Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 1, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
251941 7.5 危険 ColdGen - ColdGen ColdBookmarks の index.cfm における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4915 2012-02-28 10:47 2011-10-8 Show GitHub Exploit DB Packet Storm
251942 7.5 危険 DeltaScripts - PHP Classifieds の tools/phpmailer/class.phpmailer.php における任意の PHP コードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-4914 2012-02-28 10:43 2011-10-8 Show GitHub Exploit DB Packet Storm
251943 4.3 警告 ColdGen - ColdGen ColdUserGroup の search 機能におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-4913 2012-02-28 10:41 2011-10-8 Show GitHub Exploit DB Packet Storm
251944 7.5 危険 Discuz - UCenter Home の shop.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4912 2012-02-28 10:40 2011-10-8 Show GitHub Exploit DB Packet Storm
251945 7.5 危険 Sell@Site - PHP Classifieds Ads の classi/detail.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4911 2012-02-28 10:39 2011-10-8 Show GitHub Exploit DB Packet Storm
251946 7.5 危険 ColdGen - ColdGen ColdCalendar の index.cfm におけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4910 2012-02-28 10:37 2011-10-8 Show GitHub Exploit DB Packet Storm
251947 4.3 警告 Mechbunny - PaysiteReviewCMS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-4909 2012-02-28 10:36 2011-10-8 Show GitHub Exploit DB Packet Storm
251948 7.5 危険 Virtue Netz - Virtue Shopping Mall の detail.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4908 2012-02-28 10:35 2011-10-8 Show GitHub Exploit DB Packet Storm
251949 4.3 警告 Powie - Powie pFile の pfile/kommentar.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1211 2012-02-27 17:12 2012-02-24 Show GitHub Exploit DB Packet Storm
251950 4.3 警告 Apache Software Foundation - Apache HTTP Server の mod_proxy モジュールにおけるイントラネットサーバにリクエストを送信される脆弱性 CWE-20
不適切な入力確認 		CVE-2011-3639 2012-02-27 17:01 2011-10-25 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
265181 7.5 HIGH
Network 		dotcms dotcms In dotCMS 3.2.1, attacker can load captcha once, fill it with correct value and then this correct value is ok for forms with captcha check later. CWE-264
CWE-254
Permissions, Privileges, and Access Controls
 7PK - Security Features 		CVE-2016-8600 2024-11-21 11:59 2016-10-29 Show GitHub Exploit DB Packet Storm
265182 9.8 CRITICAL
Network 		libcsp_project libcsp Buffer overflow in the zmq interface in csp_if_zmqhub.c in the libcsp library v1.4 and earlier allows hostile computers connected via a zmq interface to execute arbitrary code via a long packet. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-8598 2024-11-21 11:59 2016-10-29 Show GitHub Exploit DB Packet Storm
265183 9.8 CRITICAL
Network 		libcsp_project libcsp Buffer overflow in the csp_sfp_recv_fp in csp_sfp.c in the libcsp library v1.4 and earlier allows hostile components with network access to the SFP underlying network layers to execute arbitrary code… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-8597 2024-11-21 11:59 2016-10-29 Show GitHub Exploit DB Packet Storm
265184 9.8 CRITICAL
Network 		libcsp_project libcsp Buffer overflow in the csp_can_process_frame in csp_if_can.c in the libcsp library v1.4 and earlier allows hostile components connected to the canbus to execute arbitrary code via a long csp packet. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-8596 2024-11-21 11:59 2016-10-29 Show GitHub Exploit DB Packet Storm
265185 6.1 MEDIUM
Network 		alienvault unified_security_management
open_source_security_information_and_event_management 		Multiple GET parameters in the vulnerability scan scheduler of AlienVault OSSIM and USM before 5.3.2 are vulnerable to reflected XSS. CWE-79
Cross-site Scripting 		CVE-2016-8583 2024-11-21 11:59 2016-10-29 Show GitHub Exploit DB Packet Storm
265186 9.8 CRITICAL
Network 		alienvault unified_security_management
open_source_security_information_and_event_management 		A vulnerability exists in gauge.php of AlienVault OSSIM and USM before 5.3.2 that allows an attacker to execute an arbitrary SQL query and retrieve database information or read local system files via… CWE-89
SQL Injection 		CVE-2016-8582 2024-11-21 11:59 2016-10-29 Show GitHub Exploit DB Packet Storm
265187 6.1 MEDIUM
Network 		alienvault unified_security_management
open_source_security_information_and_event_management 		A persistent XSS vulnerability exists in the User-Agent header of the login process of AlienVault OSSIM and USM before 5.3.2 that allows an attacker to steal session IDs of logged in users when the c… CWE-79
Cross-site Scripting 		CVE-2016-8581 2024-11-21 11:59 2016-10-29 Show GitHub Exploit DB Packet Storm
265188 9.8 CRITICAL
Network 		alienvault unified_security_management
open_source_security_information_and_event_management 		PHP object injection vulnerabilities exist in multiple widget files in AlienVault OSSIM and USM before 5.3.2. These vulnerabilities allow arbitrary PHP code execution via magic methods in included cl… CWE-284
Improper Access Control 		CVE-2016-8580 2024-11-21 11:59 2016-10-29 Show GitHub Exploit DB Packet Storm
265189 4.0 MEDIUM
Local 		docker2aci_project docker2aci docker2aci <= 0.12.3 has an infinite loop when handling local images with cyclic dependency chain. CWE-20
CWE-399
 Improper Input Validation 
 Resource Management Errors 		CVE-2016-8579 2024-11-21 11:59 2016-10-29 Show GitHub Exploit DB Packet Storm
265190 9.8 CRITICAL
Network 		redislabs redis A buffer overflow in Redis 3.2.x prior to 3.2.4 causes arbitrary code execution when a crafted command is sent. An out of bounds write vulnerability exists in the handling of the client-output-buffer… CWE-787
 Out-of-bounds Write 		CVE-2016-8339 2024-11-21 11:59 2016-10-28 Show GitHub Exploit DB Packet Storm