Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 23, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
256001	5.6	警告	オラクル	-	Oracle Solaris における ZFS の処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2010-2392	2010-08-3 19:20	2010-07-13	Show	GitHub Exploit DB Packet Storm

256002	6.2	警告	オラクル	-	Oracle Solaris における rdist の処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2010-0916	2010-08-3 19:20	2010-07-13	Show	GitHub Exploit DB Packet Storm

256003	7.5	危険	OpenBSD FreeBSD オラクル NetBSD	-	複数の製品の ftpd におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2008-4247	2010-08-3 19:19	2008-09-25	Show	GitHub Exploit DB Packet Storm

256004	7.5	危険	ターボリナックス MySQL AB	-	MySQL で使用される yaSSL における複数のスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-4484	2010-08-3 18:59	2009-12-30	Show	GitHub Exploit DB Packet Storm

256005	2.1	注意	オラクル	-	Oracle Database Server の Export コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0901	2010-08-2 19:32	2010-07-13	Show	GitHub Exploit DB Packet Storm

256006	2.6	注意	オラクル	-	Windows 上で稼働する Oracle Database Server の Network Layer コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0900	2010-08-2 19:32	2010-07-13	Show	GitHub Exploit DB Packet Storm

256007	4.3	警告	オラクル	-	Oracle Database Server の Application Express コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0892	2010-08-2 19:32	2010-07-13	Show	GitHub Exploit DB Packet Storm

256008	6	警告	オラクル	-	Oracle Database Server の Oracle OLAP コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0902	2010-08-2 19:31	2010-07-13	Show	GitHub Exploit DB Packet Storm

256009	7.8	危険	オラクル	-	Windows 上で稼働する Oracle Database Server の Net Foundation Layer コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0903	2010-08-2 19:31	2010-07-13	Show	GitHub Exploit DB Packet Storm

256010	7.8	危険	オラクル	-	Oracle Database Server の Listener コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0911	2010-08-2 19:30	2010-07-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
264931	4.8	MEDIUM Network	apache	ranger	Cross-site scripting (XSS) vulnerability in the create user functionality in the policy admin tool in Apache Ranger before 0.6.1 allows remote authenticated administrators to inject arbitrary web scr…	CWE-79 Cross-site Scripting	CVE-2016-5395	2024-11-21 11:54	2016-09-26	Show	GitHub Exploit DB Packet Storm

264932	7.5	HIGH Network	powerdns	authoritative	PowerDNS (aka pdns) Authoritative Server before 3.4.10 does not properly handle a . (dot) inside labels, which allows remote attackers to cause a denial of service (backend CPU consumption) via a cra…	CWE-399 Resource Management Errors	CVE-2016-5427	2024-11-21 11:54	2016-09-21	Show	GitHub Exploit DB Packet Storm

264933	7.5	HIGH Network	powerdns	authoritative	PowerDNS (aka pdns) Authoritative Server before 3.4.10 allows remote attackers to cause a denial of service (backend CPU consumption) via a long qname.	CWE-399 Resource Management Errors	CVE-2016-5426	2024-11-21 11:54	2016-09-21	Show	GitHub Exploit DB Packet Storm

264934	7.5	HIGH Network	redhat oracle libarchive	enterprise_linux_hpc_node enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation linux openshift libarchive enterprise_linux_server_aus enterprise_linux…	The sandboxing code in libarchive 3.2.0 and earlier mishandles hardlink archive entries of non-zero data size, which might allow remote attackers to write to arbitrary files via a crafted archive fil…	CWE-20 CWE-19 Improper Input Validation Data Processing Errors	CVE-2016-5418	2024-11-21 11:54	2016-09-21	Show	GitHub Exploit DB Packet Storm

264935	6.5	MEDIUM Network	freeipa oracle fedoraproject	freeipa linux fedora	The cert_revoke command in FreeIPA does not check for the "revoke certificate" permission, which allows remote authenticated users to revoke arbitrary certificates by leveraging the "retrieve certifi…	CWE-284 Improper Access Control	CVE-2016-5404	2024-11-21 11:54	2016-09-8	Show	GitHub Exploit DB Packet Storm

264936	8.8	HIGH Network	redhat	jboss_operations_network	The web console in Red Hat JBoss Operations Network (JON) before 3.3.7 does not properly authorize requests to add users with the super user role, which allows remote authenticated users to gain admi…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-5422	2024-11-21 11:54	2016-09-8	Show	GitHub Exploit DB Packet Storm

264937	5.3	MEDIUM Network	jose-php_project	jose-php	The RSA 1.5 algorithm implementation in the JOSE_JWE class in JWE.php in jose-php before 2.2.1 lacks the Random Filling protection mechanism, which makes it easier for remote attackers to obtain clea…	CWE-310 CWE-200 Cryptographic Issues Information Exposure	CVE-2016-5430	2024-11-21 11:54	2016-09-4	Show	GitHub Exploit DB Packet Storm

264938	3.7	LOW Network	jose-php_project	jose-php	jose-php before 2.2.1 does not use constant-time operations for HMAC comparison, which makes it easier for remote attackers to obtain sensitive information via a timing attack, related to JWE.php and…	CWE-200 Information Exposure	CVE-2016-5429	2024-11-21 11:54	2016-09-4	Show	GitHub Exploit DB Packet Storm

264939	6.1	MEDIUM Network	python	python	CRLF injection vulnerability in the HTTPConnection.putheader function in urllib2 and urllib in CPython (aka Python) before 2.7.10 and 3.x before 3.4.4 allows remote attackers to inject arbitrary HTTP…	CWE-113 HTTP Response Splitting	CVE-2016-5699	2024-11-21 11:54	2016-09-2	Show	GitHub Exploit DB Packet Storm

264940	9.8	CRITICAL Network	python	python	Integer overflow in the get_data function in zipimport.c in CPython (aka Python) before 2.7.12, 3.x before 3.4.5, and 3.5.x before 3.5.2 allows remote attackers to have unspecified impact via a negat…	CWE-190 Integer Overflow or Wraparound	CVE-2016-5636	2024-11-21 11:54	2016-09-2	Show	GitHub Exploit DB Packet Storm