Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
255781	4.3	警告	Google	-	Google Chrome における javascript: URI をブロックしない脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-2352	2010-10-19 14:50	2009-02-3	Show	GitHub Exploit DB Packet Storm

255782	9.3	危険	Google	-	Google Chrome の browser kernel におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-2121	2010-10-19 14:50	2009-06-22	Show	GitHub Exploit DB Packet Storm

255783	6.8	警告	Google	-	Google Chrome における任意の https サイトになりすまされる脆弱性	CWE-287 不適切な認証	CVE-2009-2071	2010-10-19 14:49	2009-03-23	Show	GitHub Exploit DB Packet Storm

255784	6.4	警告	The PHP Group	-	PHP の zend_ini.c 内にある zend_restore_ini_entry_cb 関数における重要な情報を取得される脆弱性	CWE-Other その他	CVE-2009-2626	2010-10-18 15:22	2009-12-1	Show	GitHub Exploit DB Packet Storm

255785	4	警告	オラクル	-	Oracle iPlanet Web Server におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2010-3544	2010-10-18 12:03	2010-10-18	Show	GitHub Exploit DB Packet Storm

255786	5	警告	ISC, Inc.	-	BIND の ACL の処理に問題	CWE-264 認可・権限・アクセス制御	CVE-2010-0218	2010-10-15 13:24	2010-10-1	Show	GitHub Exploit DB Packet Storm

255787	5.1	警告	K2 Software	-	K2Editor における実行ファイル読み込みに関する脆弱性	CWE-Other その他	CVE-2010-3156	2010-10-15 11:22	2010-10-15	Show	GitHub Exploit DB Packet Storm

255788	6.8	警告	kMonos.NET	-	XacRett における実行ファイル読み込みに関する脆弱性	CWE-Other その他	CVE-2010-3157	2010-10-15 11:22	2010-10-15	Show	GitHub Exploit DB Packet Storm

255789	5	警告	The PHP Group	-	PHP における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2010-2101	2010-10-14 16:20	2010-05-26	Show	GitHub Exploit DB Packet Storm

255790	9.3	危険	レッドハット	-	Winamp および libmikmod の IN_MOD.DLL におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-3996	2010-10-14 16:19	2009-12-18	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
264811	7.8	HIGH Local	siemens	sinema_server	Siemens SINEMA Server uses weak permissions for the application folder, which allows local users to gain privileges via unspecified vectors.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-6486	2024-11-21 11:56	2016-08-8	Show	GitHub Exploit DB Packet Storm

264812	7.5	HIGH Network	openbsd fedoraproject	openssh fedora	The auth_password function in auth-passwd.c in sshd in OpenSSH before 7.3 does not limit password lengths for password authentication, which allows remote attackers to cause a denial of service (cryp…	CWE-20 Improper Input Validation	CVE-2016-6515	2024-11-21 11:56	2016-08-8	Show	GitHub Exploit DB Packet Storm

264813	8.8	HIGH Network	wordpress	wordpress	Cross-site request forgery (CSRF) vulnerability in the wp_ajax_wp_compression_test function in wp-admin/includes/ajax-actions.php in WordPress before 4.5 allows remote attackers to hijack the authent…	CWE-352 Origin Validation Error	CVE-2016-6635	2024-11-21 11:56	2016-08-8	Show	GitHub Exploit DB Packet Storm

264814	6.1	MEDIUM Network	wordpress	wordpress	Cross-site scripting (XSS) vulnerability in the network settings page in WordPress before 4.5 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.	CWE-79 Cross-site Scripting	CVE-2016-6634	2024-11-21 11:56	2016-08-8	Show	GitHub Exploit DB Packet Storm

264815	5.9	MEDIUM Network	wireshark	wireshark	epan/dissectors/packet-wbxml.c in the WBXML dissector in Wireshark 2.x before 2.0.5 does not restrict the recursion depth, which allows remote attackers to cause a denial of service (application cras…	CWE-399 Resource Management Errors	CVE-2016-6513	2024-11-21 11:56	2016-08-7	Show	GitHub Exploit DB Packet Storm

264816	5.9	MEDIUM Network	wireshark	wireshark	epan/dissectors/packet-wap.c in Wireshark 2.x before 2.0.5 omits an overflow check in the tvb_get_guintvar function, which allows remote attackers to cause a denial of service (infinite loop) via a c…	CWE-20 Improper Input Validation	CVE-2016-6512	2024-11-21 11:56	2016-08-7	Show	GitHub Exploit DB Packet Storm

264817	5.9	MEDIUM Network	wireshark	wireshark	epan/proto.c in Wireshark 1.12.x before 1.12.13 and 2.x before 2.0.5 allows remote attackers to cause a denial of service (OpenFlow dissector large loop) via a crafted packet.	CWE-399 Resource Management Errors	CVE-2016-6511	2024-11-21 11:56	2016-08-7	Show	GitHub Exploit DB Packet Storm

264818	5.9	MEDIUM Network	wireshark	wireshark	Off-by-one error in epan/dissectors/packet-rlc.c in the RLC dissector in Wireshark 1.12.x before 1.12.13 and 2.x before 2.0.5 allows remote attackers to cause a denial of service (stack-based buffer …	CWE-189 Numeric Errors	CVE-2016-6510	2024-11-21 11:56	2016-08-7	Show	GitHub Exploit DB Packet Storm

264819	5.9	MEDIUM Network	wireshark	wireshark	epan/dissectors/packet-ldss.c in the LDSS dissector in Wireshark 1.12.x before 1.12.13 and 2.x before 2.0.5 mishandles conversations, which allows remote attackers to cause a denial of service (appli…	CWE-20 Improper Input Validation	CVE-2016-6509	2024-11-21 11:56	2016-08-7	Show	GitHub Exploit DB Packet Storm

264820	5.9	MEDIUM Network	wireshark	wireshark	epan/dissectors/packet-rlc.c in the RLC dissector in Wireshark 1.12.x before 1.12.13 and 2.x before 2.0.5 uses an incorrect integer data type, which allows remote attackers to cause a denial of servi…	CWE-399 Resource Management Errors	CVE-2016-6508	2024-11-21 11:56	2016-08-7	Show	GitHub Exploit DB Packet Storm