413	2024-11-21 11:49	2017-01-19	Show	GitHub Exploit DB Packet Storm

266124	6.1	MEDIUM Network	synacor	zimbra_collaboration_suite	Multiple cross-site scripting (XSS) vulnerabilities in Zimbra Collaboration before 8.7.0 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka bugs 103997, 104413…	CWE-79 Cross-site Scripting	CVE-2016-3412	2024-11-21 11:49	2017-01-19	Show	GitHub Exploit DB Packet Storm

266125	6.1	MEDIUM Network	synacor	zimbra_collaboration_suite	Cross-site scripting (XSS) vulnerability in Zimbra Collaboration before 8.7.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka bug 103609.	CWE-79 Cross-site Scripting	CVE-2016-3411	2024-11-21 11:49	2017-01-19	Show	GitHub Exploit DB Packet Storm

266126	6.1	MEDIUM Network	synacor	zimbra_collaboration_suite	Multiple cross-site scripting (XSS) vulnerabilities in Zimbra Collaboration before 8.7.0 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka bugs 103956, 103995…	CWE-79 Cross-site Scripting	CVE-2016-3410	2024-11-21 11:49	2017-01-19	Show	GitHub Exploit DB Packet Storm

266127	6.1	MEDIUM Network	synacor	zimbra_collaboration_suite	Cross-site scripting (XSS) vulnerability in Zimbra Collaboration before 8.7.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka bug 102637.	CWE-79 Cross-site Scripting	CVE-2016-3409	2024-11-21 11:49	2017-01-19	Show	GitHub Exploit DB Packet Storm

266128	6.1	MEDIUM Network	synacor	zimbra_collaboration_suite	Cross-site scripting (XSS) vulnerability in Zimbra Collaboration before 8.7.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka bug 101813.	CWE-79 Cross-site Scripting	CVE-2016-3408	2024-11-21 11:49	2017-01-19	Show	GitHub Exploit DB Packet Storm

266129	6.1	MEDIUM Network	synacor	zimbra_collaboration_suite	Multiple cross-site scripting (XSS) vulnerabilities in Zimbra Collaboration before 8.7.0 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka bugs 104222, 104910…	CWE-79 Cross-site Scripting	CVE-2016-3407	2024-11-21 11:49	2017-01-19	Show	GitHub Exploit DB Packet Storm

266130	8.8	HIGH Network	synacor	zimbra_collaboration_suite	Multiple cross-site request forgery (CSRF) vulnerabilities in Zimbra Collaboration before 8.7.0 allow remote attackers to hijack the authentication of unspecified victims via vectors involving (1) th…	CWE-352 Origin Validation Error	CVE-2016-3406	2024-11-21 11:49	2017-01-19	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed