Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 11, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
253761 9.3 危険 マイクロソフト - 複数の Microsoft 製品における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-3242 2010-10-28 16:33 2010-10-12 Show GitHub Exploit DB Packet Storm
253762 9.3 危険 マイクロソフト - 複数の Microsoft 製品における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-3241 2010-10-28 16:33 2010-10-12 Show GitHub Exploit DB Packet Storm
253763 9.3 危険 マイクロソフト - Microsoft Excel における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-3239 2010-10-28 16:32 2010-10-12 Show GitHub Exploit DB Packet Storm
253764 9.3 危険 マイクロソフト - Microsoft Excel および Microsoft Office における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-3237 2010-10-28 16:32 2010-10-12 Show GitHub Exploit DB Packet Storm
253765 9.3 危険 マイクロソフト - Microsoft Excel における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-3235 2010-10-27 15:17 2010-10-12 Show GitHub Exploit DB Packet Storm
253766 9.3 危険 マイクロソフト - Microsoft Excel における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-3234 2010-10-27 15:17 2010-10-12 Show GitHub Exploit DB Packet Storm
253767 9.3 危険 マイクロソフト - 複数の Microsoft 製品における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-3231 2010-10-27 15:16 2010-10-12 Show GitHub Exploit DB Packet Storm
253768 9.3 危険 マイクロソフト - Microsoft Excel における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2010-3230 2010-10-27 15:16 2010-10-12 Show GitHub Exploit DB Packet Storm
253769 9.3 危険 マイクロソフト - 複数の Microsoft 製品におけるスタックベースのバッファオーバーフローの脆弱性 CWE-94
コード・インジェクション 		CVE-2010-3221 2010-10-27 15:16 2010-10-12 Show GitHub Exploit DB Packet Storm
253770 9.3 危険 マイクロソフト - 複数の Microsoft 製品におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-3214 2010-10-27 15:15 2010-10-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
265631 9.1 CRITICAL
Network 		php php The gdImageRotateInterpolated function in ext/gd/libgd/gd_interpolation.c in PHP before 5.5.31, 5.6.x before 5.6.17, and 7.x before 7.0.2 allows remote attackers to obtain sensitive information or ca… CWE-119
CWE-200
Incorrect Access of Indexable Resource ('Range Error') 
Information Exposure 		CVE-2016-1903 2024-11-21 11:47 2016-01-19 Show GitHub Exploit DB Packet Storm
265632 5.4 MEDIUM
Network 		redhen_project redhen Multiple cross-site scripting (XSS) vulnerabilities in the Redhen module 7.x-1.x before 7.x-1.11 for Drupal allow remote authenticated users with certain access to inject arbitrary web script or HTML… CWE-79
Cross-site Scripting 		CVE-2016-1913 2024-11-21 11:47 2016-01-16 Show GitHub Exploit DB Packet Storm
265633 5.4 MEDIUM
Network 		dolibarr dolibarr Multiple cross-site scripting (XSS) vulnerabilities in Dolibarr ERP/CRM 3.8.3 allow remote authenticated users to inject arbitrary web script or HTML via the (1) lastname, (2) firstname, (3) email, (… CWE-79
Cross-site Scripting 		CVE-2016-1912 2024-11-21 11:47 2016-01-16 Show GitHub Exploit DB Packet Storm
265634 6.1 MEDIUM
Network 		sap netweaver Multiple cross-site scripting (XSS) vulnerabilities in SAP NetWeaver 7.4 allow remote attackers to inject arbitrary web script or HTML via vectors related to the (1) Runtime Workbench (RWB) or (2) Pm… CWE-79
Cross-site Scripting 		CVE-2016-1911 2024-11-21 11:47 2016-01-16 Show GitHub Exploit DB Packet Storm
265635 5.3 MEDIUM
Network 		sap netweaver The User Management Engine (UME) in SAP NetWeaver 7.4 allows attackers to decrypt unspecified data via unknown vectors, aka SAP Security Note 2191290. CWE-200
Information Exposure 		CVE-2016-1910 2024-11-21 11:47 2016-01-16 Show GitHub Exploit DB Packet Storm
265636 9.8 CRITICAL
Network 		fortinet fortios Fortinet FortiAnalyzer before 5.0.12 and 5.2.x before 5.2.5; FortiSwitch 3.3.x before 3.3.3; FortiCache 3.0.x before 3.0.8; and FortiOS 4.1.x before 4.1.11, 4.2.x before 4.2.16, 4.3.x before 4.3.17 a… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-1909 2024-11-21 11:47 2016-01-16 Show GitHub Exploit DB Packet Storm
265637 5.5 MEDIUM
Local 		ffmpeg
canonical
opensuse 		ffmpeg
ubuntu_linux
leap 		FFmpeg 2.x allows remote attackers to conduct cross-origin attacks and read arbitrary files by using the subfile protocol in an HTTP Live Streaming (HLS) M3U8 file, leading to an external HTTP reques… CWE-200
Information Exposure 		CVE-2016-1898 2024-11-21 11:47 2016-01-15 Show GitHub Exploit DB Packet Storm
265638 5.5 MEDIUM
Local 		ffmpeg
canonical
opensuse 		ffmpeg
ubuntu_linux
leap 		FFmpeg 2.x allows remote attackers to conduct cross-origin attacks and read arbitrary files by using the concat protocol in an HTTP Live Streaming (HLS) M3U8 file, leading to an external HTTP request… CWE-200
Information Exposure 		CVE-2016-1897 2024-11-21 11:47 2016-01-15 Show GitHub Exploit DB Packet Storm
265639 9.8 CRITICAL
Network 		debian duck duck before 0.10 did not properly handle loading of untrusted code from the current directory. NVD-CWE-noinfo
CVE-2016-1239 2024-11-21 11:46 2022-02-20 Show GitHub Exploit DB Packet Storm
265640 8.8 HIGH
Network 		lexmark markvision_enterprise Lexmark Markvision Enterprise before 2.3.0 misuses the Apache Commons Collections Library, leading to remote code execution because of Java deserialization. CWE-502
 Deserialization of Untrusted Data 		CVE-2016-1487 2024-11-21 11:46 2020-03-10 Show GitHub Exploit DB Packet Storm