Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 2, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252591 4.6 警告 Splunk - Splunk の Splunk Web 内にある mappy.py における任意のコードを実行される脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2011-4642 2012-01-5 16:27 2011-12-12 Show GitHub Exploit DB Packet Storm
252592 6.8 警告 Mozilla Foundation - Bugzilla の attachment.cgi におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2011-3669 2012-01-5 16:26 2011-11-20 Show GitHub Exploit DB Packet Storm
252593 6.8 警告 Mozilla Foundation - Bugzilla の post_bug.cgi におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2011-3668 2012-01-5 16:26 2011-11-20 Show GitHub Exploit DB Packet Storm
252594 6.8 警告 Mozilla Foundation - Bugzilla の User.offer_account_by_email の WebService メソッドにおける脆弱性 CWE-287
不適切な認証 		CVE-2011-3667 2012-01-5 16:23 2011-12-17 Show GitHub Exploit DB Packet Storm
252595 4.3 警告 Mozilla Foundation - Bugzilla におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-3657 2012-01-5 16:21 2011-10-27 Show GitHub Exploit DB Packet Storm
252596 9.3 危険 Steve Baker - PLIB の util/ulError.cxx 内の ulSetError 関数におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-4620 2012-01-5 16:21 2011-12-31 Show GitHub Exploit DB Packet Storm
252597 1.2 注意 Celery - virtualenv の virtualenv.py における任意のファイルを上書きされる脆弱性 CWE-59
リンク解釈の問題 		CVE-2011-4617 2012-01-5 16:20 2011-12-31 Show GitHub Exploit DB Packet Storm
252598 7.5 危険 Novell - Novell XTier framework の HTTP サーバにおける整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2011-1710 2012-01-5 16:19 2011-12-31 Show GitHub Exploit DB Packet Storm
252599 4.3 警告 JJWDesign - PHP Booking Calendar の details_view.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-5045 2012-01-5 16:14 2011-12-30 Show GitHub Exploit DB Packet Storm
252600 7.2 危険 SopCast - SopCast における任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-5044 2012-01-5 16:13 2011-12-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
264821 6.5 MEDIUM
Network 		ntp ntp The control mode (mode 6) functionality in ntpd in NTP before 4.2.8p9 allows remote attackers to set or unset traps via a crafted control mode packet. CWE-400
 Uncontrolled Resource Consumption 		CVE-2016-9310 2024-11-21 12:00 2017-01-14 Show GitHub Exploit DB Packet Storm
264822 7.5 HIGH
Network 		otr gajim-otr The OTR plugin for Gajim sends information in cleartext when using XHTML, which allows remote attackers to obtain sensitive information via unspecified vectors. CWE-200
Information Exposure 		CVE-2016-9107 2024-11-21 12:00 2017-01-14 Show GitHub Exploit DB Packet Storm
264823 5.5 MEDIUM
Local 		jasper_project jasper The jpc_dec_tiledecode function in jpc_dec.c in JasPer before 1.900.8 allows remote attackers to cause a denial of service (assertion failure) via a crafted file. CWE-399
 Resource Management Errors 		CVE-2016-8883 2024-11-21 12:00 2017-01-14 Show GitHub Exploit DB Packet Storm
264824 5.5 MEDIUM
Local 		jasper_project jasper The jpc_dec_tilefini function in libjasper/jpc/jpc_dec.c in JasPer before 1.900.8 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a crafted file. CWE-476
 NULL Pointer Dereference 		CVE-2016-8882 2024-11-21 12:00 2017-01-14 Show GitHub Exploit DB Packet Storm
264825 9.8 CRITICAL
Network 		jenkins
fedoraproject 		jenkins
fedora 		The remoting module in Jenkins before 2.32 and LTS before 2.19.3 allows remote attackers to execute arbitrary code via a crafted serialized Java object, which triggers an LDAP query to a third-party … CWE-90
LDAP Injection 		CVE-2016-9299 2024-11-21 12:00 2017-01-13 Show GitHub Exploit DB Packet Storm
264826 7.5 HIGH
Network 		isc bind named in ISC BIND 9.9.9-P4, 9.9.9-S6, 9.10.4-P4, and 9.11.0-P1 allows remote attackers to cause a denial of service (assertion failure and daemon exit) via a response containing an inconsistency amon… CWE-20
 Improper Input Validation  		CVE-2016-9147 2024-11-21 12:00 2017-01-12 Show GitHub Exploit DB Packet Storm
264827 7.5 HIGH
Network 		isc
debian
redhat
netapp 		bind
debian_linux
enterprise_linux_desktop
enterprise_linux_server_aus
enterprise_linux_server_tus
enterprise_linux_server
enterprise_linux_eus
enterprise_linux_server_workstatio… 		named in ISC BIND 9.x before 9.9.9-P5, 9.10.x before 9.10.4-P5, and 9.11.x before 9.11.0-P2 allows remote attackers to cause a denial of service (assertion failure and daemon exit) via a malformed re… CWE-20
 Improper Input Validation  		CVE-2016-9131 2024-11-21 12:00 2017-01-12 Show GitHub Exploit DB Packet Storm
264828 3.7 LOW
Network 		python urllib3 Versions 1.17 and 1.18 of the Python urllib3 library suffer from a vulnerability that can cause them, in certain configurations, to not correctly validate TLS certificates. This places users of the l… CWE-295
Improper Certificate Validation  		CVE-2016-9015 2024-11-21 12:00 2017-01-12 Show GitHub Exploit DB Packet Storm
264829 5.9 MEDIUM
Network 		f5 big-ip_local_traffic_manager
big-ip_application_acceleration_manager
big-ip_advanced_firewall_manager
big-ip_analytics
big-ip_access_policy_manager
big-ip_application_security_manager<… 		Under certain conditions for BIG-IP systems using a virtual server with an associated FastL4 profile and TCP analytics profile, a specific sequence of packets may cause the Traffic Management Microke… CWE-20
 Improper Input Validation  		CVE-2016-9247 2024-11-21 12:00 2017-01-11 Show GitHub Exploit DB Packet Storm
264830 9.8 CRITICAL
Network 		php php PHP through 5.6.27 and 7.x through 7.0.12 mishandles property modification during __wakeup processing, which allows remote attackers to cause a denial of service or possibly have unspecified other im… CWE-416
 Use After Free 		CVE-2016-9138 2024-11-21 12:00 2017-01-5 Show GitHub Exploit DB Packet Storm