Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 23, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252091	4.3	警告	Zabbix	-	Zabbix における複数のクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-4615	2012-01-5 10:48	2011-08-4	Show	GitHub Exploit DB Packet Storm

252092	10	危険	ヒューレット・パッカード	-	HP Database Archiving Software における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2011-4165	2012-01-5 10:47	2011-12-22	Show	GitHub Exploit DB Packet Storm

252093	10	危険	ヒューレット・パッカード	-	HP Database Archiving Software における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2011-4164	2012-01-5 10:46	2011-12-22	Show	GitHub Exploit DB Packet Storm

252094	10	危険	ヒューレット・パッカード	-	HP Database Archiving Software における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2011-4163	2012-01-5 10:44	2011-12-22	Show	GitHub Exploit DB Packet Storm

252095	4.3	警告	Yaws	-	Yaws の wiki アプリケーションにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-5025	2012-01-5 10:21	2011-12-29	Show	GitHub Exploit DB Packet Storm

252096	4.3	警告	GNU Project	-	Mailman 用の Mailman/htdig integration patch の mmsearch/design におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-5024	2012-01-5 10:21	2011-12-29	Show	GitHub Exploit DB Packet Storm

252097	4.3	警告	Pligg	-	Pligg CMS の search.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-5023	2012-01-5 10:17	2011-12-29	Show	GitHub Exploit DB Packet Storm

252098	7.5	危険	Pligg	-	Pligg CMS の search.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-5022	2012-01-5 10:16	2011-12-29	Show	GitHub Exploit DB Packet Storm

252099	4.3	警告	Winn GuestBook	-	Winn GuestBook におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-5026	2012-01-5 10:16	2011-12-27	Show	GitHub Exploit DB Packet Storm

252100	7.5	危険	PHPIDS	-	PHPIDS におけるルールセット回避の脆弱性	CWE-94 コード・インジェクション	CVE-2011-5021	2012-01-5 10:15	2011-12-29	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
265511	7.5	HIGH Network	gsi	old_gsi_maps	Directory traversal vulnerability in kml2jsonp.php in Geospatial Information Authority of Japan (aka GSI) Old_GSI_Maps before January 2015 on Windows allows remote attackers to read arbitrary files v…	CWE-22 Path Traversal	CVE-2016-4814	2024-11-21 11:53	2016-06-19	Show	GitHub Exploit DB Packet Storm

265512	8.8	HIGH Network	netcommons	netcommons	NetCommons 2.4.2.1 and earlier allows remote authenticated secretariat (aka CLERK) users to gain privileges by creating a SYSTEM_ADMIN account.	CWE-284 Improper Access Control	CVE-2016-4813	2024-11-21 11:53	2016-06-19	Show	GitHub Exploit DB Packet Storm

265513	4.4	MEDIUM Local	qemu canonical debian	qemu ubuntu_linux debian_linux	The get_cmd function in hw/scsi/esp.c in QEMU might allow local guest OS administrators to cause a denial of service (out-of-bounds write and QEMU process crash) via vectors related to reading from t…	CWE-787 Out-of-bounds Write	CVE-2016-5238	2024-11-21 11:53	2016-06-14	Show	GitHub Exploit DB Packet Storm

265514	8.1	HIGH Network	huawei	rse6500_firmware vp9600_series_firmware	Buffer overflow in Huawei VP9660, VP9650, and VP9630 multipoint control unit devices with software before V500R002C00SPC200 and RSE6500 videoconference devices with software before V500R002C00SPC100,…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-5234	2024-11-21 11:53	2016-06-13	Show	GitHub Exploit DB Packet Storm

265515	5.3	MEDIUM Network	libimobiledevice canonical opensuse	libimobiledevice libusbmuxd ubuntu_linux leap opensuse	The socket_create function in common/socket.c in libimobiledevice and libusbmuxd allows remote attackers to bypass intended access restrictions and communicate with services on iOS devices by connect…	CWE-284 Improper Access Control	CVE-2016-5104	2024-11-21 11:53	2016-06-13	Show	GitHub Exploit DB Packet Storm

265516	4.3	MEDIUM Network	keystone	openstack_identity	The Fernet Token Provider in OpenStack Identity (Keystone) 9.0.x before 9.0.1 (mitaka) allows remote authenticated users to prevent revocation of a chain of tokens and bypass intended access restrict…	CWE-284 Improper Access Control	CVE-2016-4911	2024-11-21 11:53	2016-06-13	Show	GitHub Exploit DB Packet Storm

265517	3.7	LOW Network	huawei	mate_8_firmware	Huawei Mate 8 smartphones with software NXT-AL10 before NXT-AL10C00B182, NXT-CL00 before NXT-CL00C92B182, NXT-DL00 before NXT-DL00C17B182, and NXT-TL00 before NXT-TL00C01B182 allow remote base statio…	CWE-200 Information Exposure	CVE-2016-5233	2024-11-21 11:53	2016-06-11	Show	GitHub Exploit DB Packet Storm

265518	9.8	CRITICAL Network	graphicsmagick suse oracle opensuse canonical debian imagemagick	graphicsmagick studio_onsite linux_enterprise_software_development_kit linux_enterprise_debuginfo solaris linux leap opensuse ubuntu_linux debian_linux linux_enterprise_…	The OpenBlob function in blob.c in GraphicsMagick before 1.3.24 and ImageMagick allows remote attackers to execute arbitrary code via a \| (pipe) character at the start of a filename.	NVD-CWE-noinfo	CVE-2016-5118	2024-11-21 11:53	2016-06-11	Show	GitHub Exploit DB Packet Storm

265519	9.8	CRITICAL Network	debian videolan	debian_linux vlc_media_player	Buffer overflow in the DecodeAdpcmImaQT function in modules/codec/adpcm.c in VideoLAN VLC media player before 2.2.4 allows remote attackers to cause a denial of service (crash) or possibly execute ar…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-5108	2024-11-21 11:53	2016-06-9	Show	GitHub Exploit DB Packet Storm

265520	5.6	MEDIUM Local	xen	xen	The p2m_teardown function in arch/arm/p2m.c in Xen 4.4.x through 4.6.x allows local guest OS users with access to the driver domain to cause a denial of service (NULL pointer dereference and host OS …	NVD-CWE-Other	CVE-2016-5242	2024-11-21 11:53	2016-06-7	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed