Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 29, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252871 7.5 危険 Mambo Foundation - Mambo CMS の administrator/index2.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-2917 2011-12-13 14:41 2011-12-8 Show GitHub Exploit DB Packet Storm
252872 6.8 警告 MIT Kerberos - MIT Kerberos の process_tgs_req 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-1530 2011-12-13 14:40 2011-12-6 Show GitHub Exploit DB Packet Storm
252873 6.4 警告 BlackBerry - BlackBerry Administration API におけるテキストファイルを読まれる脆弱性 CWE-noinfo
情報不足 		CVE-2011-0287 2011-12-13 14:35 2011-07-12 Show GitHub Exploit DB Packet Storm
252874 6.4 警告 Widelands - Widelands におけるパストラバーサル攻撃を誘発される脆弱性 CWE-22
パス・トラバーサル 		CVE-2011-4675 2011-12-12 18:21 2011-12-5 Show GitHub Exploit DB Packet Storm
252875 5 警告 One Click Orgs - One Click Orgs のパスワードリセット機能におけるユーザアカウントを列挙される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2011-4678 2011-12-12 18:19 2011-12-6 Show GitHub Exploit DB Packet Storm
252876 4 警告 One Click Orgs - One Click Orgs におけるサービス運用妨害 (ログイン障害) の脆弱性 CWE-255
証明書・パスワード管理 		CVE-2011-4555 2011-12-12 18:18 2011-12-6 Show GitHub Exploit DB Packet Storm
252877 5.5 警告 One Click Orgs - One Click Orgs における巧妙に細工された SMTP トラフィックを誘発する脆弱性 CWE-20
不適切な入力確認 		CVE-2011-4554 2011-12-12 18:15 2011-12-6 Show GitHub Exploit DB Packet Storm
252878 6.9 警告 Celery - Celery における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-4356 2011-12-12 18:14 2011-12-5 Show GitHub Exploit DB Packet Storm
252879 7.5 危険 ヒューレット・パッカード - HP Protect Tools Device Access Manager における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2011-4162 2011-12-12 18:13 2011-12-1 Show GitHub Exploit DB Packet Storm
252880 10 危険 ヒューレット・パッカード - HP CM8060 Color MFP その他の製品のデフォルト設定における任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-4161 2011-12-12 18:10 2011-11-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 30, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
264711 7.5 HIGH
Network 		apache tomcat A bug in the error handling of the send file code for the NIO HTTP connector in Apache Tomcat 9.0.0.M1 to 9.0.0.M13, 8.5.0 to 8.5.8, 8.0.0.RC1 to 8.0.39, 7.0.0 to 7.0.73 and 6.0.16 to 6.0.48 resulted… CWE-388
 7PK - Errors 		CVE-2016-8745 2024-11-21 11:59 2017-08-11 Show GitHub Exploit DB Packet Storm
264712 7.5 HIGH
Network 		apache cxf The JAX-RS module in Apache CXF prior to 3.0.12 and 3.1.x prior to 3.1.9 provides a number of Atom JAX-RS MessageBodyReaders. These readers use Apache Abdera Parser which expands XML entities by defa… CWE-611
XXE 		CVE-2016-8739 2024-11-21 11:59 2017-08-11 Show GitHub Exploit DB Packet Storm
264713 7.5 HIGH
Network 		apache
netapp
debian
redhat 		http_server
clustered_data_ontap
oncommand_unified_manager
debian_linux
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
enterprise_linux_server_tus<… 		Apache HTTP Server, in all releases prior to 2.2.32 and 2.4.25, was liberal in the whitespace accepted from requests and sent in response lines and headers. Accepting these different behaviors repres… NVD-CWE-noinfo
CVE-2016-8743 2024-11-21 11:59 2017-07-28 Show GitHub Exploit DB Packet Storm
264714 9.1 CRITICAL
Network 		ipsilon_project ipsilon A vulnerability in ipsilon 2.0 before 2.0.2, 1.2 before 1.2.1, 1.1 before 1.1.2, and 1.0 before 1.0.3 was found that allows attacker to log out active sessions of other users. This issue is related … CWE-384
 Session Fixation 		CVE-2016-8638 2024-11-21 11:59 2017-07-12 Show GitHub Exploit DB Packet Storm
264715 8.8 HIGH
Network 		fortinet forticlient In FortiClientWindows 5.4.1 and 5.4.2, an attacker may escalate privilege via a FortiClientNamedPipe vulnerability. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-8493 2024-11-21 11:59 2017-06-27 Show GitHub Exploit DB Packet Storm
264716 9.8 CRITICAL
Network 		foscam c1_webcam_firmware Hard-coded FTP credentials (r:r) are included in the Foscam C1 running firmware 1.9.1.12. Knowledge of these credentials would allow remote access to any cameras found on the internet that do not hav… CWE-798
 Use of Hard-coded Credentials 		CVE-2016-8731 2024-11-21 11:59 2017-06-22 Show GitHub Exploit DB Packet Storm
264717 4.8 MEDIUM
Network 		apache ranger Apache Ranger before 0.6.3 is vulnerable to a Stored Cross-Site Scripting in when entering custom policy conditions. Admin users can store some arbitrary javascript code to be executed when normal us… CWE-79
Cross-site Scripting 		CVE-2016-8751 2024-11-21 11:59 2017-06-15 Show GitHub Exploit DB Packet Storm
264718 5.9 MEDIUM
Network 		apache ranger Apache Ranger before 0.6.3 policy engine incorrectly matches paths in certain conditions when policy does not contain wildcards and has recursion flag set to true. CWE-426
 Untrusted Search Path 		CVE-2016-8746 2024-11-21 11:59 2017-06-15 Show GitHub Exploit DB Packet Storm
264719 6.5 MEDIUM
Network 		cloudfoundry capi-release
cf-release 		An issue was discovered in Cloud Foundry Foundation cf-release versions prior to 250 and CAPI-release versions prior to 1.12.0. A user with the SpaceAuditor role is over-privileged with the ability t… CWE-269
 Improper Privilege Management 		CVE-2016-8219 2024-11-21 11:59 2017-06-13 Show GitHub Exploit DB Packet Storm
264720 9.8 CRITICAL
Network 		cloudfoundry cf-release
routing-release 		An issue was discovered in Cloud Foundry Foundation routing-release versions prior to 0.142.0 and cf-release versions 203 to 231. Incomplete validation logic in JSON Web Token (JWT) libraries can all… CWE-20
 Improper Input Validation  		CVE-2016-8218 2024-11-21 11:59 2017-06-13 Show GitHub Exploit DB Packet Storm