Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 1, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
253151	7.5	危険	MH Products	-	MH Products kleinanzeigenmarkt における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-5062	2011-11-25 11:50	2011-11-23	Show	GitHub Exploit DB Packet Storm

253152	7.5	危険	RSStatic	-	RSStatic の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-5061	2011-11-25 11:49	2011-11-23	Show	GitHub Exploit DB Packet Storm

253153	7.5	危険	Nus	-	NUs Newssystem の Nus.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-5060	2011-11-25 11:49	2011-11-23	Show	GitHub Exploit DB Packet Storm

253154	7.5	危険	CMScout	-	CMScout の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-5059	2011-11-25 11:48	2011-11-23	Show	GitHub Exploit DB Packet Storm

253155	7.5	危険	GBU grafici	-	GBU Facebook コンポーネントにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-5056	2011-11-25 11:47	2011-11-23	Show	GitHub Exploit DB Packet Storm

253156	7.5	危険	Almnzm	-	Almnzm の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-5055	2011-11-25 11:46	2011-11-23	Show	GitHub Exploit DB Packet Storm

253157	4.3	警告	JAMWiki	-	JAMWiki の Special:Login におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-5054	2011-11-25 11:46	2010-04-1	Show	GitHub Exploit DB Packet Storm

253158	4.3	警告	The GetSimple Team	-	GetSimple CMS の admin/components.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-5052	2011-11-25 11:45	2011-11-23	Show	GitHub Exploit DB Packet Storm

253159	4.3	警告	razorCMS	-	razorCMS の admin/core/admin_func.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-5051	2011-11-25 11:44	2011-11-23	Show	GitHub Exploit DB Packet Storm

253160	4.3	警告	Zoho Corporation	-	ManageEngine ADManager Plus におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-5050	2011-11-25 11:43	2011-11-23	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
264241	9.8	CRITICAL Network	pivotal_software	gemfire_for_pivotal_cloud_foundry	An issue was discovered in Pivotal GemFire for PCF 1.6.x versions prior to 1.6.5 and 1.7.x versions prior to 1.7.1. The gfsh (Geode Shell) endpoint, used by operators and application developers to co…	CWE-200 CWE-254 Information Exposure 7PK - Security Features	CVE-2016-9885	2024-11-21 12:01	2017-01-7	Show	GitHub Exploit DB Packet Storm

264242	7.5	HIGH Network	vmware ibm	spring_security websphere_application_server	An issue was discovered in Pivotal Spring Security before 3.2.10, 4.1.x before 4.1.4, and 4.2.x before 4.2.1. Spring Security does not consider URL path parameters when processing security constraint…	CWE-417 Channel and Path Errors	CVE-2016-9879	2024-11-21 12:01	2017-01-7	Show	GitHub Exploit DB Packet Storm

264243	5.5	MEDIUM Local	emc	scaleio	An issue was discovered in EMC ScaleIO versions before 2.0.1.1. Incorrect permissions on the SCINI driver may allow a low-privileged local attacker to modify the configuration and render the ScaleIO …	CWE-275 Permission Issues	CVE-2016-9869	2024-11-21 12:01	2017-01-7	Show	GitHub Exploit DB Packet Storm

264244	5.5	MEDIUM Local	emc	scaleio	An issue was discovered in EMC ScaleIO versions before 2.0.1.1. A low-privileged local attacker may cause a denial-of-service by generating a kernel panic in the SCINI driver using IOCTL calls which …	CWE-254 7PK - Security Features	CVE-2016-9868	2024-11-21 12:01	2017-01-7	Show	GitHub Exploit DB Packet Storm

264245	8.8	HIGH Local	emc	scaleio	An issue was discovered in EMC ScaleIO versions before 2.0.1.1. A low-privileged local attacker may be able to modify the kernel memory in the SCINI driver and may achieve code execution to escalate …	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-9867	2024-11-21 12:01	2017-01-7	Show	GitHub Exploit DB Packet Storm

264246	7.8	HIGH Local	linux	linux_kernel	The ring_buffer_resize function in kernel/trace/ring_buffer.c in the profiling subsystem in the Linux kernel before 4.6.1 mishandles certain integer calculations, which allows local users to gain pri…	CWE-190 Integer Overflow or Wraparound	CVE-2016-9754	2024-11-21 12:01	2017-01-5	Show	GitHub Exploit DB Packet Storm

264247	6.5	MEDIUM Local	qemu	qemu	QEMU (aka Quick Emulator) built with the Virtio GPU Device emulator support is vulnerable to a memory leakage issue. It could occur while updating the cursor data in update_cursor_data_virgl. A guest…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-9846	2024-11-21 12:01	2016-12-30	Show	GitHub Exploit DB Packet Storm

264248	6.5	MEDIUM Local	qemu	qemu	QEMU (aka Quick Emulator) built with the Virtio GPU Device emulator support is vulnerable to an information leakage issue. It could occur while processing 'VIRTIO_GPU_CMD_GET_CAPSET_INFO' command. A …	CWE-200 Information Exposure	CVE-2016-9845	2024-11-21 12:01	2016-12-30	Show	GitHub Exploit DB Packet Storm

264249	5.5	MEDIUM Local	qemu debian	qemu debian_linux	QEMU (aka Quick Emulator) built with the ColdFire Fast Ethernet Controller emulator support is vulnerable to an infinite loop issue. It could occur while receiving packets in 'mcf_fec_receive'. A pri…	CWE-835 Loop with Unreachable Exit Condition ('Infinite Loop')	CVE-2016-9776	2024-11-21 12:01	2016-12-30	Show	GitHub Exploit DB Packet Storm

264250	5.4	MEDIUM Network	dotclear	dotclear	Cross-site scripting (XSS) vulnerability in admin/media.php and admin/media_item.php in Dotclear before 2.11 allows remote authenticated users to inject arbitrary web script or HTML via the upfiletit…	CWE-79 Cross-site Scripting	CVE-2016-9891	2024-11-21 12:01	2016-12-30	Show	GitHub Exploit DB Packet Storm