Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 24, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252051	6.9	警告	eEye Digital Security	-	eEye Retina CS Vulnerability Management Console が任意のプログラムを実行する問題	CWE-264 認可・権限・アクセス制御	CVE-2011-3337	2012-01-6 16:08	2011-11-9	Show	GitHub Exploit DB Packet Storm

252052	4.3	警告	Textpattern	-	Textpattern CMS の setup/index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-5019	2012-01-6 15:46	2012-01-5	Show	GitHub Exploit DB Packet Storm

252053	5	警告	Apache Software Foundation	-	Apache ActiveMQ におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-4905	2012-01-6 15:45	2012-01-5	Show	GitHub Exploit DB Packet Storm

252054	6.8	警告	CoCSoft Computing	-	CoCSoft Stream Down におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-5052	2012-01-6 15:43	2012-01-4	Show	GitHub Exploit DB Packet Storm

252055	7.5	危険	WP Symposium	-	WordPress 用の WP Symposium プラグインにおける任意のコードを実行される脆弱性	CWE-Other その他	CVE-2011-5051	2012-01-6 15:42	2012-01-4	Show	GitHub Exploit DB Packet Storm

252056	6	警告	Elitecore Technologies	-	Elitecore Technologies Cyberoam UTM における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-5050	2012-01-6 15:40	2012-01-4	Show	GitHub Exploit DB Packet Storm

252057	7.8	危険	MySQL AB	-	Windows 上で稼働する MySQL におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-5049	2012-01-6 15:39	2012-01-4	Show	GitHub Exploit DB Packet Storm

252058	5.1	警告	e107.org	-	e107 の usersettings.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-4921	2012-01-6 15:28	2012-01-4	Show	GitHub Exploit DB Packet Storm

252059	4.3	警告	e107.org	-	e107 におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-4920	2012-01-6 15:28	2012-01-4	Show	GitHub Exploit DB Packet Storm

252060	4.3	警告	IBM	-	IBM TFIM および TFIMBG における意図された認証または認証要件を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-1386	2012-01-6 15:26	2011-12-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 24, 2026, 4:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
265521	6.5	MEDIUM Network	buffalo	wzr-600dhp3_firmware hw-450hp-zwe_firmware wzr-hp-g450h_firmware wzr-450hp_firmware wzr-900dhp2_firmware wcr-300_firmware wzr-450hp-cwt_firmware wzr-hp-g301nh_firmware wxr-175…	BUFFALO WZR-600DHP3 devices with firmware 2.16 and earlier and WZR-S600DHP devices allow remote attackers to discover credentials and other sensitive information via unspecified vectors.	CWE-200 Information Exposure	CVE-2016-4816	2024-11-21 11:53	2016-06-19	Show	GitHub Exploit DB Packet Storm

265522	7.5	HIGH Network	buffalo	wzr-900dhp2_firmware wzr-600dhp3_firmware wzr-s900dhp_firmware wzr-s600dhp_firmware wzr-900dhp_firmware wzr-600dhp2_firmware	Directory traversal vulnerability on BUFFALO WZR-600DHP3 devices with firmware 2.16 and earlier and WZR-S600DHP devices with firmware 2.16 and earlier allows remote attackers to read arbitrary files …	CWE-22 Path Traversal	CVE-2016-4815	2024-11-21 11:53	2016-06-19	Show	GitHub Exploit DB Packet Storm

265523	7.5	HIGH Network	gsi	old_gsi_maps	Directory traversal vulnerability in kml2jsonp.php in Geospatial Information Authority of Japan (aka GSI) Old_GSI_Maps before January 2015 on Windows allows remote attackers to read arbitrary files v…	CWE-22 Path Traversal	CVE-2016-4814	2024-11-21 11:53	2016-06-19	Show	GitHub Exploit DB Packet Storm

265524	8.8	HIGH Network	netcommons	netcommons	NetCommons 2.4.2.1 and earlier allows remote authenticated secretariat (aka CLERK) users to gain privileges by creating a SYSTEM_ADMIN account.	CWE-284 Improper Access Control	CVE-2016-4813	2024-11-21 11:53	2016-06-19	Show	GitHub Exploit DB Packet Storm

265525	4.4	MEDIUM Local	qemu canonical debian	qemu ubuntu_linux debian_linux	The get_cmd function in hw/scsi/esp.c in QEMU might allow local guest OS administrators to cause a denial of service (out-of-bounds write and QEMU process crash) via vectors related to reading from t…	CWE-787 Out-of-bounds Write	CVE-2016-5238	2024-11-21 11:53	2016-06-14	Show	GitHub Exploit DB Packet Storm

265526	8.1	HIGH Network	huawei	rse6500_firmware vp9600_series_firmware	Buffer overflow in Huawei VP9660, VP9650, and VP9630 multipoint control unit devices with software before V500R002C00SPC200 and RSE6500 videoconference devices with software before V500R002C00SPC100,…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-5234	2024-11-21 11:53	2016-06-13	Show	GitHub Exploit DB Packet Storm

265527	5.3	MEDIUM Network	libimobiledevice canonical opensuse	libimobiledevice libusbmuxd ubuntu_linux leap opensuse	The socket_create function in common/socket.c in libimobiledevice and libusbmuxd allows remote attackers to bypass intended access restrictions and communicate with services on iOS devices by connect…	CWE-284 Improper Access Control	CVE-2016-5104	2024-11-21 11:53	2016-06-13	Show	GitHub Exploit DB Packet Storm

265528	4.3	MEDIUM Network	keystone	openstack_identity	The Fernet Token Provider in OpenStack Identity (Keystone) 9.0.x before 9.0.1 (mitaka) allows remote authenticated users to prevent revocation of a chain of tokens and bypass intended access restrict…	CWE-284 Improper Access Control	CVE-2016-4911	2024-11-21 11:53	2016-06-13	Show	GitHub Exploit DB Packet Storm

265529	3.7	LOW Network	huawei	mate_8_firmware	Huawei Mate 8 smartphones with software NXT-AL10 before NXT-AL10C00B182, NXT-CL00 before NXT-CL00C92B182, NXT-DL00 before NXT-DL00C17B182, and NXT-TL00 before NXT-TL00C01B182 allow remote base statio…	CWE-200 Information Exposure	CVE-2016-5233	2024-11-21 11:53	2016-06-11	Show	GitHub Exploit DB Packet Storm

265530	9.8	CRITICAL Network	graphicsmagick suse oracle opensuse canonical debian imagemagick	graphicsmagick studio_onsite linux_enterprise_software_development_kit linux_enterprise_debuginfo solaris linux leap opensuse ubuntu_linux debian_linux linux_enterprise_…	The OpenBlob function in blob.c in GraphicsMagick before 1.3.24 and ImageMagick allows remote attackers to execute arbitrary code via a \| (pipe) character at the start of a filename.	NVD-CWE-noinfo	CVE-2016-5118	2024-11-21 11:53	2016-06-11	Show	GitHub Exploit DB Packet Storm