Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 31, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252651 10 危険 Final Draft - Final Draft におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-5002 2011-12-28 14:24 2011-12-25 Show GitHub Exploit DB Packet Storm
252652 10 危険 Attachmate - Reflection FTP クライアントにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-5012 2011-12-28 11:44 2011-12-25 Show GitHub Exploit DB Packet Storm
252653 4.3 警告 xt:Commerce - xt:Commerce におけるクロスサイトリクエストフォージェリの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-5011 2011-12-28 11:41 2011-12-25 Show GitHub Exploit DB Packet Storm
252654 10 危険 Ctek, Inc. - Ctek SkyRouter の apps/a3/cfg_ethping.cgi における任意のコマンドを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-5010 2011-12-28 11:40 2011-12-25 Show GitHub Exploit DB Packet Storm
252655 5 警告 3S-Smart Software Solutions - 3S CoDeSys におけるサービス運用妨害 (NULL ポインタデリファレンス) の脆弱性 CWE-Other
その他 		CVE-2011-5009 2011-12-28 11:36 2011-12-25 Show GitHub Exploit DB Packet Storm
252656 7.5 危険 3S-Smart Software Solutions - 3S CoDeSys の GatewayService コンポーネントにおける整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2011-5008 2011-12-28 11:35 2011-12-25 Show GitHub Exploit DB Packet Storm
252657 10 危険 3S-Smart Software Solutions - 3S CoDeSys におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-5007 2011-12-28 11:34 2011-12-25 Show GitHub Exploit DB Packet Storm
252658 7.5 危険 Wuzly - Wuzly の管理機能における認証を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-3839 2011-12-28 11:31 2011-12-24 Show GitHub Exploit DB Packet Storm
252659 7.5 危険 Wuzly - Wuzly における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-3838 2011-12-28 11:31 2011-12-24 Show GitHub Exploit DB Packet Storm
252660 6.8 警告 Wuzly - Wuzly の blog_system/data_functions.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2011-3837 2011-12-28 11:30 2011-12-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
264861 8.1 HIGH
Network 		moxa awk-3131a_firmware An exploitable nonce reuse vulnerability exists in the Web Application functionality of Moxa AWK-3131A Wireless AP running firmware 1.1. The device uses one nonce for all session authentication reque… CWE-613
 Insufficient Session Expiration 		CVE-2016-8712 2024-11-21 11:59 2017-04-14 Show GitHub Exploit DB Packet Storm
264862 6.1 MEDIUM
Network 		moxa awk-3131a_firmware An exploitable reflected Cross-Site Scripting vulnerability exists in the Web Application functionality of Moxa AWK-3131A Wireless Access Point running firmware 1.1. Specially crafted input, in multi… CWE-79
Cross-site Scripting 		CVE-2016-8719 2024-11-21 11:59 2017-04-13 Show GitHub Exploit DB Packet Storm
264863 8.8 HIGH
Network 		moxa awk-3131a_firmware An exploitable Cross-Site Request Forgery vulnerability exists in the Web Application functionality of Moxa AWK-3131A Wireless Access Point running firmware 1.1. A specially crafted form can trick a … CWE-352
 Origin Validation Error 		CVE-2016-8718 2024-11-21 11:59 2017-04-13 Show GitHub Exploit DB Packet Storm
264864 7.5 HIGH
Adjacent 		moxa awk-3131a_firmware An exploitable Cleartext Transmission of Password vulnerability exists in the Web Application functionality of Moxa AWK-3131A Wireless Access Point running firmware 1.1. The Change Password functiona… CWE-640
 Weak Password Recovery Mechanism for Forgotten Password 		CVE-2016-8716 2024-11-21 11:59 2017-04-13 Show GitHub Exploit DB Packet Storm
264865 8.1 HIGH
Network 		lenovo updates Remote code execution in Lenovo Updates (not Lenovo System Update) allows man-in-the-middle attackers to execute arbitrary code. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-8237 2024-11-21 11:59 2017-04-11 Show GitHub Exploit DB Packet Storm
264866 7.8 HIGH
Local 		lenovo customer_care_software_development_kit Privilege escalation in Lenovo Customer Care Software Development Kit (CCSDK) versions earlier than 2.0.16.3 allows local users to execute code with elevated privileges. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-8235 2024-11-21 11:59 2017-04-11 Show GitHub Exploit DB Packet Storm
264867 7.5 HIGH
Adjacent 		huawei oceanstor_5600_v3_firmware Huawei OceanStor 5600 V3 V300R003C00 has a hardcoded SSH key vulnerability; the hardcoded keys are used to encrypt communication data and authenticate different nodes of the devices. An attacker may … CWE-798
 Use of Hard-coded Credentials 		CVE-2016-8754 2024-11-21 11:59 2017-04-3 Show GitHub Exploit DB Packet Storm
264868 6.5 MEDIUM
Network 		huawei anyoffice Huawei AnyOffice V200R006C00 could allow an authenticated, remote attacker to cause the software to deny services by uploading an XML bomb. CWE-20
 Improper Input Validation  		CVE-2016-8275 2024-11-21 11:59 2017-04-3 Show GitHub Exploit DB Packet Storm
264869 7.8 HIGH
Local 		huawei hisuite Huawei PC client software HiSuite 4.0.5.300_OVE has a dynamic link library (DLL) hijack vulnerability; an attacker can make the system load malicious DLL files to execute arbitrary code. CWE-284
Improper Access Control 		CVE-2016-8274 2024-11-21 11:59 2017-04-3 Show GitHub Exploit DB Packet Storm
264870 7.8 HIGH
Local 		huawei hisuite Huawei PC client software HiSuite 4.0.5.300_OVE uses insecure HTTP for upgrade software package download and does not check the integrity of the software package before installing; an attacker can la… CWE-20
CWE-284
 Improper Input Validation 
Improper Access Control 		CVE-2016-8273 2024-11-21 11:59 2017-04-3 Show GitHub Exploit DB Packet Storm