Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 7, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
253431 7.5 危険 NetArt Media - NetArt Media iBoutique における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-5020 2011-12-9 13:56 2011-11-2 Show GitHub Exploit DB Packet Storm
253432 7.5 危険 Cramer Development - Digital Interchange Document Library における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-5021 2011-12-9 13:56 2011-11-2 Show GitHub Exploit DB Packet Storm
253433 7.5 危険 Jextensions - Joomla! 用 JExtensions JE Story Submit コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-5022 2011-12-9 13:55 2011-11-2 Show GitHub Exploit DB Packet Storm
253434 7.5 危険 Cramer Development - Digital Interchange Calendar における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-5023 2011-12-9 13:54 2011-11-2 Show GitHub Exploit DB Packet Storm
253435 6 警告 CuteSITE - CuteSITE CMS における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-5024 2011-12-9 13:54 2011-11-2 Show GitHub Exploit DB Packet Storm
253436 4.3 警告 CuteSITE - CuteSITE CMS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-5025 2011-12-9 13:50 2011-11-2 Show GitHub Exploit DB Packet Storm
253437 6.8 警告 Lightbox Technologies Inc. - Science Fair In A Box における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-5026 2011-12-9 13:50 2011-11-2 Show GitHub Exploit DB Packet Storm
253438 4.3 警告 Lightbox Technologies Inc. - Science Fair In A Box におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-5027 2011-12-9 13:49 2011-11-2 Show GitHub Exploit DB Packet Storm
253439 7.5 危険 Jextensions - Joomla! 用 JExtensions JE Job のコンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-5028 2011-12-9 13:48 2011-11-2 Show GitHub Exploit DB Packet Storm
253440 7.5 危険 codefabrik gmbh - Ecomat CMS における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-5029 2011-12-9 13:47 2011-11-2 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 7, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
259811 5.3 MEDIUM
Network 		easyquick_project easyquick easyquick is a simple web server. easyquick is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url. Access is constrained, however, to s… CWE-22
Path Traversal 		CVE-2017-16109 2024-11-21 12:15 2018-06-7 Show GitHub Exploit DB Packet Storm
259812 7.5 HIGH
Network 		gaoxiaotingtingting_project gaoxiaotingtingting gaoxiaotingtingting is an HTTP server. gaoxiaotingtingting is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url. CWE-22
Path Traversal 		CVE-2017-16108 2024-11-21 12:15 2018-06-7 Show GitHub Exploit DB Packet Storm
259813 7.5 HIGH
Network 		pooledwebsocket_project pooledwebsocket pooledwebsocket is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url. CWE-22
Path Traversal 		CVE-2017-16107 2024-11-21 12:15 2018-06-7 Show GitHub Exploit DB Packet Storm
259814 7.5 HIGH
Network 		tmock_project tmock tmock is a static file server. tmock is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url. CWE-22
Path Traversal 		CVE-2017-16106 2024-11-21 12:15 2018-06-7 Show GitHub Exploit DB Packet Storm
259815 7.5 HIGH
Network 		serverwzl_project serverwzl serverwzl is a simple http server. serverwzl is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the URL. CWE-22
Path Traversal 		CVE-2017-16105 2024-11-21 12:15 2018-06-7 Show GitHub Exploit DB Packet Storm
259816 7.5 HIGH
Network 		citypredict.whauwiller_project citypredict.whauwiller citypredict.whauwiller is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url. CWE-22
Path Traversal 		CVE-2017-16104 2024-11-21 12:15 2018-06-7 Show GitHub Exploit DB Packet Storm
259817 7.5 HIGH
Network 		serveryztyzt_project serveryztyzt serveryztyzt is a simple http server. serveryztyzt is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the URL. CWE-22
Path Traversal 		CVE-2017-16103 2024-11-21 12:15 2018-06-7 Show GitHub Exploit DB Packet Storm
259818 7.5 HIGH
Network 		serverhuwenhui_project serverhuwenhui serverhuwenhui is a simple http server. serverhuwenhui is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the URL. CWE-22
Path Traversal 		CVE-2017-16102 2024-11-21 12:15 2018-06-7 Show GitHub Exploit DB Packet Storm
259819 7.5 HIGH
Network 		serverwg_project serverwg serverwg is a simple http server. serverwg is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the URL. CWE-22
Path Traversal 		CVE-2017-16101 2024-11-21 12:15 2018-06-7 Show GitHub Exploit DB Packet Storm
259820 9.8 CRITICAL
Network 		dns-sync_project dns-sync dns-sync is a sync/blocking dns resolver. If untrusted user input is allowed into the resolve() method then command injection is possible. CWE-77
Command Injection 		CVE-2017-16100 2024-11-21 12:15 2018-06-7 Show GitHub Exploit DB Packet Storm