Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
253491 7.5 危険 MH Products - MH Products Pay Pal Shop Digital の view_item.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4846 2011-09-30 14:11 2011-09-27 Show GitHub Exploit DB Packet Storm
253492 7.5 危険 MH Products - MH Products Projekt Shop における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4845 2011-09-30 14:10 2011-09-27 Show GitHub Exploit DB Packet Storm
253493 7.5 危険 MH Products - MH Products Easy Online Shop の content.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4844 2011-09-30 14:10 2011-09-27 Show GitHub Exploit DB Packet Storm
253494 7.5 危険 PHP Web Scripts - PHP Web Scripts Ad Manager Pro の website-page.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4843 2011-09-30 14:09 2011-09-27 Show GitHub Exploit DB Packet Storm
253495 7.5 危険 MH Products - MHP DownloadScript の admin/login.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4842 2011-09-30 14:09 2011-09-27 Show GitHub Exploit DB Packet Storm
253496 10 危険 Interactive Data Corporation. - eSignal の WinSig.exe におけるサービス運用妨害 (クラッシュ) の脆弱性 CWE-119
バッファエラー 		CVE-2011-3494 2011-09-30 14:01 2011-09-16 Show GitHub Exploit DB Packet Storm
253497 5 警告 Cogent Real-Time Systems Inc. - Cogent DataHub における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2011-3501 2011-09-30 13:35 2011-09-16 Show GitHub Exploit DB Packet Storm
253498 10 危険 Progea Srl - Progea Movicon / PowerHMI におけるサービス運用妨害 (メモリ破損およびクラッシュ) の脆弱性 CWE-119
バッファエラー 		CVE-2011-3499 2011-09-30 13:29 2011-09-16 Show GitHub Exploit DB Packet Storm
253499 10 危険 Progea Srl - Progea Movicon / PowerHMI におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-3491 2011-09-30 13:23 2011-09-16 Show GitHub Exploit DB Packet Storm
253500 4.9 警告 baserCMSユーザー会 - BaserCMS におけるアクセス制限不備の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-2674 2011-09-30 12:04 2011-09-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
264631 9.8 CRITICAL
Network 		x.org
fedoraproject 		libxfixes
fedora 		Integer overflow in X.org libXfixes before 5.0.3 on 32-bit platforms might allow remote X servers to gain privileges via a length value of INT_MAX, which triggers the client to stop reading data and … CWE-264
CWE-190
Permissions, Privileges, and Access Controls
 Integer Overflow or Wraparound 		CVE-2016-7944 2024-11-21 11:58 2016-12-14 Show GitHub Exploit DB Packet Storm
264632 9.8 CRITICAL
Network 		fedoraproject
x.org 		fedora
libx11 		The XListFonts function in X.org libX11 before 1.6.4 might allow remote X servers to gain privileges via vectors involving length fields, which trigger out-of-bounds write operations. CWE-787
 Out-of-bounds Write 		CVE-2016-7943 2024-11-21 11:58 2016-12-14 Show GitHub Exploit DB Packet Storm
264633 9.8 CRITICAL
Network 		fedoraproject
x.org 		fedora
libx11 		The XGetImage function in X.org libX11 before 1.6.4 might allow remote X servers to gain privileges via vectors involving image type and geometry, which triggers out-of-bounds read operations. CWE-264
CWE-787
Permissions, Privileges, and Access Controls
 Out-of-bounds Write 		CVE-2016-7942 2024-11-21 11:58 2016-12-14 Show GitHub Exploit DB Packet Storm
264634 5.5 MEDIUM
Local 		mariadb
oracle
wolfssl
debian 		mariadb
mysql
wolfssl
debian_linux 		The C software implementation of AES Encryption and Decryption in wolfSSL (formerly CyaSSL) before 3.9.10 makes it easier for local users to discover AES keys by leveraging cache-bank timing differen… NVD-CWE-noinfo
CVE-2016-7440 2024-11-21 11:58 2016-12-14 Show GitHub Exploit DB Packet Storm
264635 5.5 MEDIUM
Local 		wolfssl wolfssl The C software implementation of RSA in wolfSSL (formerly CyaSSL) before 3.9.10 makes it easier for local users to discover RSA keys by leveraging cache-bank hit differences. CWE-310
Cryptographic Issues 		CVE-2016-7439 2024-11-21 11:58 2016-12-14 Show GitHub Exploit DB Packet Storm
264636 5.5 MEDIUM
Local 		wolfssl wolfssl The C software implementation of ECC in wolfSSL (formerly CyaSSL) before 3.9.10 makes it easier for local users to discover RSA keys by leveraging cache-bank hit differences. CWE-310
Cryptographic Issues 		CVE-2016-7438 2024-11-21 11:58 2016-12-14 Show GitHub Exploit DB Packet Storm
264637 6.0 MEDIUM
Local 		qemu
opensuse 		qemu
leap 		Memory leak in the ehci_process_itd function in hw/usb/hcd-ehci.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (memory consumption) via a large numbe… CWE-772
 Missing Release of Resource after Effective Lifetime 		CVE-2016-7995 2024-11-21 11:58 2016-12-10 Show GitHub Exploit DB Packet Storm
264638 6.0 MEDIUM
Local 		qemu
opensuse 		qemu
leap 		Memory leak in the virtio_gpu_resource_create_2d function in hw/display/virtio-gpu.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (memory consumption… CWE-772
 Missing Release of Resource after Effective Lifetime 		CVE-2016-7994 2024-11-21 11:58 2016-12-10 Show GitHub Exploit DB Packet Storm
264639 6.0 MEDIUM
Local 		qemu
opensuse
redhat 		qemu
leap
openstack
virtualization 		Memory leak in the usb_xhci_exit function in hw/usb/hcd-xhci.c in QEMU (aka Quick Emulator), when the xhci uses msix, allows local guest OS administrators to cause a denial of service (memory consump… CWE-772
 Missing Release of Resource after Effective Lifetime 		CVE-2016-7466 2024-11-21 11:58 2016-12-10 Show GitHub Exploit DB Packet Storm
264640 5.5 MEDIUM
Local 		intel proset\/wireless_software_and_drivers Buffer overflow in Intel PROSet/Wireless Software and Drivers in versions before 19.20.3 allows a local user to crash iframewrk.exe causing a potential denial of service. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-8104 2024-11-21 11:58 2016-12-9 Show GitHub Exploit DB Packet Storm