Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 24, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252181	4.3	警告	Apache Software Foundation	-	Apache Struts におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-1772	2011-12-22 12:01	2011-12-22	Show	GitHub Exploit DB Packet Storm

252182	6.8	警告	BlackBerry	-	RIM BlackBerry Device Software の Blackberry Browser における任意の SSL サーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2009-3477	2011-12-22 11:59	2009-09-28	Show	GitHub Exploit DB Packet Storm

252183	4.3	警告	BlackBerry IBM	-	BlackBerry Desktop Manager 用の RIM Lotus Notes コネクタにおけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2009-3038	2011-12-22 11:58	2009-09-1	Show	GitHub Exploit DB Packet Storm

252184	9.3	危険	BlackBerry	-	RIM BlackBerry Enterprise Server および BlackBerry Professional Software におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2009-2646	2011-12-22 11:55	2009-04-16	Show	GitHub Exploit DB Packet Storm

252185	9.3	危険	BlackBerry	-	RIM BlackBerry Enterprise Server および BlackBerry Professional Software におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2009-2643	2011-12-22 11:54	2009-05-26	Show	GitHub Exploit DB Packet Storm

252186	7.1	危険	BlackBerry	-	RIM BlackBerry 8800 における運用妨害 (メモリ消費およびブラウザクラッシュ) の脆弱性	CWE-399 リソース管理の問題	CVE-2009-2575	2011-12-22 11:53	2009-07-22	Show	GitHub Exploit DB Packet Storm

252187	9.3	危険	BlackBerry	-	複数の RIM BlackBerry 製品の PDF distiller における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2009-0219	2011-12-22 11:51	2009-01-12	Show	GitHub Exploit DB Packet Storm

252188	9.3	危険	BlackBerry	-	複数の RIM BlackBerry 製品におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-0176	2011-12-22 11:50	2009-01-12	Show	GitHub Exploit DB Packet Storm

252189	4.3	警告	Serck Control Control Microsystems	-	Control Microsystems ClearSCADA におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-3144	2011-12-22 11:49	2011-08-16	Show	GitHub Exploit DB Packet Storm

252190	10	危険	Serck Control Control Microsystems	-	Control Microsystems ClearSCADA におけるサービス運用妨害 (クラッシュ) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-3143	2011-12-22 11:34	2011-08-16	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 24, 2026, 4:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
265481	7.5	HIGH Network	redhat canonical	openstack openstack_ironic	The ironic-api service in OpenStack Ironic before 4.2.5 (Liberty) and 5.x before 5.1.2 (Mitaka) allows remote attackers to obtain sensitive information about a registered node by leveraging knowledge…	CWE-200 Information Exposure	CVE-2016-4985	2024-11-21 11:53	2016-07-13	Show	GitHub Exploit DB Packet Storm

265482	7.8	HIGH Local	linecorp	line line_installer	Untrusted search path vulnerability in LINE and LINE Installer 4.7.0 and earlier on Windows allows local users to gain privileges via a Trojan horse DLL in an unspecified directory.	NVD-CWE-Other	CVE-2016-4831	2024-11-21 11:53	2016-07-12	Show	GitHub Exploit DB Packet Storm

265483	7.5	HIGH Network	apache	http_server	The Apache HTTP Server 2.4.18 through 2.4.20, when mod_http2 and mod_ssl are enabled, does not properly recognize the "SSLVerifyClient require" directive for HTTP/2 request authorization, which allow…	CWE-284 Improper Access Control	CVE-2016-4979	2024-11-21 11:53	2016-07-6	Show	GitHub Exploit DB Packet Storm

265484	6.1	MEDIUM Network	phpmyadmin opensuse	phpmyadmin opensuse	Cross-site scripting (XSS) vulnerability in phpMyAdmin 4.4.x before 4.4.15.6 and 4.6.x before 4.6.2 allows remote attackers to inject arbitrary web script or HTML via special characters that are mish…	CWE-79 Cross-site Scripting	CVE-2016-5099	2024-11-21 11:53	2016-07-5	Show	GitHub Exploit DB Packet Storm

265485	5.3	MEDIUM Network	phpmyadmin opensuse	phpmyadmin opensuse	Directory traversal vulnerability in libraries/error_report.lib.php in phpMyAdmin before 4.6.2-prerelease allows remote attackers to determine the existence of arbitrary files by triggering an error.	CWE-22 Path Traversal	CVE-2016-5098	2024-11-21 11:53	2016-07-5	Show	GitHub Exploit DB Packet Storm

265486	5.3	MEDIUM Network	opensuse phpmyadmin	opensuse phpmyadmin	phpMyAdmin before 4.6.2 places tokens in query strings and does not arrange for them to be stripped before external navigation, which allows remote attackers to obtain sensitive information by readin…	CWE-200 Information Exposure	CVE-2016-5097	2024-11-21 11:53	2016-07-5	Show	GitHub Exploit DB Packet Storm

265487	7.5	HIGH Network	ntp oracle novell suse opensuse	ntp solaris suse_manager linux_enterprise_server openstack_cloud manager_proxy linux_enterprise_desktop leap opensuse	ntpd in NTP before 4.2.8p8 allows remote attackers to cause a denial of service (daemon crash) via a crypto-NAK packet. NOTE: this vulnerability exists because of an incorrect fix for CVE-2016-1547.	CWE-476 NULL Pointer Dereference	CVE-2016-4957	2024-11-21 11:53	2016-07-5	Show	GitHub Exploit DB Packet Storm

265488	5.3	MEDIUM Network	ntp oracle novell suse opensuse siemens	ntp solaris suse_manager linux_enterprise_server openstack_cloud manager_proxy linux_enterprise_desktop leap opensuse simatic_net_cp_443-1_opc_ua_firmware	ntpd in NTP 4.x before 4.2.8p8 allows remote attackers to cause a denial of service (interleaved-mode transition and time change) via a spoofed broadcast packet. NOTE: this vulnerability exists beca…	NVD-CWE-noinfo	CVE-2016-4956	2024-11-21 11:53	2016-07-5	Show	GitHub Exploit DB Packet Storm

265489	5.9	MEDIUM Network	ntp oracle novell suse opensuse siemens	ntp solaris suse_manager linux_enterprise_server openstack_cloud manager_proxy linux_enterprise_desktop leap opensuse simatic_net_cp_443-1_opc_ua_firmware	ntpd in NTP 4.x before 4.2.8p8, when autokey is enabled, allows remote attackers to cause a denial of service (peer-variable clearing and association outage) by sending (1) a spoofed crypto-NAK packe…	CWE-362 Race Condition	CVE-2016-4955	2024-11-21 11:53	2016-07-5	Show	GitHub Exploit DB Packet Storm

265490	7.5	HIGH Network	ntp oracle suse opensuse siemens	ntp solaris linux_enterprise_server openstack_cloud manager_proxy manager linux_enterprise_desktop leap opensuse simatic_net_cp_443-1_opc_ua_firmware tim_4r-ie_firmware<…	ntpd in NTP 4.x before 4.2.8p8 allows remote attackers to cause a denial of service (ephemeral-association demobilization) by sending a spoofed crypto-NAK packet with incorrect authentication data at…	CWE-287 Improper Authentication	CVE-2016-4953	2024-11-21 11:53	2016-07-5	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed