Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 21, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
256721	6.8	警告	マイクロソフト	-	Microsoft Windows の kernel における権限を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2009-1127	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

256722	10	危険	マイクロソフト	-	Microsoft Windows の License Logging Server (llssrv.exe) における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2009-2523	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

256723	9.3	危険	マイクロソフト	-	Microsoft Windows の Web Services on Devices API (WSDAPI) における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-2512	2010-01-4 15:23	2009-11-10	Show	GitHub Exploit DB Packet Storm

256724	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2722	2010-01-4 14:56	2009-08-10	Show	GitHub Exploit DB Packet Storm

256725	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2723	2010-01-4 14:55	2009-08-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 21, 2026, 4:10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
266611	5.4	MEDIUM Network	ibm	lotus_protector_for_mail_security	Multiple cross-site scripting (XSS) vulnerabilities in IBM Lotus Protector for Mail Security 2.8.0.0 through 2.8.1.0 before 2.8.1.0-22115 allow remote authenticated users to inject arbitrary web scri…	CWE-79 Cross-site Scripting	CVE-2016-2991	2024-11-21 11:49	2016-12-1	Show	GitHub Exploit DB Packet Storm

266612	5.4	MEDIUM Network	ibm	connections	Cross-site scripting (XSS) vulnerability in IBM Connections 5.0 before CR4 and 5.5 before CR1 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.	CWE-79 Cross-site Scripting	CVE-2016-2955	2024-11-21 11:49	2016-12-1	Show	GitHub Exploit DB Packet Storm

266613	7.8	HIGH Local	ibm	tivoli_monitoring	Stack-based buffer overflow in the ax Shared Libraries in the Agent in IBM Tivoli Monitoring (ITM) 6.2.2 before FP9, 6.2.3 before FP5, and 6.3.0 before FP2 on Linux and UNIX allows local users to gai…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-2946	2024-11-21 11:49	2016-12-1	Show	GitHub Exploit DB Packet Storm

266614	8.8	HIGH Network	ibm	tririga_application_platform	The notifications component in IBM TRIRIGA Applications 10.4 and 10.5 before 10.5.1 allows remote authenticated users to obtain sensitive password information, and consequently gain privileges, via u…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-2917	2024-11-21 11:49	2016-12-1	Show	GitHub Exploit DB Packet Storm

266615	8.1	HIGH Network	ibm	ims_enterprise_suite	IBM IMS Enterprise Suite Data Provider before 3.2.0.1 for Microsoft .NET allows remote authenticated users to obtain sensitive information or modify data via unspecified vectors.	CWE-200 CWE-284 Information Exposure Improper Access Control	CVE-2016-2887	2024-11-21 11:49	2016-12-1	Show	GitHub Exploit DB Packet Storm

266616	8.0	HIGH Network	ibm	forms_experience_builder	Cross-site request forgery (CSRF) vulnerability in IBM Forms Experience Builder 8.5.x and 8.6.x before 8.6.3.1, in an unspecified non-default configuration, allows remote authenticated users to hijac…	CWE-352 Origin Validation Error	CVE-2016-2884	2024-11-21 11:49	2016-12-1	Show	GitHub Exploit DB Packet Storm

266617	6.5	MEDIUM Network	ibm	qradar_security_information_and_event_manager	IBM QRadar SIEM 7.1 before MR2 Patch 13 and 7.2 before 7.2.7 and QRadar Incident Forensics 7.2 before 7.2.7 allow remote attackers to bypass intended access restrictions via modified request paramete…	CWE-254 7PK - Security Features	CVE-2016-2881	2024-11-21 11:49	2016-12-1	Show	GitHub Exploit DB Packet Storm

266618	6.1	MEDIUM Network	ibm	sterling_b2b_integrator	Cross-site scripting (XSS) vulnerability in IBM Sterling B2B Integrator 5.2 before 5020500_14 and 5.2 06 before 5020602_1 allows remote attackers to inject arbitrary web script or HTML via unspecifie…	CWE-79 Cross-site Scripting	CVE-2016-3057	2024-11-21 11:49	2016-11-30	Show	GitHub Exploit DB Packet Storm

266619	5.4	MEDIUM Network	ibm	rational_engineering_lifecycle_manager rational_rhapsody_design_manager rational_quality_manager rational_software_architect_design_manager rational_doors_next_generation rational_team…	Cross-site scripting (XSS) vulnerability in IBM Rational Collaborative Lifecycle Management 4.0 before 4.0.7 iFix11 and 5.0 before 5.0.2 iFix17, Rational Quality Manager 4.0 before 4.0.7 iFix11 and 5…	CWE-79 Cross-site Scripting	CVE-2016-3014	2024-11-21 11:49	2016-11-30	Show	GitHub Exploit DB Packet Storm

266620	3.5	LOW Network	ibm	connections	Cross-site request forgery (CSRF) vulnerability in IBM Connections 4.0 through CR4, 4.5 through CR5, and 5.0 before CR4 allows remote authenticated users to hijack the authentication of arbitrary use…	CWE-352 Origin Validation Error	CVE-2016-3009	2024-11-21 11:49	2016-11-30	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed