Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 28, 2026, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251901	2.6	注意	HTC Corporation	-	HTC 製 Android 端末に Wi-Fi 認証情報漏えいの脆弱性	CWE-200 情報漏えい	CVE-2011-4872	2012-02-7 16:21	2012-02-2	Show	GitHub Exploit DB Packet Storm

251902	7.5	危険	Scriptsez.net	-	Scriptsez.net の Ez Album における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-0983	2012-02-7 16:19	2012-02-2	Show	GitHub Exploit DB Packet Storm

251903	7.5	危険	Vastal I-Tech & Co.	-	Vastal I-Tech Agent Zone の search.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-0982	2012-02-7 16:18	2012-02-2	Show	GitHub Exploit DB Packet Storm

251904	5	警告	KYBERNETIKA	-	phpShowtime における任意のディレクトリおよびイメージファイルをリストアップされる脆弱性	CWE-22 パス・トラバーサル	CVE-2012-0981	2012-02-7 16:17	2012-02-2	Show	GitHub Exploit DB Packet Storm

251905	7.5	危険	phux Development	-	phux Download Manager の download.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-0980	2012-02-7 16:16	2012-02-2	Show	GitHub Exploit DB Packet Storm

251906	4.3	警告	TWiki	-	TWiki におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-0979	2012-02-7 16:14	2012-02-2	Show	GitHub Exploit DB Packet Storm

251907	6.8	警告	LuraTech	-	LuraWave JP2 Browser Plug-In におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-0978	2012-02-7 16:13	2012-02-2	Show	GitHub Exploit DB Packet Storm

251908	9.3	危険	LuraTech	-	LuraWave JP2 ActiveX Control におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-0977	2012-02-7 16:12	2012-02-2	Show	GitHub Exploit DB Packet Storm

251909	2.1	注意	SilverStripe	-	SilverStripe の admin/EditForm におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-0976	2012-02-7 16:10	2012-02-2	Show	GitHub Exploit DB Packet Storm

251910	4.3	警告	Clixint Technologies	-	Image Hosting Script DPI の misc.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-0975	2012-02-7 16:00	2012-02-2	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
265291	6.1	MEDIUM Network	open-xchange	open-xchange_appsuite	An issue was discovered in Open-Xchange OX App Suite before 7.8.2-rev8. SVG files can be used as mp3 album covers. In case their XML structure contains script code, that code may get executed when ca…	CWE-79 Cross-site Scripting	CVE-2016-6847	2024-11-21 11:56	2016-12-15	Show	GitHub Exploit DB Packet Storm

265292	6.1	MEDIUM Network	open-xchange	open-xchange_appsuite	An issue was discovered in Open-Xchange OX App Suite before 7.8.2-rev8. Script code within hyperlinks at HTML E-Mails is not getting correctly sanitized when using base64 encoded "data" resources. Th…	CWE-79 Cross-site Scripting	CVE-2016-6845	2024-11-21 11:56	2016-12-15	Show	GitHub Exploit DB Packet Storm

265293	6.1	MEDIUM Network	open-xchange	open-xchange_appsuite	An issue was discovered in Open-Xchange OX App Suite before 7.8.2-rev8. Script code within SVG files is maintained when opening such files "in browser" based on our Mail or Drive app. In case of "a" …	CWE-79 Cross-site Scripting	CVE-2016-6844	2024-11-21 11:56	2016-12-15	Show	GitHub Exploit DB Packet Storm

265294	6.1	MEDIUM Network	open-xchange	open-xchange_appsuite	An issue was discovered in Open-Xchange OX App Suite before 7.8.2-rev8. Setting the user's name to JS code makes that code execute when selecting that user's "Templates" folder from OX Documents sett…	CWE-79 Cross-site Scripting	CVE-2016-6842	2024-11-21 11:56	2016-12-15	Show	GitHub Exploit DB Packet Storm

265295	6.1	MEDIUM Network	open-xchange	open-xchange_appsuite	An issue was discovered in Open-Xchange OX App Suite before 7.8.2-rev8. Script code can be injected to contact names. When adding those contacts to a group, the script code gets executed in the conte…	CWE-79 Cross-site Scripting	CVE-2016-6843	2024-11-21 11:56	2016-12-15	Show	GitHub Exploit DB Packet Storm

265296	7.3	HIGH Network	cisco	ios	A vulnerability in the implementation of X.509 Version 3 for SSH authentication functionality in Cisco IOS and IOS XE Software could allow an unauthenticated, remote attacker to bypass authentication…	CWE-287 Improper Authentication	CVE-2016-6474	2024-11-21 11:56	2016-12-14	Show	GitHub Exploit DB Packet Storm

265297	6.5	MEDIUM Adjacent	cisco	ios	A vulnerability in Cisco IOS on Catalyst Switches and Nexus 9300 Series Switches could allow an unauthenticated, adjacent attacker to cause a Layer 2 network storm. More Information: CSCuu69332, CSCu…	CWE-399 CWE-74 Resource Management Errors Injection	CVE-2016-6473	2024-11-21 11:56	2016-12-14	Show	GitHub Exploit DB Packet Storm

265298	6.5	MEDIUM Network	cisco	firesight_system_software	A vulnerability in the web-based management interface of Cisco Firepower Management Center running FireSIGHT System software could allow an authenticated, remote attacker to view the Remote Storage P…	CWE-200 Information Exposure	CVE-2016-6471	2024-11-21 11:56	2016-12-14	Show	GitHub Exploit DB Packet Storm

265299	7.8	HIGH Local	cisco	hybrid_media_service	A vulnerability in the installation procedure of the Cisco Hybrid Media Service could allow an authenticated, local attacker to elevate privileges to the root level. More Information: CSCvb81344. Kno…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-6470	2024-11-21 11:56	2016-12-14	Show	GitHub Exploit DB Packet Storm

265300	7.5	HIGH Network	cisco	web_security_appliance	A vulnerability in HTTP URL parsing of Cisco AsyncOS for Cisco Web Security Appliance (WSA) could allow an unauthenticated, remote attacker to cause a denial of service (DoS) vulnerability due to the…	CWE-399 Resource Management Errors	CVE-2016-6469	2024-11-21 11:56	2016-12-14	Show	GitHub Exploit DB Packet Storm