Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 18, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252921 10 危険 Opera Software ASA - Opera における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2011-2628 2011-08-15 10:51 2011-05-18 Show GitHub Exploit DB Packet Storm
252922 5 警告 Opera Software ASA - Opera の DOM 実装におけるサービス運用妨害 (アプリケーションクラッシュ) の脆弱性 CWE-noinfo
情報不足 		CVE-2011-2627 2011-08-15 10:44 2011-06-28 Show GitHub Exploit DB Packet Storm
252923 4.3 警告 IBM - IBM WebSphere Application Server の暗号化アルゴリズムにおける脆弱性 CWE-310
暗号の問題 		CVE-2011-1209 2011-08-15 10:41 2011-04-15 Show GitHub Exploit DB Packet Storm
252924 10 危険 サイバートラスト株式会社
Mozilla Foundation
レッドハット		 - Mozilla Firefox および SeaMonkey における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2011-0066 2011-08-15 10:32 2011-04-28 Show GitHub Exploit DB Packet Storm
252925 10 危険 サイバートラスト株式会社
Mozilla Foundation
レッドハット		 - Mozilla Firefox および SeaMonkey における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2011-0065 2011-08-15 10:30 2011-04-28 Show GitHub Exploit DB Packet Storm
252926 4.3 警告 マイクロソフト - Internet Explorer におけるウィンドウ偽装の脆弱性 CWE-noinfo
情報不足 		- 2011-08-12 12:01 2011-08-12 Show GitHub Exploit DB Packet Storm
252927 6 警告 レッドハット - レッドハット製品で利用される system-config-firewall の fw_dbus.py における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-2520 2011-08-12 11:09 2011-07-18 Show GitHub Exploit DB Packet Storm
252928 4.4 警告 sysstat
レッドハット		 - sysstat の init スクリプトにおける任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-3852 2011-08-12 11:07 2007-08-14 Show GitHub Exploit DB Packet Storm
252929 6.8 警告 Erik de Castro Lopo
レッドハット		 - libsndfile における整数オーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-2696 2011-08-12 11:06 2011-07-13 Show GitHub Exploit DB Packet Storm
252930 5.8 警告 FUSE
レッドハット		 - FUSE における任意のパス名による mtab エントリを作成される脆弱性 CWE-59
リンク解釈の問題 		CVE-2010-3879 2011-08-12 11:05 2011-01-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
265251 5.5 MEDIUM
Local 		web2py web2py web2py before 2.14.2 allows remote attackers to obtain the session_cookie_key value via a direct request to examples/simple_examples/status. NOTE: this issue can be leveraged by remote attackers to … CWE-200
Information Exposure 		CVE-2016-3954 2024-11-21 11:51 2018-02-7 Show GitHub Exploit DB Packet Storm
265252 9.8 CRITICAL
Network 		web2py web2py The sample web application in web2py before 2.14.2 might allow remote attackers to execute arbitrary code via vectors involving use of a hardcoded encryption key when calling the session.connect func… CWE-798
 Use of Hard-coded Credentials 		CVE-2016-3953 2024-11-21 11:51 2018-02-7 Show GitHub Exploit DB Packet Storm
265253 7.8 HIGH
Local 		web2py web2py web2py before 2.14.1, when using the standalone version, allows remote attackers to obtain environment variable values via a direct request to examples/template_examples/beautify. NOTE: this issue c… CWE-255
Credentials Management 		CVE-2016-3952 2024-11-21 11:51 2018-02-7 Show GitHub Exploit DB Packet Storm
265254 9.8 CRITICAL
Network 		jython_project
debian 		jython
debian_linux 		Jython before 2.7.1rc1 allows attackers to execute arbitrary code via a crafted serialized PyFunction object. CWE-502
 Deserialization of Untrusted Data 		CVE-2016-4000 2024-11-21 11:51 2017-07-7 Show GitHub Exploit DB Packet Storm
265255 8.1 HIGH
Network 		netapp altavault NetApp AltaVault 4.1 and earlier allows man-in-the-middle attackers to obtain sensitive information, gain privileges, or cause a denial of service via vectors related to the SMB protocol. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-3998 2024-11-21 11:51 2017-07-4 Show GitHub Exploit DB Packet Storm
265256 7.5 HIGH
Network 		netapp clustered_data_ontap NetApp Clustered Data ONTAP allows man-in-the-middle attackers to obtain sensitive information, gain privileges, or cause a denial of service by leveraging failure to enable SMB signing enforcement i… CWE-254
 7PK - Security Features 		CVE-2016-3997 2024-11-21 11:51 2017-07-4 Show GitHub Exploit DB Packet Storm
265257 7.8 HIGH
Local 		extplorer extplorer Directory traversal vulnerability in unzip/extract feature in eXtplorer 2.1.9 allows remote attackers to execute arbitrary files via a .. (dot dot) in an archive file. CWE-22
Path Traversal 		CVE-2016-4313 2024-11-21 11:51 2017-04-25 Show GitHub Exploit DB Packet Storm
265258 6.1 MEDIUM
Network 		opera opera_mini
opera_browser 		Opera Mini 13 and Opera Stable 36 allow remote attackers to spoof the displayed URL via a crafted HTML document, related to the about:blank URL. CWE-601
Open Redirect 		CVE-2016-4075 2024-11-21 11:51 2017-04-21 Show GitHub Exploit DB Packet Storm
265259 7.8 HIGH
Local 		hancom hancom_office_2014 Multiple heap-based buffer overflows in the (1) CBookBase::SetDefTableStyle and (2) CBookBase::SetDefPivotStyle functions in Hancom Office 2014 VP allow remote attackers to execute arbitrary code via… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-4293 2024-11-21 11:51 2017-04-21 Show GitHub Exploit DB Packet Storm
265260 4.6 MEDIUM
Physics 		samsung galaxy_s6_firmware
galaxy_note_3_firmware
galaxy_s4_mini_firmware
galaxy_s4_mini_lte_firmware
galaxy_s4_firmware 		Samsung SM-G920F build G920FXXU2COH2 (Galaxy S6), SM-N9005 build N9005XXUGBOK6 (Galaxy Note 3), GT-I9192 build I9192XXUBNB1 (Galaxy S4 mini), GT-I9195 build I9195XXUCOL1 (Galaxy S4 mini LTE), and GT-… CWE-284
Improper Access Control 		CVE-2016-4032 2024-11-21 11:51 2017-04-14 Show GitHub Exploit DB Packet Storm