Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 31, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252681	4.3	警告	The phpMyAdmin Project	-	phpMyAdmin の libraries/config/ConfigFile.class.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-4782	2011-12-26 16:29	2011-12-21	Show	GitHub Exploit DB Packet Storm

252682	6.5	警告	WordPress.org	-	WordPress において任意の PHP コードが実行可能な脆弱性	CWE-94 コード・インジェクション	-	2011-12-26 14:27	2011-12-26	Show	GitHub Exploit DB Packet Storm

252683	4.3	警告	WordPress.org	-	WordPress 日本語版におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	-	2011-12-26 12:01	2011-12-26	Show	GitHub Exploit DB Packet Storm

252684	4.3	警告	藤本壱	-	Movable Type 用メールフォームプラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-6751	2011-12-26 12:00	2011-12-26	Show	GitHub Exploit DB Packet Storm

252685	7.2	危険	FreeBSD	-	FreeBSD のカーネルにおけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-4062	2011-12-26 10:43	2011-09-28	Show	GitHub Exploit DB Packet Storm

252686	6.8	警告	Mozilla Foundation	-	Mac OS X 上で稼働する Mozilla Firefox および Thunderbird におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-3666	2011-12-22 15:43	2011-12-20	Show	GitHub Exploit DB Packet Storm

252687	7.5	危険	Mozilla Foundation	-	複数の Mozilla 製品におけるサービス運用妨害 (アプリケーションクラッシュ) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-3665	2011-12-22 15:43	2011-12-20	Show	GitHub Exploit DB Packet Storm

252688	6.8	警告	Mozilla Foundation	-	Mac OS X 上で稼働する複数の Mozilla 製品におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2011-3664	2011-12-22 15:42	2011-12-20	Show	GitHub Exploit DB Packet Storm

252689	4.3	警告	Mozilla Foundation	-	複数の Mozilla 製品におけるキー入力をキャプチャされる脆弱性	CWE-200 情報漏えい	CVE-2011-3663	2011-12-22 15:42	2011-12-20	Show	GitHub Exploit DB Packet Storm

252690	7.5	危険	Mozilla Foundation	-	複数の Mozilla 製品で使用される YARR 正規表現ライブラリにおけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-3661	2011-12-22 15:41	2011-12-20	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
264861	8.1	HIGH Network	moxa	awk-3131a_firmware	An exploitable nonce reuse vulnerability exists in the Web Application functionality of Moxa AWK-3131A Wireless AP running firmware 1.1. The device uses one nonce for all session authentication reque…	CWE-613 Insufficient Session Expiration	CVE-2016-8712	2024-11-21 11:59	2017-04-14	Show	GitHub Exploit DB Packet Storm

264862	6.1	MEDIUM Network	moxa	awk-3131a_firmware	An exploitable reflected Cross-Site Scripting vulnerability exists in the Web Application functionality of Moxa AWK-3131A Wireless Access Point running firmware 1.1. Specially crafted input, in multi…	CWE-79 Cross-site Scripting	CVE-2016-8719	2024-11-21 11:59	2017-04-13	Show	GitHub Exploit DB Packet Storm

264863	8.8	HIGH Network	moxa	awk-3131a_firmware	An exploitable Cross-Site Request Forgery vulnerability exists in the Web Application functionality of Moxa AWK-3131A Wireless Access Point running firmware 1.1. A specially crafted form can trick a …	CWE-352 Origin Validation Error	CVE-2016-8718	2024-11-21 11:59	2017-04-13	Show	GitHub Exploit DB Packet Storm

264864	7.5	HIGH Adjacent	moxa	awk-3131a_firmware	An exploitable Cleartext Transmission of Password vulnerability exists in the Web Application functionality of Moxa AWK-3131A Wireless Access Point running firmware 1.1. The Change Password functiona…	CWE-640 Weak Password Recovery Mechanism for Forgotten Password	CVE-2016-8716	2024-11-21 11:59	2017-04-13	Show	GitHub Exploit DB Packet Storm

264865	8.1	HIGH Network	lenovo	updates	Remote code execution in Lenovo Updates (not Lenovo System Update) allows man-in-the-middle attackers to execute arbitrary code.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-8237	2024-11-21 11:59	2017-04-11	Show	GitHub Exploit DB Packet Storm

264866	7.8	HIGH Local	lenovo	customer_care_software_development_kit	Privilege escalation in Lenovo Customer Care Software Development Kit (CCSDK) versions earlier than 2.0.16.3 allows local users to execute code with elevated privileges.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-8235	2024-11-21 11:59	2017-04-11	Show	GitHub Exploit DB Packet Storm

264867	7.5	HIGH Adjacent	huawei	oceanstor_5600_v3_firmware	Huawei OceanStor 5600 V3 V300R003C00 has a hardcoded SSH key vulnerability; the hardcoded keys are used to encrypt communication data and authenticate different nodes of the devices. An attacker may …	CWE-798 Use of Hard-coded Credentials	CVE-2016-8754	2024-11-21 11:59	2017-04-3	Show	GitHub Exploit DB Packet Storm

264868	6.5	MEDIUM Network	huawei	anyoffice	Huawei AnyOffice V200R006C00 could allow an authenticated, remote attacker to cause the software to deny services by uploading an XML bomb.	CWE-20 Improper Input Validation	CVE-2016-8275	2024-11-21 11:59	2017-04-3	Show	GitHub Exploit DB Packet Storm

264869	7.8	HIGH Local	huawei	hisuite	Huawei PC client software HiSuite 4.0.5.300_OVE has a dynamic link library (DLL) hijack vulnerability; an attacker can make the system load malicious DLL files to execute arbitrary code.	CWE-284 Improper Access Control	CVE-2016-8274	2024-11-21 11:59	2017-04-3	Show	GitHub Exploit DB Packet Storm

264870	7.8	HIGH Local	huawei	hisuite	Huawei PC client software HiSuite 4.0.5.300_OVE uses insecure HTTP for upgrade software package download and does not check the integrity of the software package before installing; an attacker can la…	CWE-20 CWE-284 Improper Input Validation Improper Access Control	CVE-2016-8273	2024-11-21 11:59	2017-04-3	Show	GitHub Exploit DB Packet Storm