Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 13, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
253521	4.3	警告	アップル	-	Apple Safari の WebKit における任意のキー操作を強制される脆弱性	CWE-Other その他	CVE-2010-1422	2010-12-10 14:37	2010-06-10	Show	GitHub Exploit DB Packet Storm

253522	4.3	警告	アップル	-	Apple Safari の WebKit におけるクリップボードを変更される脆弱性	CWE-DesignError	CVE-2010-1421	2010-12-10 14:37	2010-06-10	Show	GitHub Exploit DB Packet Storm

253523	4.3	警告	アップル	-	Apple Safari の WebKit におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-1418	2010-12-10 14:35	2010-06-10	Show	GitHub Exploit DB Packet Storm

253524	9.3	危険	アップル	-	Apple Safari の WebKit の Cascading Style Sheets 実装における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-1417	2010-12-10 14:35	2010-06-10	Show	GitHub Exploit DB Packet Storm

253525	4.3	警告	アップル	-	Apple Safari の WebKit における他のサイトから画像を読まれる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-1416	2010-12-10 14:35	2010-06-10	Show	GitHub Exploit DB Packet Storm

253526	9.3	危険	アップル	-	Apple Safari の WebKit における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-1415	2010-12-10 14:33	2010-06-10	Show	GitHub Exploit DB Packet Storm

253527	9.3	危険	アップル	-	Apple Safari の WebKit における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2010-1414	2010-12-10 14:32	2010-06-10	Show	GitHub Exploit DB Packet Storm

253528	9.3	危険	アップル	-	Apple Safari の WebKit における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-1410	2010-12-10 14:32	2010-06-10	Show	GitHub Exploit DB Packet Storm

253529	4.3	警告	アップル	-	Apple Safari の WebKit における制限を回避される脆弱性	CWE-189 CWE-264	CVE-2010-1408	2010-12-10 14:31	2010-06-10	Show	GitHub Exploit DB Packet Storm

253530	4.3	警告	アップル	-	Apple iOS の WebKit における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2010-1407	2010-12-10 14:31	2010-06-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
265551	7.2	HIGH Network	irz	ruh2	iRZ RUH2 before 2b does not validate firmware patches, which allows remote authenticated users to modify data or cause a denial of service via unspecified vectors.	CWE-345 Insufficient Verification of Data Authenticity	CVE-2016-2309	2024-11-21 11:48	2016-05-30	Show	GitHub Exploit DB Packet Storm

265552	4.7	MEDIUM Network	cmsmadesimple	cms_made_simple	CMS Made Simple 2.x before 2.1.3 and 1.x before 1.12.2, when Smarty Cache is activated, allow remote attackers to conduct cache poisoning attacks, modify links, and conduct cross-site scripting (XSS)…	CWE-79 Cross-site Scripting	CVE-2016-2784	2024-11-21 11:48	2016-05-26	Show	GitHub Exploit DB Packet Storm

265553	7.8	HIGH Local	huawei	mobile_broadband_hl_service	The Huawei Mobile Broadband HL Service 22.001.25.00.03 and earlier uses a weak ACL for the MobileBrServ program data directory, which allows local users to gain SYSTEM privileges by modifying VERSION…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-2855	2024-11-21 11:48	2016-05-24	Show	GitHub Exploit DB Packet Storm

265554	5.3	MEDIUM Network	moodle	moodle	Moodle through 2.6.11, 2.7.x before 2.7.13, 2.8.x before 2.8.11, 2.9.x before 2.9.5, and 3.0.x before 3.0.3 does not properly restrict links, which allows remote attackers to obtain sensitive URL inf…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-2190	2024-11-21 11:48	2016-05-23	Show	GitHub Exploit DB Packet Storm

265555	8.6	HIGH Network	wordpress	wordpress	The wp_http_validate_url function in wp-includes/http.php in WordPress before 4.4.2 allows remote attackers to conduct server-side request forgery (SSRF) attacks via a zero value in the first octet o…	NVD-CWE-Other	CVE-2016-2222	2024-11-21 11:48	2016-05-22	Show	GitHub Exploit DB Packet Storm

265556	7.4	HIGH Network	wordpress	wordpress	Open redirect vulnerability in the wp_validate_redirect function in wp-includes/pluggable.php in WordPress before 4.4.2 allows remote attackers to redirect users to arbitrary web sites and conduct ph…	NVD-CWE-Other	CVE-2016-2221	2024-11-21 11:48	2016-05-22	Show	GitHub Exploit DB Packet Storm

265557	9.1	CRITICAL Network	symantec	anti-virus_engine	The kernel component in Symantec Anti-Virus Engine (AVE) 20151.1 before 20151.1.1.4 allows remote attackers to execute arbitrary code or cause a denial of service (memory access violation and system …	CWE-399 Resource Management Errors	CVE-2016-2208	2024-11-21 11:48	2016-05-19	Show	GitHub Exploit DB Packet Storm

265558	9.8	CRITICAL Network	php	php	Stack-based buffer overflow in ext/phar/tar.c in PHP before 5.5.32, 5.6.x before 5.6.18, and 7.x before 7.0.3 allows remote attackers to cause a denial of service (application crash) or possibly have…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-2554	2024-11-21 11:48	2016-05-16	Show	GitHub Exploit DB Packet Storm

265559	9.8	CRITICAL Network	meteocontrol	web\'log_pro web\'log_pro_unlimited web\'log_basic_100 web\'log_light	Meteocontrol WEB'log Basic 100, Light, Pro, and Pro Unlimited allows remote attackers to obtain sensitive cleartext information via unspecified vectors.	CWE-200 Information Exposure	CVE-2016-2298	2024-11-21 11:48	2016-05-15	Show	GitHub Exploit DB Packet Storm

265560	9.4	CRITICAL Network	meteocontrol	web\'log_pro web\'log_pro_unlimited web\'log_basic_100 web\'log_light	Meteocontrol WEB'log Basic 100, Light, Pro, and Pro Unlimited allows remote attackers to execute arbitrary commands via an "access command shell-like feature."	NVD-CWE-noinfo	CVE-2016-2297	2024-11-21 11:48	2016-05-15	Show	GitHub Exploit DB Packet Storm