Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 29, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252651 10 危険 Final Draft - Final Draft におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-5002 2011-12-28 14:24 2011-12-25 Show GitHub Exploit DB Packet Storm
252652 10 危険 Attachmate - Reflection FTP クライアントにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-5012 2011-12-28 11:44 2011-12-25 Show GitHub Exploit DB Packet Storm
252653 4.3 警告 xt:Commerce - xt:Commerce におけるクロスサイトリクエストフォージェリの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-5011 2011-12-28 11:41 2011-12-25 Show GitHub Exploit DB Packet Storm
252654 10 危険 Ctek, Inc. - Ctek SkyRouter の apps/a3/cfg_ethping.cgi における任意のコマンドを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-5010 2011-12-28 11:40 2011-12-25 Show GitHub Exploit DB Packet Storm
252655 5 警告 3S-Smart Software Solutions - 3S CoDeSys におけるサービス運用妨害 (NULL ポインタデリファレンス) の脆弱性 CWE-Other
その他 		CVE-2011-5009 2011-12-28 11:36 2011-12-25 Show GitHub Exploit DB Packet Storm
252656 7.5 危険 3S-Smart Software Solutions - 3S CoDeSys の GatewayService コンポーネントにおける整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2011-5008 2011-12-28 11:35 2011-12-25 Show GitHub Exploit DB Packet Storm
252657 10 危険 3S-Smart Software Solutions - 3S CoDeSys におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-5007 2011-12-28 11:34 2011-12-25 Show GitHub Exploit DB Packet Storm
252658 7.5 危険 Wuzly - Wuzly の管理機能における認証を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-3839 2011-12-28 11:31 2011-12-24 Show GitHub Exploit DB Packet Storm
252659 7.5 危険 Wuzly - Wuzly における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-3838 2011-12-28 11:31 2011-12-24 Show GitHub Exploit DB Packet Storm
252660 6.8 警告 Wuzly - Wuzly の blog_system/data_functions.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2011-3837 2011-12-28 11:30 2011-12-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 29, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
264941 7.8 HIGH
Local 		ffmpeg ffmpeg The cavs_idct8_add_c function in libavcodec/cavsdsp.c in FFmpeg before 3.1.4 is vulnerable to reading out-of-bounds memory when decoding with cavs_decode. CWE-125
Out-of-bounds Read 		CVE-2016-7502 2024-11-21 11:58 2016-12-23 Show GitHub Exploit DB Packet Storm
264942 7.8 HIGH
Local 		ffmpeg ffmpeg The ff_log2_16bit_c function in libavutil/intmath.h in FFmpeg before 3.1.4 is vulnerable to reading out-of-bounds memory when it decodes a malformed AIFF file. CWE-125
Out-of-bounds Read 		CVE-2016-7450 2024-11-21 11:58 2016-12-23 Show GitHub Exploit DB Packet Storm
264943 9.8 CRITICAL
Network 		bundler bundler Bundler 1.x might allow remote attackers to inject arbitrary Ruby code into an application by leveraging a gem name collision on a secondary source. NOTE: this might overlap CVE-2013-0334. CWE-94
Code Injection 		CVE-2016-7954 2024-11-21 11:58 2016-12-23 Show GitHub Exploit DB Packet Storm
264944 8.0 HIGH
Adjacent 		technicolor xfinity_gateway_router_dpc3941t_firmware CSRF vulnerability on Technicolor TC dpc3941T (formerly Cisco dpc3941T) devices with firmware dpc3941-P20-18-v303r20421733-160413a-CMCST allows an attacker to change the Wi-Fi password, open the remo… CWE-352
 Origin Validation Error 		CVE-2016-7454 2024-11-21 11:58 2016-12-17 Show GitHub Exploit DB Packet Storm
264945 6.1 MEDIUM
Network 		adobe robohelp Adobe RoboHelp version 2015.0.3 and earlier, RoboHelp 11 and earlier have an input validation issue that could be used in cross-site scripting attacks. CWE-79
Cross-site Scripting 		CVE-2016-7891 2024-11-21 11:58 2016-12-15 Show GitHub Exploit DB Packet Storm
264946 8.8 HIGH
Network 		adobe flash_player_desktop_runtime
flash_player 		Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have security bypass vulnerability in the implementation of the same origin policy. NVD-CWE-noinfo
CVE-2016-7890 2024-11-21 11:58 2016-12-15 Show GitHub Exploit DB Packet Storm
264947 7.5 HIGH
Network 		adobe digital_editions Adobe Digital Editions versions 4.5.2 and earlier has an issue with parsing crafted XML entries that could lead to information disclosure. CWE-200
Information Exposure 		CVE-2016-7889 2024-11-21 11:58 2016-12-15 Show GitHub Exploit DB Packet Storm
264948 5.3 MEDIUM
Network 		adobe digital_editions Adobe Digital Editions versions 4.5.2 and earlier has an important vulnerability that could lead to memory address leak. CWE-200
Information Exposure 		CVE-2016-7888 2024-11-21 11:58 2016-12-15 Show GitHub Exploit DB Packet Storm
264949 7.5 HIGH
Network 		adobe coldfusion_builder Adobe ColdFusion Builder versions 2016 update 2 and earlier, 3.0.3 and earlier have an important vulnerability that could lead to information disclosure. CWE-200
Information Exposure 		CVE-2016-7887 2024-11-21 11:58 2016-12-15 Show GitHub Exploit DB Packet Storm
264950 9.8 CRITICAL
Network 		adobe indesign
indesign_server 		Adobe InDesign version 11.4.1 and earlier, Adobe InDesign Server 11.0.0 and earlier have an exploitable memory corruption vulnerability. Successful exploitation could lead to arbitrary code execution. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-7886 2024-11-21 11:58 2016-12-15 Show GitHub Exploit DB Packet Storm