Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 30, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
253161 4.3 警告 ecoCMS - ecoCMS の admin.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-5046 2011-11-25 11:40 2011-11-23 Show GitHub Exploit DB Packet Storm
253162 7.5 危険 Alephsystem - CMS Ariadna の detResolucion.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-5058 2011-11-25 10:14 2011-11-23 Show GitHub Exploit DB Packet Storm
253163 7.5 危険 Alephsystem - CMS Ariadna の detResolucion.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-5057 2011-11-25 10:13 2011-11-23 Show GitHub Exploit DB Packet Storm
253164 7.5 危険 IXXO Internet Solutions - XOBBIX コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-5053 2011-11-25 10:08 2011-11-23 Show GitHub Exploit DB Packet Storm
253165 4.3 警告 Joomla! - Joomla! におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-4332 2011-11-25 09:39 2011-03-24 Show GitHub Exploit DB Packet Storm
253166 5 警告 Joomla! - Joomla! における任意のユーザのパスワードを変更される脆弱性 CWE-189
数値処理の問題 		CVE-2011-4321 2011-11-25 09:38 2011-10-28 Show GitHub Exploit DB Packet Storm
253167 7.6 危険 アップル - Apple Mac OS X におけるネットワークリソースにアクセスされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-1516 2011-11-24 16:27 2011-11-15 Show GitHub Exploit DB Packet Storm
253168 7.6 危険 アップル - Apple Mac OS X におけるネットワークリソースにアクセスされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-7303 2011-11-24 16:27 2011-11-15 Show GitHub Exploit DB Packet Storm
253169 5 警告 IBM
Apache Software Foundation
アップル
サイバートラスト株式会社
富士通
ヒューレット・パッカード
ターボリナックス
オラクル
日立
レッドハット		 - Apache HTTP Server の mod_cache および mod_dav モジュールにおけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2010-1452 2011-11-24 11:00 2010-07-25 Show GitHub Exploit DB Packet Storm
253170 10 危険 トレンドマイクロ
IBM
Apache Software Foundation
アップル
サイバートラスト株式会社
富士通
ターボリナックス
オラクル
レッドハット		 - APR ライブラリおよび APR-util ライブラリにおける整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2009-2412 2011-11-24 10:57 2009-08-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 30, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
264351 7.5 HIGH
Network 		novell edirectory NDSD in Novell eDirectory before 9.0.2 did not calculate ACLs on LDAP objects across partition boundaries correctly, which could lead to a privilege escalation by modifying user attributes that would… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-9167 2024-11-21 12:00 2017-03-23 Show GitHub Exploit DB Packet Storm
264352 7.5 HIGH
Network 		ca unified_infrastructure_management_snap
unified_infrastructure_management 		The get_sessions servlet in CA Unified Infrastructure Management (formerly CA Nimsoft Monitor) before 8.5 and CA Unified Infrastructure Management Snap (formerly CA Nimsoft Monitor Snap) allows remot… CWE-200
Information Exposure 		CVE-2016-9165 2024-11-21 12:00 2017-03-21 Show GitHub Exploit DB Packet Storm
264353 4.3 MEDIUM
Network 		ibm rational_rhapsody_design_manager IBM Rhapsody DM 4.0, 5.0 and 6.0 contains an undisclosed vulnerability that may allow an authenticated user to upload infected malicious files to the server. IBM Reference #: 1999960. CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2016-8973 2024-11-21 12:00 2017-03-21 Show GitHub Exploit DB Packet Storm
264354 6.1 MEDIUM
Network 		sitecore experience_platform Cross-Site Scripting (XSS) in "/sitecore/client/Applications/List Manager/Taskpages/Contact list" in Sitecore Experience Platform 8.1 rev. 160519 (8.1 Update-3) allows remote attacks via the Name or … CWE-79
Cross-site Scripting 		CVE-2016-8855 2024-11-21 12:00 2017-03-20 Show GitHub Exploit DB Packet Storm
264355 5.4 MEDIUM
Network 		ibm urbancode_deploy IBM UrbanCode Deploy 6.1 and 6.2 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality poten… CWE-79
Cross-site Scripting 		CVE-2016-9006 2024-11-21 12:00 2017-03-9 Show GitHub Exploit DB Packet Storm
264356 5.9 MEDIUM
Network 		f5 big-ip_local_traffic_manager
big-ip_application_acceleration_manager
big-ip_advanced_firewall_manager
big-ip_analytics
big-ip_access_policy_manager
big-ip_application_security_manager<… 		In F5 BIG-IP systems 12.1.0 - 12.1.2, malicious requests made to virtual servers with an HTTP profile can cause the TMM to restart. The issue is exposed with BIG-IP APM profiles, regardless of settin… CWE-284
Improper Access Control 		CVE-2016-9245 2024-11-21 12:00 2017-03-8 Show GitHub Exploit DB Packet Storm
264357 6.5 MEDIUM
Network 		ibm websphere_mq IBM WebSphere MQ 8.0 could allow an authenticated user with queue manager permissions to cause a segmentation fault which would result in the box having to be rebooted to resume normal operations. IB… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-8971 2024-11-21 12:00 2017-03-8 Show GitHub Exploit DB Packet Storm
264358 8.8 HIGH
Network 		ibm tivoli_storage_manager IBM Tivoli Storage Manager (IBM Spectrum Protect) 6.1, 6.2, 6.3, and 7.1 does not perform sufficient authority checking on SQL queries. As a result, an attacker is able to submit SQL queries that acc… CWE-200
Information Exposure 		CVE-2016-8940 2024-11-21 12:00 2017-03-8 Show GitHub Exploit DB Packet Storm
264359 9.8 CRITICAL
Network 		exponentcms exponent_cms SQL injection vulnerability in framework/modules/filedownloads/controllers/filedownloadController.php in Exponent CMS 2.3.9 and earlier allows remote attackers to execute arbitrary SQL commands via t… CWE-89
SQL Injection 		CVE-2016-9087 2024-11-21 12:00 2017-03-8 Show GitHub Exploit DB Packet Storm
264360 9.8 CRITICAL
Network 		exponentcms exponent_cms SQL injection vulnerability in framework/modules/help/controllers/helpController.php in Exponent CMS 2.3.9 and earlier allows remote attackers to execute arbitrary SQL commands via the version parame… CWE-89
SQL Injection 		CVE-2016-9020 2024-11-21 12:00 2017-03-8 Show GitHub Exploit DB Packet Storm