Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 19, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251981	7.5	危険	Vtiger	-	vTiger CRM の Calendar モジュールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-4559	2011-11-30 16:22	2011-11-28	Show	GitHub Exploit DB Packet Storm

251982	4.3	警告	Contao	-	Contao におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-4335	2011-11-29 16:28	2011-11-28	Show	GitHub Exploit DB Packet Storm

251983	4.3	警告	Dolibarr ERP & CRM	-	Dolibarr におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-4329	2011-11-29 16:27	2011-11-8	Show	GitHub Exploit DB Packet Storm

251984	4.3	警告	Ruby on Rails project	-	Ruby on Rails におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-4319	2011-11-29 16:26	2011-11-28	Show	GitHub Exploit DB Packet Storm

251985	4.3	警告	Combodo	-	Combodo iTop におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-4275	2011-11-29 16:23	2011-11-26	Show	GitHub Exploit DB Packet Storm

251986	9.3	危険	SunPlus Electronics	-	DVR Remote ActiveX コントロールの DVRemoteAx.ax における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2011-3828	2011-11-29 16:22	2011-11-26	Show	GitHub Exploit DB Packet Storm

251987	6.8	警告	IBM	-	IBM TS3100 および TS3200 テープ・ライブラリにおける認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2011-1372	2011-11-29 16:15	2011-11-23	Show	GitHub Exploit DB Packet Storm

251988	1.9	注意	ヒューレット・パッカード IBM	-	IBM WebSphere MQ における listener プロセス強制終了の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-1378	2011-11-29 16:14	2011-11-26	Show	GitHub Exploit DB Packet Storm

251989	5	警告	シスコシステムズ	-	Cisco Secure Access Control System における任意のユーザのパスワードを変更される脆弱性	CWE-255 証明書・パスワード管理	CVE-2011-0951	2011-11-29 10:38	2011-03-30	Show	GitHub Exploit DB Packet Storm

251990	5	警告	シスコシステムズ	-	Cisco Network Access Control Guest Server におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-0963	2011-11-29 10:37	2011-03-30	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
265961	3.7	LOW Network	redhat oracle mariadb ibm	enterprise_linux mysql mariadb powerkvm linux	Unspecified vulnerability in Oracle MySQL 5.5.48 and earlier, 5.6.29 and earlier, and 5.7.10 and earlier and MariaDB before 5.5.49, 10.0.x before 10.0.25, and 10.1.x before 10.1.14 allows remote atta…	NVD-CWE-noinfo	CVE-2016-3452	2024-11-21 11:50	2016-07-21	Show	GitHub Exploit DB Packet Storm

265962	4.7	MEDIUM Network	oracle	integrated_lights_out_manager_firmware	Unspecified vulnerability in the ILOM component in Oracle Sun Systems Products Suite 3.0, 3.1, and 3.2 allows remote attackers to affect integrity via vectors related to Web.	NVD-CWE-noinfo	CVE-2016-3451	2024-11-21 11:50	2016-07-21	Show	GitHub Exploit DB Packet Storm

265963	3.7	LOW Network	oracle	siebel_core-server_framework	Unspecified vulnerability in the Siebel Core - Server Framework component in Oracle Siebel CRM 8.1.1, 8.2.2, IP2014, IP2015, and IP2016 allows remote attackers to affect confidentiality via vectors r…	NVD-CWE-noinfo	CVE-2016-3450	2024-11-21 11:50	2016-07-21	Show	GitHub Exploit DB Packet Storm

265964	6.1	MEDIUM Network	oracle	application_express	Unspecified vulnerability in the Application Express component in Oracle Database Server before 5.0.4 allows remote attackers to affect confidentiality and integrity via unknown vectors.	NVD-CWE-noinfo	CVE-2016-3448	2024-11-21 11:50	2016-07-21	Show	GitHub Exploit DB Packet Storm

265965	8.3	HIGH Network	oracle	business_intelligence	Unspecified vulnerability in the Oracle Business Intelligence Enterprise Edition component in Oracle Fusion Middleware 11.1.1.7.0 and 11.1.1.9.0 allows remote attackers to affect confidentiality, int…	NVD-CWE-noinfo	CVE-2016-3446	2024-11-21 11:50	2016-07-21	Show	GitHub Exploit DB Packet Storm

265966	5.3	MEDIUM Network	oracle	weblogic_server	Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.3.6.0 and 12.1.3.0 allows remote attackers to affect availability via vectors related to Web Container…	NVD-CWE-noinfo	CVE-2016-3445	2024-11-21 11:50	2016-07-21	Show	GitHub Exploit DB Packet Storm

265967	9.8	CRITICAL Network	oracle	retail_integration_bus	Unspecified vulnerability in the Oracle Retail Integration Bus component in Oracle Retail Applications 13.0, 13.1, 13.2, 14.0, 14.1, and 15.0 allows remote attackers to affect confidentiality, integr…	NVD-CWE-noinfo	CVE-2016-3444	2024-11-21 11:50	2016-07-21	Show	GitHub Exploit DB Packet Storm

265968	7.7	HIGH Network	oracle	mysql	Unspecified vulnerability in Oracle MySQL 5.7.11 and earlier allows remote authenticated users to affect availability via vectors related to Server: Optimizer.	NVD-CWE-noinfo	CVE-2016-3440	2024-11-21 11:50	2016-07-21	Show	GitHub Exploit DB Packet Storm

265969	5.5	MEDIUM Local	google	android	libc in Android 4.x before 4.4.4 allows remote attackers to cause a denial of service (device hang or reboot) via a crafted file, aka internal bug 28740702.	CWE-284 Improper Access Control	CVE-2016-3818	2024-11-21 11:50	2016-07-11	Show	GitHub Exploit DB Packet Storm

265970	5.5	MEDIUM Local	google	android	The MediaTek display driver in Android before 2016-07-05 on Android One devices allows attackers to obtain sensitive information via a crafted application, aka Android internal bug 28402240.	CWE-200 Information Exposure	CVE-2016-3816	2024-11-21 11:50	2016-07-11	Show	GitHub Exploit DB Packet Storm