Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251941	5	警告	Mozilla Foundation	-	複数の Mozilla 製品における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2011-3670	2012-02-3 16:22	2012-01-31	Show	GitHub Exploit DB Packet Storm

251942	7.5	危険	Novell	-	Novell Open Enterprise Server 2 の GetDriverSettings 関数におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-3173	2012-02-3 16:11	2011-11-1	Show	GitHub Exploit DB Packet Storm

251943	4.3	警告	Earl Miles	-	Drupal 用 Panels モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-0914	2012-02-2 16:59	2012-01-24	Show	GitHub Exploit DB Packet Storm

251944	7.2	危険	Todd C. Miller	-	Sudo の sudo_debug 関数における任意のコードを実行される脆弱性	CWE-134 書式文字列の問題	CVE-2012-0809	2012-02-2 14:18	2012-02-1	Show	GitHub Exploit DB Packet Storm

251945	5	警告	Samba Project	-	Samba におけるサービス運用妨害 (メモリおよび CPU 資源の消費) の脆弱性	CWE-200 情報漏えい	CVE-2012-0817	2012-02-1 16:29	2012-01-29	Show	GitHub Exploit DB Packet Storm

251946	4.9	警告	KVM	-	KVM の arch/x86/kvm/i8254.c におけるサービス運用妨害 (NULL ポインタデリファレンス) の脆弱性	CWE-noinfo 情報不足	CVE-2011-4622	2012-02-1 16:28	2012-01-27	Show	GitHub Exploit DB Packet Storm

251947	7.5	危険	レッドハット	-	Red Hat Linux 用の JBoss Enterprise Application Platform におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-4608	2012-02-1 16:27	2012-01-18	Show	GitHub Exploit DB Packet Storm

251948	5.8	警告	Kay Framework OpenID レッドハット	-	OpenID4Java の message/ax/AxMessage.java における AX 情報を変更される脆弱性	CWE-20 不適切な入力確認	CVE-2011-4314	2012-02-1 16:26	2011-05-5	Show	GitHub Exploit DB Packet Storm

251949	9.3	危険	Google	-	Android におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-3874	2012-02-1 16:24	2011-11-9	Show	GitHub Exploit DB Packet Storm

251950	7.5	危険	Kerry Thompson drusus	-	Logsurfer および Logsurfer+ におけるメモリ二重解放の脆弱性	CWE-399 リソース管理の問題	CVE-2011-3626	2012-02-1 16:24	2012-01-27	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
265651	4.9	MEDIUM Network	oracle canonical	mysql ubuntu_linux	Unspecified vulnerability in Oracle MySQL 5.6.30 and earlier and 5.7.12 and earlier allows remote administrators to affect availability via vectors related to Server: Privileges.	NVD-CWE-noinfo	CVE-2016-5439	2024-11-21 11:54	2016-07-21	Show	GitHub Exploit DB Packet Storm

265652	4.9	MEDIUM Network	oracle	mysql	Unspecified vulnerability in Oracle MySQL 5.7.12 and earlier allows remote administrators to affect availability via vectors related to Server: Log.	NVD-CWE-noinfo	CVE-2016-5437	2024-11-21 11:54	2016-07-21	Show	GitHub Exploit DB Packet Storm

265653	4.9	MEDIUM Network	oracle	mysql	Unspecified vulnerability in Oracle MySQL 5.7.12 and earlier allows remote administrators to affect availability via vectors related to Server: InnoDB.	NVD-CWE-noinfo	CVE-2016-5436	2024-11-21 11:54	2016-07-21	Show	GitHub Exploit DB Packet Storm

265654	5.9	MEDIUM Network	misys	fusioncapital_opics_plus	Misys FusionCapital Opics Plus does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to obtain sensitive information via a crafted certificate.	NVD-CWE-Other	CVE-2016-5655	2024-11-21 11:54	2016-07-20	Show	GitHub Exploit DB Packet Storm

265655	7.5	HIGH Network	misys	fusioncapital_opics_plus	Misys FusionCapital Opics Plus allows remote authenticated users to gain privileges via a man-in-the-middle attack that modifies the xmlMessageOut parameter.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-5654	2024-11-21 11:54	2016-07-20	Show	GitHub Exploit DB Packet Storm

265656	6.5	MEDIUM Network	misys	fusioncapital_opics_plus	Multiple SQL injection vulnerabilities in Misys FusionCapital Opics Plus allow remote authenticated users to execute arbitrary SQL commands via the (1) ID or (2) Branch parameter.	CWE-89 SQL Injection	CVE-2016-5653	2024-11-21 11:54	2016-07-20	Show	GitHub Exploit DB Packet Storm

265657	8.1	HIGH Network	redhat hp oracle apache	enterprise_linux_desktop enterprise_linux_server_aus enterprise_linux_workstation enterprise_linux_server_tus enterprise_linux_server enterprise_linux_hpc_node enterprise_linux_serv…	Apache Tomcat 7.x through 7.0.70 and 8.x through 8.5.4, when the CGI Servlet is enabled, follows RFC 3875 section 4.1.18 and therefore does not protect applications from the presence of untrusted cli…	CWE-284 Improper Access Control	CVE-2016-5388	2024-11-21 11:54	2016-07-19	Show	GitHub Exploit DB Packet Storm

265658	8.1	HIGH Network	apache hp oracle fedoraproject redhat debian canonical opensuse	http_server system_management_homepage enterprise_manager_ops_center solaris linux communications_user_data_repository fedora jboss_web_server jboss_enterprise_web_server j…	The Apache HTTP Server through 2.4.23 follows RFC 3875 section 4.1.18 and therefore does not protect applications from the presence of untrusted client data in the HTTP_PROXY environment variable, wh…	NVD-CWE-noinfo	CVE-2016-5387	2024-11-21 11:54	2016-07-19	Show	GitHub Exploit DB Packet Storm

265659	8.1	HIGH Network	fedoraproject oracle redhat golang	fedora linux enterprise_linux_server_aus enterprise_linux_server enterprise_linux_server_eus go	The net/http package in Go through 1.6 does not attempt to address RFC 3875 section 4.1.18 namespace conflicts and therefore does not protect CGI applications from the presence of untrusted client da…	CWE-284 Improper Access Control	CVE-2016-5386	2024-11-21 11:54	2016-07-19	Show	GitHub Exploit DB Packet Storm

265660	8.1	HIGH Network	oracle fedoraproject hp php redhat debian opensuse drupal	enterprise_manager_ops_center communications_user_data_repository linux fedora storeever_msl6480_tape_library_firmware system_management_homepage php enterprise_linux_desktop …	PHP through 7.0.8 does not attempt to address RFC 3875 section 4.1.18 namespace conflicts and therefore does not protect applications from the presence of untrusted client data in the HTTP_PROXY envi…	CWE-601 Open Redirect	CVE-2016-5385	2024-11-21 11:54	2016-07-19	Show	GitHub Exploit DB Packet Storm