Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 30, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252371 4.3 警告 SimpleSAMLphp - SimpleSAMLphp の modules/core/www/no_cookie.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-0040 2012-01-25 14:16 2012-01-24 Show GitHub Exploit DB Packet Storm
252372 7.5 危険 Stoneware - Stoneware webNetwork における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-0912 2012-01-25 14:15 2012-01-23 Show GitHub Exploit DB Packet Storm
252373 6.8 警告 Stoneware - Stoneware webNetwork におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-0286 2012-01-25 14:14 2012-01-23 Show GitHub Exploit DB Packet Storm
252374 4.3 警告 Stoneware - Stoneware webNetwork におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-0285 2012-01-25 14:13 2012-01-23 Show GitHub Exploit DB Packet Storm
252375 5.8 警告 NeoAxis - NeoAxis web player におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2012-0907 2012-01-25 11:24 2012-01-20 Show GitHub Exploit DB Packet Storm
252376 7.5 危険 deV!L'z Clanportal - deV!L'z Clanportal (DZCP) の Moviebase アドオンにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-0906 2012-01-25 11:00 2012-01-20 Show GitHub Exploit DB Packet Storm
252377 7.5 危険 deV!L'z Clanportal - deV!L'z Clanportal (DZCP) の Gamebase アドオンにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-0905 2012-01-25 10:57 2012-01-20 Show GitHub Exploit DB Packet Storm
252378 4.3 警告 VideoLAN - VLC media player におけるサービス運用妨害 (クラッシュ) の脆弱性 CWE-399
リソース管理の問題 		CVE-2012-0904 2012-01-25 10:54 2012-01-20 Show GitHub Exploit DB Packet Storm
252379 4.3 警告 VMware - VMware Zimbra Desktop におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-0903 2012-01-25 10:51 2012-01-20 Show GitHub Exploit DB Packet Storm
252380 5 警告 AirTies - AirTies Air 4450 におけるサービス運用妨害 (リブート) の脆弱性 CWE-noinfo
情報不足 		CVE-2012-0902 2012-01-25 10:43 2012-01-20 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 30, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
265031 6.1 MEDIUM
Network 		yandex yandex_browser XSS in Yandex Browser Translator in Yandex browser for desktop for versions from 15.12 to 16.2 could be used by remote attacker for evaluation arbitrary javascript code. CWE-79
Cross-site Scripting 		CVE-2016-8506 2024-11-21 11:59 2016-10-27 Show GitHub Exploit DB Packet Storm
265032 6.1 MEDIUM
Network 		yandex yandex.browser XSS in Yandex Browser BookReader in Yandex browser for desktop for versions before 16.6. could be used by remote attacker for evaluation arbitrary javascript code. CWE-79
Cross-site Scripting 		CVE-2016-8505 2024-11-21 11:59 2016-10-27 Show GitHub Exploit DB Packet Storm
265033 4.3 MEDIUM
Network 		yandex yandex_browser CSRF of synchronization form in Yandex Browser for desktop before version 16.6 could be used by remote attacker to steal saved data in browser profile. CWE-352
 Origin Validation Error 		CVE-2016-8504 2024-11-21 11:59 2016-10-27 Show GitHub Exploit DB Packet Storm
265034 7.3 HIGH
Network 		yandex yandex_browser Yandex Protect Anti-phishing warning in Yandex Browser for desktop from version 16.7 to 16.9 could be used by remote attacker for brute-forcing passwords from important web-resource with special Java… CWE-254
 7PK - Security Features 		CVE-2016-8503 2024-11-21 11:59 2016-10-27 Show GitHub Exploit DB Packet Storm
265035 7.3 HIGH
Network 		yandex yandex_browser Yandex Protect Anti-phishing warning in Yandex Browser for desktop from version 15.12.0 to 16.2 could be used by remote attacker for brute-forcing passwords from important web-resource with special J… CWE-254
 7PK - Security Features 		CVE-2016-8502 2024-11-21 11:59 2016-10-27 Show GitHub Exploit DB Packet Storm
265036 5.3 MEDIUM
Network 		yandex yandex_browser Security WiFi bypass in Yandex Browser from version 15.10 to 15.12 allows remote attacker to sniff traffic in open or WEP-protected wi-fi networks despite of special security mechanism is enabled. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-8501 2024-11-21 11:59 2016-10-27 Show GitHub Exploit DB Packet Storm
265037 7.6 HIGH
Network 		oracle peoplesoft_enterprise_peopletools Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.54 and 8.55 allows remote authenticated users to affect confidentiality and integrity via … CWE-284
Improper Access Control 		CVE-2016-8296 2024-11-21 11:59 2016-10-25 Show GitHub Exploit DB Packet Storm
265038 4.3 MEDIUM
Network 		oracle peoplesoft_enterprise_human_capital_management_time_and_labor Unspecified vulnerability in the PeopleSoft Enterprise HCM component in Oracle PeopleSoft Products 9.2 allows remote authenticated users to affect confidentiality via unknown vectors. CWE-200
Information Exposure 		CVE-2016-8295 2024-11-21 11:59 2016-10-25 Show GitHub Exploit DB Packet Storm
265039 4.3 MEDIUM
Network 		oracle peoplesoft_enterprise_peopletools Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.54 and 8.55 allows remote authenticated users to affect confidentiality via unknown vector… CWE-200
Information Exposure 		CVE-2016-8294 2024-11-21 11:59 2016-10-25 Show GitHub Exploit DB Packet Storm
265040 8.2 HIGH
Network 		oracle peoplesoft_enterprise_peopletools Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.54 and 8.55 allows remote attackers to affect confidentiality and integrity via vectors re… CWE-284
Improper Access Control 		CVE-2016-8293 2024-11-21 11:59 2016-10-25 Show GitHub Exploit DB Packet Storm