Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 22, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252551 7.5 危険 EA Improved - Estate Agent コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-4571 2011-11-30 16:37 2011-11-29 Show GitHub Exploit DB Packet Storm
252552 7.5 危険 Takeaweb - Time Returns コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-4570 2011-11-30 16:37 2011-11-29 Show GitHub Exploit DB Packet Storm
252553 7.5 危険 tommykent1210 - MyBB Forum 用 Userbar プラグインにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-4569 2011-11-30 16:36 2011-11-29 Show GitHub Exploit DB Packet Storm
252554 4.3 警告 WordPress.org - WordPress 用 Flowplayer プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-4568 2011-11-30 16:35 2011-11-29 Show GitHub Exploit DB Packet Storm
252555 4.3 警告 Zen Cart - Zen Cart におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-4567 2011-11-30 16:34 2011-11-29 Show GitHub Exploit DB Packet Storm
252556 4.3 警告 Zen Cart - Zen Cart におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-4547 2011-11-30 16:34 2011-11-29 Show GitHub Exploit DB Packet Storm
252557 4.3 警告 Hastymail - Hastymail2 の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-4541 2011-11-30 16:32 2011-11-29 Show GitHub Exploit DB Packet Storm
252558 4.3 警告 XOOPS - XOOPS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-4565 2011-11-30 16:32 2011-10-3 Show GitHub Exploit DB Packet Storm
252559 4.3 警告 Activedev - Active CMS の admin script におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-4564 2011-11-30 16:31 2011-11-28 Show GitHub Exploit DB Packet Storm
252560 4.3 警告 JAKCMS - JAKCMS の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-4563 2011-11-30 16:27 2011-09-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 22, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
265241 6.0 MEDIUM
Local 		qemu qemu The mptsas_fetch_requests function in hw/scsi/mptsas.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (infinite loop, and CPU consumption or QEMU proce… NVD-CWE-noinfo
CVE-2016-4964 2024-11-21 11:53 2016-12-10 Show GitHub Exploit DB Packet Storm
265242 6.6 MEDIUM
Local 		nvidia gpu_driver For the NVIDIA Quadro, NVS, and GeForce products, improper sanitization of parameters in the NVAPI support layer causes a denial of service vulnerability (blue screen crash) within the NVIDIA Windows… CWE-20
 Improper Input Validation  		CVE-2016-5025 2024-11-21 11:53 2016-11-9 Show GitHub Exploit DB Packet Storm
265243 5.5 MEDIUM
Local 		nvidia geforce_experience For the NVIDIA Quadro, NVS, and GeForce products, improper sanitization of parameters in the NVStreamKMS.sys API layer caused a denial of service vulnerability (blue screen crash) within the NVIDIA W… CWE-20
 Improper Input Validation  		CVE-2016-4961 2024-11-21 11:53 2016-11-9 Show GitHub Exploit DB Packet Storm
265244 7.3 HIGH
Local 		nvidia geforce_experience For the NVIDIA Quadro, NVS, and GeForce products, the NVIDIA NVStreamKMS.sys service component is improperly validating user-supplied data through its API entry points causing an elevation of privile… CWE-20
 Improper Input Validation  		CVE-2016-4960 2024-11-21 11:53 2016-11-9 Show GitHub Exploit DB Packet Storm
265245 7.5 HIGH
Network 		nvidia gpu_driver For the NVIDIA Quadro, NVS, and GeForce products, there is a Remote Desktop denial of service. A successful exploit of a vulnerable system will result in a kernel null pointer dereference, causing a … CWE-476
 NULL Pointer Dereference 		CVE-2016-4959 2024-11-21 11:53 2016-11-9 Show GitHub Exploit DB Packet Storm
265246 9.8 CRITICAL
Network 		animas onetouch_ping_firmware Johnson & Johnson Animas OneTouch Ping devices allow remote attackers to bypass authentication via replay attacks. CWE-287
Improper Authentication 		CVE-2016-5086 2024-11-21 11:53 2016-10-5 Show GitHub Exploit DB Packet Storm
265247 7.5 HIGH
Network 		animas onetouch_ping_firmware Johnson & Johnson Animas OneTouch Ping devices do not properly generate random numbers, which makes it easier for remote attackers to spoof meters by sniffing the network and then engaging in an auth… CWE-330
 Use of Insufficiently Random Values 		CVE-2016-5085 2024-11-21 11:53 2016-10-5 Show GitHub Exploit DB Packet Storm
265248 7.5 HIGH
Network 		animas onetouch_ping_firmware Johnson & Johnson Animas OneTouch Ping devices do not use encryption for certain data, which might allow remote attackers to obtain sensitive information by sniffing the network. CWE-310
Cryptographic Issues 		CVE-2016-5084 2024-11-21 11:53 2016-10-5 Show GitHub Exploit DB Packet Storm
265249 9.8 CRITICAL
Network 		apache myfaces_trinidad CoreResponseStateManager in Apache MyFaces Trinidad 1.0.0 through 1.0.13, 1.2.x before 1.2.15, 2.0.x before 2.0.2, and 2.1.x before 2.1.2 might allow attackers to conduct deserialization attacks via … CWE-502
 Deserialization of Untrusted Data 		CVE-2016-5019 2024-11-21 11:53 2016-10-4 Show GitHub Exploit DB Packet Storm
265250 9.8 CRITICAL
Network 		c-ares_project
c-ares
debian
nodejs
canonical 		c-ares
debian_linux
node.js
ubuntu_linux 		Heap-based buffer overflow in the ares_create_query function in c-ares 1.x before 1.12.0 allows remote attackers to cause a denial of service (out-of-bounds write) or possibly execute arbitrary code … CWE-787
 Out-of-bounds Write 		CVE-2016-5180 2024-11-21 11:53 2016-10-4 Show GitHub Exploit DB Packet Storm