Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 29, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252951 4.3 警告 ut-files - UTStats の pages/match_report.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-5007 2011-12-9 14:14 2011-11-2 Show GitHub Exploit DB Packet Storm
252952 7.5 危険 Denali - BrightSuite Groupware における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-5008 2011-12-9 14:13 2011-11-2 Show GitHub Exploit DB Packet Storm
252953 7.5 危険 ut-files - UTStats の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-5009 2011-12-9 14:12 2011-11-2 Show GitHub Exploit DB Packet Storm
252954 4.3 警告 FullSite Pty Ltd - SchoolMation におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-5010 2011-12-9 14:10 2011-11-2 Show GitHub Exploit DB Packet Storm
252955 7.5 危険 FullSite Pty Ltd - SchoolMation における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-5011 2011-12-9 14:10 2011-11-2 Show GitHub Exploit DB Packet Storm
252956 7.5 危険 David Noguera Gutierrez - DaLogin における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-5012 2011-12-9 14:09 2011-11-2 Show GitHub Exploit DB Packet Storm
252957 7.5 危険 McKenzie Creations - Mckenzie Creations Virtual Real Estate Manager における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-5013 2011-12-9 14:04 2011-11-2 Show GitHub Exploit DB Packet Storm
252958 7.5 危険 ELITE LADDAERS - Elite Gaming Ladders における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-5014 2011-12-9 14:03 2011-11-2 Show GitHub Exploit DB Packet Storm
252959 7.5 危険 2daybiz - 2daybiz Network Community Script における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-5015 2011-12-9 14:00 2011-11-2 Show GitHub Exploit DB Packet Storm
252960 7.5 危険 ELITE LADDAERS - Elite Gaming Ladders における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-5016 2011-12-9 14:00 2011-11-2 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 29, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
264941 7.8 HIGH
Local 		ffmpeg ffmpeg The cavs_idct8_add_c function in libavcodec/cavsdsp.c in FFmpeg before 3.1.4 is vulnerable to reading out-of-bounds memory when decoding with cavs_decode. CWE-125
Out-of-bounds Read 		CVE-2016-7502 2024-11-21 11:58 2016-12-23 Show GitHub Exploit DB Packet Storm
264942 7.8 HIGH
Local 		ffmpeg ffmpeg The ff_log2_16bit_c function in libavutil/intmath.h in FFmpeg before 3.1.4 is vulnerable to reading out-of-bounds memory when it decodes a malformed AIFF file. CWE-125
Out-of-bounds Read 		CVE-2016-7450 2024-11-21 11:58 2016-12-23 Show GitHub Exploit DB Packet Storm
264943 9.8 CRITICAL
Network 		bundler bundler Bundler 1.x might allow remote attackers to inject arbitrary Ruby code into an application by leveraging a gem name collision on a secondary source. NOTE: this might overlap CVE-2013-0334. CWE-94
Code Injection 		CVE-2016-7954 2024-11-21 11:58 2016-12-23 Show GitHub Exploit DB Packet Storm
264944 8.0 HIGH
Adjacent 		technicolor xfinity_gateway_router_dpc3941t_firmware CSRF vulnerability on Technicolor TC dpc3941T (formerly Cisco dpc3941T) devices with firmware dpc3941-P20-18-v303r20421733-160413a-CMCST allows an attacker to change the Wi-Fi password, open the remo… CWE-352
 Origin Validation Error 		CVE-2016-7454 2024-11-21 11:58 2016-12-17 Show GitHub Exploit DB Packet Storm
264945 6.1 MEDIUM
Network 		adobe robohelp Adobe RoboHelp version 2015.0.3 and earlier, RoboHelp 11 and earlier have an input validation issue that could be used in cross-site scripting attacks. CWE-79
Cross-site Scripting 		CVE-2016-7891 2024-11-21 11:58 2016-12-15 Show GitHub Exploit DB Packet Storm
264946 8.8 HIGH
Network 		adobe flash_player_desktop_runtime
flash_player 		Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have security bypass vulnerability in the implementation of the same origin policy. NVD-CWE-noinfo
CVE-2016-7890 2024-11-21 11:58 2016-12-15 Show GitHub Exploit DB Packet Storm
264947 7.5 HIGH
Network 		adobe digital_editions Adobe Digital Editions versions 4.5.2 and earlier has an issue with parsing crafted XML entries that could lead to information disclosure. CWE-200
Information Exposure 		CVE-2016-7889 2024-11-21 11:58 2016-12-15 Show GitHub Exploit DB Packet Storm
264948 5.3 MEDIUM
Network 		adobe digital_editions Adobe Digital Editions versions 4.5.2 and earlier has an important vulnerability that could lead to memory address leak. CWE-200
Information Exposure 		CVE-2016-7888 2024-11-21 11:58 2016-12-15 Show GitHub Exploit DB Packet Storm
264949 7.5 HIGH
Network 		adobe coldfusion_builder Adobe ColdFusion Builder versions 2016 update 2 and earlier, 3.0.3 and earlier have an important vulnerability that could lead to information disclosure. CWE-200
Information Exposure 		CVE-2016-7887 2024-11-21 11:58 2016-12-15 Show GitHub Exploit DB Packet Storm
264950 9.8 CRITICAL
Network 		adobe indesign
indesign_server 		Adobe InDesign version 11.4.1 and earlier, Adobe InDesign Server 11.0.0 and earlier have an exploitable memory corruption vulnerability. Successful exploitation could lead to arbitrary code execution. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-7886 2024-11-21 11:58 2016-12-15 Show GitHub Exploit DB Packet Storm