Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 17, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
253671 5 警告 The PHP Group
レッドハット		 - Libmbfl の mb_strcut 関数における重要な情報を取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-4156 2011-02-18 15:07 2010-11-10 Show GitHub Exploit DB Packet Storm
253672 6.8 警告 The PHP Group
サイバートラスト株式会社
レッドハット		 - PHP の xml_utf8_decode 関数における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2009-5016 2011-02-18 15:03 2010-11-12 Show GitHub Exploit DB Packet Storm
253673 6.8 警告 The PHP Group - PHP の set_magic_quotes_runtime 関数における SQL インジェクション攻撃を誘導される脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4700 2011-02-18 14:42 2010-07-1 Show GitHub Exploit DB Packet Storm
253674 7.5 危険 The PHP Group - PHP の iconv_mime_decode_headers 関数におけるスパムの検出を回避される脆弱性 CWE-189
数値処理の問題 		CVE-2010-4699 2011-02-18 14:40 2010-09-28 Show GitHub Exploit DB Packet Storm
253675 5 警告 The PHP Group - PHP の GD 拡張モジュールにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-4698 2011-02-18 14:38 2010-12-7 Show GitHub Exploit DB Packet Storm
253676 6.8 警告 The PHP Group - PHP の Zend Engine におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2010-4697 2011-02-18 14:35 2010-09-18 Show GitHub Exploit DB Packet Storm
253677 1 注意 サン・マイクロシステムズ - Oracle Sun Java System Portal Server のプロキシにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-4431 2011-02-18 14:30 2011-01-18 Show GitHub Exploit DB Packet Storm
253678 3.6 注意 オラクル - Oracle Solaris 9 の XScreenSaver における脆弱性 CWE-noinfo
情報不足 		CVE-2010-3586 2011-02-18 14:28 2011-01-18 Show GitHub Exploit DB Packet Storm
253679 3.6 注意 オラクル - Oracle Solaris 10 の Fault Manager Daemon における脆弱性 CWE-noinfo
情報不足 		CVE-2010-4460 2011-02-18 14:11 2011-01-18 Show GitHub Exploit DB Packet Storm
253680 4.1 警告 オラクル - Oracle Solaris 11 Express の ZFS における脆弱性 CWE-noinfo
情報不足 		CVE-2010-4458 2011-02-18 14:08 2011-01-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 17, 2026, 4:15 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
265181 5.4 MEDIUM
Network 		huawei policy_center Cross-site scripting (XSS) vulnerability in Huawei Policy Center before V100R003C10SPC020 allows remote authenticated users to inject arbitrary web script or HTML via vectors related to "special char… CWE-79
Cross-site Scripting 		CVE-2016-4058 2024-11-21 11:51 2016-09-28 Show GitHub Exploit DB Packet Storm
265182 9.8 CRITICAL
Network 		iperf3_project
novell
opensuse
debian 		iperf3
suse_package_hub_for_suse_linux_enterprise
leap
opensuse
debian_linux 		The parse_string function in cjson.c in the cJSON library mishandles UTF8/16 strings, which allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a non-hex charac… CWE-120
Classic Buffer Overflow 		CVE-2016-4303 2024-11-21 11:51 2016-09-26 Show GitHub Exploit DB Packet Storm
265183 7.8 HIGH
Local 		oracle
libtiff 		vm_server
libtiff 		Heap-based buffer overflow in the loadImage function in the tiffcrop tool in LibTIFF 4.0.6 and earlier allows remote attackers to cause a denial of service (out-of-bounds write) or execute arbitrary … CWE-119
CWE-787
Incorrect Access of Indexable Resource ('Range Error') 
 Out-of-bounds Write 		CVE-2016-3991 2024-11-21 11:51 2016-09-22 Show GitHub Exploit DB Packet Storm
265184 7.8 HIGH
Local 		libtiff
oracle 		libtiff
vm_server 		Heap-based buffer overflow in the horizontalDifference8 function in tif_pixarlog.c in LibTIFF 4.0.6 and earlier allows remote attackers to cause a denial of service (crash) or execute arbitrary code … CWE-119
CWE-787
Incorrect Access of Indexable Resource ('Range Error') 
 Out-of-bounds Write 		CVE-2016-3990 2024-11-21 11:51 2016-09-22 Show GitHub Exploit DB Packet Storm
265185 7.8 HIGH
Local 		redhat
libarchive 		enterprise_linux_desktop
enterprise_linux_server_aus
enterprise_linux_workstation
enterprise_linux_server
enterprise_linux_hpc_node
enterprise_linux_server_eus
enterprise_linux_hpc_… 		Heap-based buffer overflow in the parse_codes function in archive_read_support_format_rar.c in libarchive before 3.2.1 allows remote attackers to execute arbitrary code via a RAR file with a zero-siz… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-4302 2024-11-21 11:51 2016-09-21 Show GitHub Exploit DB Packet Storm
265186 7.8 HIGH
Local 		libarchive libarchive Stack-based buffer overflow in the parse_device function in archive_read_support_format_mtree.c in libarchive before 3.2.1 allows remote attackers to execute arbitrary code via a crafted mtree file. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-4301 2024-11-21 11:51 2016-09-21 Show GitHub Exploit DB Packet Storm
265187 7.8 HIGH
Local 		libarchive
redhat 		libarchive
enterprise_linux_desktop
enterprise_linux_server_aus
enterprise_linux_workstation
enterprise_linux_server
enterprise_linux_hpc_node
enterprise_linux_server_eus
enterpr… 		Integer overflow in the read_SubStreamsInfo function in archive_read_support_format_7zip.c in libarchive before 3.2.1 allows remote attackers to execute arbitrary code via a 7zip file with a large nu… CWE-190
 Integer Overflow or Wraparound 		CVE-2016-4300 2024-11-21 11:51 2016-09-21 Show GitHub Exploit DB Packet Storm
265188 8.3 HIGH
Network 		hp performance_center HPE Performance Center 11.52, 12.00, 12.01, 12.20, and 12.50 allows remote attackers to bypass intended access restrictions via unspecified vectors, related to a "remote user validation failure" issu… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-4382 2024-11-21 11:51 2016-09-21 Show GitHub Exploit DB Packet Storm
265189 9.8 CRITICAL
Network 		adobe digital_editions Use-after-free vulnerability in Adobe Digital Editions before 4.5.2 allows attackers to execute arbitrary code via unspecified vectors. CWE-416
 Use After Free 		CVE-2016-4263 2024-11-21 11:51 2016-09-16 Show GitHub Exploit DB Packet Storm
265190 9.8 CRITICAL
Network 		adobe digital_editions Adobe Digital Editions before 4.5.2 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-4256, … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-4262 2024-11-21 11:51 2016-09-16 Show GitHub Exploit DB Packet Storm