Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 30, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252791	7.5	危険	SugarCRM	-	SugarCRM の Leads モジュールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-4833	2011-12-19 15:08	2011-12-15	Show	GitHub Exploit DB Packet Storm

252792	7.5	危険	Moxiecode Systems AB phpMyFAQ PHPletter	-	複数の製品で使用される inc/function.base.php における PHP コードを挿入される脆弱性	CWE-94 コード・インジェクション	CVE-2011-4825	2011-12-19 15:07	2011-10-25	Show	GitHub Exploit DB Packet Storm

252793	7.5	危険	The Cacti Group	-	Cacti の auth_login.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-4824	2011-12-19 15:06	2011-09-26	Show	GitHub Exploit DB Packet Storm

252794	4.3	警告	Atlassian	-	Atlassian FishEye のユーザプロファイル機能におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-4822	2011-12-19 15:05	2011-10-24	Show	GitHub Exploit DB Packet Storm

252795	3.6	注意	Artsoft Entertainment	-	Artsoft Entertainment の Rocks'n'Diamonds における任意のファイルを上書きされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-4606	2011-12-19 15:05	2011-12-15	Show	GitHub Exploit DB Packet Storm

252796	4.3	警告	Digium	-	Asterisk の channels/chan_sip.c におけるサービス運用妨害 (DoS) の脆弱性	CWE-200 情報漏えい	CVE-2011-4598	2011-12-19 15:03	2011-11-2	Show	GitHub Exploit DB Packet Storm

252797	5	警告	Digium	-	Asterisk の UDP 実装での SIP におけるユーザ名を列挙される脆弱性	CWE-200 情報漏えい	CVE-2011-4597	2011-12-19 15:01	2011-07-18	Show	GitHub Exploit DB Packet Storm

252798	7.5	危険	Caupo.Net	-	CaupoShop Pro および CaupoShop Classic におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2011-4832	2011-12-19 13:44	2011-12-15	Show	GitHub Exploit DB Packet Storm

252799	4	警告	David Azoulay	-	Web File Browser の webFileBrowser.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2011-4831	2011-12-19 13:43	2011-12-15	Show	GitHub Exploit DB Packet Storm

252800	7.5	危険	e4j Extensions for Joomla	-	Joomla! 用 Vik Real Estate コンポーネントにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-4823	2011-12-19 11:52	2011-12-15	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 30, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
264811	8.8	HIGH Network	lynxspring	jenesys_bas_bridge	An issue was discovered in Lynxspring JENEsys BAS Bridge versions 1.1.8 and older. The application does not sufficiently verify if a request was intentionally provided by the user who submitted the r…	CWE-352 Origin Validation Error	CVE-2016-8369	2024-11-21 11:59	2017-02-14	Show	GitHub Exploit DB Packet Storm

264812	9.8	CRITICAL Network	ibhsoftec	s7-softplc	An issue was discovered in IBHsoftec S7-SoftPLC prior to 4.12b. Object memory can read a network packet that is larger than the space that is available, a Heap-based Buffer Overflow.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-8364	2024-11-21 11:59	2017-02-14	Show	GitHub Exploit DB Packet Storm

264813	8.6	HIGH Network	lynxspring	jenesys_bas_bridge	An issue was discovered in Lynxspring JENEsys BAS Bridge versions 1.1.8 and older. The application uses a hard-coded username with no password allowing an attacker into the system without authenticat…	CWE-798 Use of Hard-coded Credentials	CVE-2016-8361	2024-11-21 11:59	2017-02-14	Show	GitHub Exploit DB Packet Storm

264814	8.1	HIGH Network	moxa	softcms	An issue was discovered in Moxa SoftCMS versions prior to Version 1.6. A specially crafted URL request sent to the SoftCMS ASP Webserver can cause a double free condition on the server allowing an at…	CWE-415 Double Free	CVE-2016-8360	2024-11-21 11:59	2017-02-14	Show	GitHub Exploit DB Packet Storm

264815	8.6	HIGH Network	mitsubishielectric	qj71e71-100_firmware qj71e71-b5_firmware qj71e71-b2_firmware	An issue was discovered in Mitsubishi Electric Automation MELSEC-Q series Ethernet interface modules QJ71E71-100, all versions, QJ71E71-B5, all versions, and QJ71E71-B2, all versions. The affected Et…	CWE-662 Improper Synchronization	CVE-2016-8368	2024-11-21 11:59	2017-02-14	Show	GitHub Exploit DB Packet Storm

264816	5.3	MEDIUM Network	schneider-electric	magelis_gtu_universal_panel_firmware magelis_gto_advanced_optimum_panel_firmware magelis_sto5_small_panel_firmware magelis_stu_small_panel_firmware magelis_xbt_gh_advanced_hand-held_panel…	An issue was discovered in Schneider Electric Magelis HMI Magelis GTO Advanced Optimum Panels, all versions, Magelis GTU Universal Panel, all versions, Magelis STO5xx and STU Small panels, all versio…	CWE-400 Uncontrolled Resource Consumption	CVE-2016-8367	2024-11-21 11:59	2017-02-14	Show	GitHub Exploit DB Packet Storm

264817	10.0	CRITICAL Network	moxa	oncellg3470a-lte_firmware awk-4131a_firmware awk-3191_firmware awk-5232_firmware awk-6232_firmware awk-1121_firmware awk-1127_firmware wac-1001_v2_firmware wac-2004_firmware	An issue was discovered in Moxa OnCell OnCellG3470A-LTE, AWK-1131A/3131A/4131A Series, AWK-3191 Series, AWK-5232/6232 Series, AWK-1121/1127 Series, WAC-1001 V2 Series, WAC-2004 Series, AWK-3121-M12-R…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-8363	2024-11-21 11:59	2017-02-14	Show	GitHub Exploit DB Packet Storm

264818	6.5	MEDIUM Network	moxa	oncellg3470a-lte_firmware awk-4131a_firmware awk-3191_firmware awk-5232_firmware awk-6232_firmware awk-1121_firmware awk-1127_firmware wac-1001_v2_firmware wac-2004_firmware	An issue was discovered in Moxa OnCell OnCellG3470A-LTE, AWK-1131A/3131A/4131A Series, AWK-3191 Series, AWK-5232/6232 Series, AWK-1121/1127 Series, WAC-1001 V2 Series, WAC-2004 Series, AWK-3121-M12-R…	CWE-287 Improper Authentication	CVE-2016-8362	2024-11-21 11:59	2017-02-14	Show	GitHub Exploit DB Packet Storm

264819	6.1	MEDIUM Network	moxa	iologik_e1200_series_firmware iologik_e2200_series_firmware	An issue was discovered in Moxa ioLogik E1210, firmware Version V2.4 and prior, ioLogik E1211, firmware Version V2.3 and prior, ioLogik E1212, firmware Version V2.4 and prior, ioLogik E1213, firmware…	CWE-79 Cross-site Scripting	CVE-2016-8359	2024-11-21 11:59	2017-02-14	Show	GitHub Exploit DB Packet Storm

264820	7.1	HIGH Network	lynxspring	jenesys_bas_bridge	An issue was discovered in Lynxspring JENEsys BAS Bridge versions 1.1.8 and older. A user with read-only access can send commands to the software and the application will accept those commands. This …	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-8357	2024-11-21 11:59	2017-02-14	Show	GitHub Exploit DB Packet Storm