Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 23, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
256581	9.3	危険	マイクロソフト	-	複数の Microsoft 製品における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-0263	2010-03-19 10:28	2010-03-9	Show	GitHub Exploit DB Packet Storm

256582	9.3	危険	マイクロソフト	-	複数の Microsoft 製品における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-0262	2010-03-19 10:28	2010-03-9	Show	GitHub Exploit DB Packet Storm

256583	9.3	危険	マイクロソフト	-	複数の Microsoft 製品におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0261	2010-03-19 10:28	2010-03-9	Show	GitHub Exploit DB Packet Storm

256584	9.3	危険	マイクロソフト	-	複数の Microsoft 製品におけるヒープベースのバッファオーバーフローの脆弱性	CWE-94 コード・インジェクション	CVE-2010-0260	2010-03-19 10:28	2010-03-9	Show	GitHub Exploit DB Packet Storm

256585	9.3	危険	マイクロソフト	-	複数の Microsoft 製品における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-0258	2010-03-19 10:27	2010-03-9	Show	GitHub Exploit DB Packet Storm

256586	9.3	危険	マイクロソフト	-	複数の Microsoft 製品における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-0264	2010-03-19 10:27	2010-03-9	Show	GitHub Exploit DB Packet Storm

256587	9.3	危険	マイクロソフト	-	Microsoft Office Excel における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-0257	2010-03-19 10:27	2010-03-9	Show	GitHub Exploit DB Packet Storm

256588	9.3	危険	マイクロソフト	-	Microsoft Windows Movie Maker および Microsoft Producer におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0265	2010-03-19 10:27	2010-03-9	Show	GitHub Exploit DB Packet Storm

256589	8.5	危険	Samba Project	-	Samba の smbd におけるファイルパーミッションを回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-0728	2010-03-18 12:09	2010-03-10	Show	GitHub Exploit DB Packet Storm

256590	7.2	危険	IBM	-	IBM AIX および VIOS の qosmod におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0960	2010-03-18 12:09	2010-03-5	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
266311	9.1	CRITICAL Network	sap	netweaver_application_server_java	XML external entity (XXE) vulnerability in the Configuration Wizard in SAP NetWeaver Java AS 7.1 through 7.5 allows remote attackers to cause a denial of service, conduct SMB Relay attacks, or access…	CWE-611 XXE	CVE-2016-3974	2024-11-21 11:51	2016-04-8	Show	GitHub Exploit DB Packet Storm

266312	5.3	MEDIUM Network	sap	netweaver_application_server_java	The chat feature in the Real-Time Collaboration (RTC) services 7.3 and 7.4 in SAP NetWeaver Java AS 7.1 through 7.5 allows remote attackers to obtain sensitive user information by visiting webdynpro/…	CWE-200 Information Exposure	CVE-2016-3973	2024-11-21 11:51	2016-04-8	Show	GitHub Exploit DB Packet Storm

266313	7.5	HIGH Network	squid-cache	squid	Squid 3.x before 3.5.16 and 4.x before 4.0.8 improperly perform bounds checking, which allows remote attackers to cause a denial of service via a crafted HTTP response, related to Vary headers.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-3948	2024-11-21 11:51	2016-04-8	Show	GitHub Exploit DB Packet Storm

266314	8.2	HIGH Network	squid-cache canonical	squid ubuntu_linux	Heap-based buffer overflow in the Icmp6::Recv function in icmp/Icmp6.cc in the pinger utility in Squid before 3.5.16 and 4.x before 4.0.8 allows remote servers to cause a denial of service (performan…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-3947	2024-11-21 11:51	2016-04-8	Show	GitHub Exploit DB Packet Storm

266315	6.1	MEDIUM Network	mcafee	email_gateway	Cross-site scripting (XSS) vulnerability in McAfee Email Gateway (MEG) 7.6.x before 7.6.404, when File Filtering is enabled with the action set to ESERVICES:REPLACE, allows remote attackers to inject…	CWE-79 Cross-site Scripting	CVE-2016-3969	2024-11-21 11:51	2016-04-7	Show	GitHub Exploit DB Packet Storm

266316	6.1	MEDIUM Network	sophos	cyberoam_cr100ing_utm_firmware cyberoam_cr35ing_utm_firmware	Multiple cross-site scripting (XSS) vulnerabilities in Sophos Cyberoam CR100iNG UTM appliance with firmware 10.6.3 MR-1 build 503, CR35iNG UTM appliance with firmware 10.6.2 MR-1 build 383, and CR35i…	CWE-79 Cross-site Scripting	CVE-2016-3968	2024-11-21 11:51	2016-04-7	Show	GitHub Exploit DB Packet Storm

266317	6.1	MEDIUM Network	xmlsoft	libxml2	Possible cross-site scripting vulnerability in libxml after commit 960f0e2.	CWE-79 Cross-site Scripting	CVE-2016-3709	2024-11-21 11:50	2022-07-29	Show	GitHub Exploit DB Packet Storm

266318	8.1	HIGH Network	piwigo	piwigo	Piwigo is image gallery software written in PHP. When a criteria is not met on a host, piwigo defaults to usingmt_rand in order to generate password reset tokens. mt_rand output can be predicted afte…	CWE-335 Incorrect Usage of Seeds in Pseudo-Random Number Generator (PRNG)	CVE-2016-3735	2024-11-21 11:50	2022-01-29	Show	GitHub Exploit DB Packet Storm

266319	5.5	MEDIUM Local	linux redhat	linux_kernel enterprise_linux	The einj_error_inject function in drivers/acpi/apei/einj.c in the Linux kernel allows local users to simulate hardware errors and consequently cause a denial of service by leveraging failure to disab…	CWE-74 Injection	CVE-2016-3695	2024-11-21 11:50	2017-12-30	Show	GitHub Exploit DB Packet Storm

266320	7.5	HIGH Network	fedoraproject pulpproject	fedora pulp	Pulp before 2.8.5 uses bash's $RANDOM in an unsafe way to generate passwords.	CWE-255 Credentials Management	CVE-2016-3704	2024-11-21 11:50	2017-06-14	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed