Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 2:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
257901 7.2 危険 マイクロソフト - Microsoft Windows XP および Windows Server 2003 の afd.sys における権限昇格の脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2011-2005 2011-10-21 15:34 2011-10-11 Show GitHub Exploit DB Packet Storm
257902 5 警告 マイクロソフト - Microsoft Windows XP および Windows Server 2003 における権限昇格の脆弱性 CWE-20
不適切な入力確認
CVE-2011-2012 2011-10-21 15:31 2011-10-11 Show GitHub Exploit DB Packet Storm
257903 9.3 危険 マイクロソフト - Microsoft Forefront UAG の MicrosoftClient.jar における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション
CVE-2011-1969 2011-10-21 15:31 2011-10-11 Show GitHub Exploit DB Packet Storm
257904 4.3 警告 マイクロソフト - Microsoft Forefront UAG 2010 におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2011-1897 2011-10-21 15:30 2011-10-11 Show GitHub Exploit DB Packet Storm
257905 4.3 警告 マイクロソフト - Microsoft Forefront UAG 2010 におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2011-1896 2011-10-21 15:30 2011-10-11 Show GitHub Exploit DB Packet Storm
257906 9.3 危険 マイクロソフト - Microsoft Forefront UAG 2010 における CRLF インジェクションの脆弱性 CWE-94
コード・インジェクション
CVE-2011-1895 2011-10-21 15:28 2011-10-11 Show GitHub Exploit DB Packet Storm
257907 9.3 危険 マイクロソフト - Microsoft .NET Framework および Silverlight における任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2011-1253 2011-10-21 15:27 2011-10-11 Show GitHub Exploit DB Packet Storm
257908 7.2 危険 マイクロソフト - Microsoft Windows のカーネルモードドライバ内にある win32k.sys における権限昇格の脆弱性 CWE-399
リソース管理の問題
CVE-2011-2011 2011-10-21 15:26 2011-10-11 Show GitHub Exploit DB Packet Storm
257909 9.3 危険 マイクロソフト - Microsoft Windows の win32k.sys のバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2011-2003 2011-10-21 15:25 2011-10-11 Show GitHub Exploit DB Packet Storm
257910 4.7 警告 マイクロソフト - Microsoft Windows の win32k.sys におけるサービス運用妨害 (システムハング) の脆弱性 CWE-20
不適切な入力確認
CVE-2011-2002 2011-10-21 15:25 2011-10-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
274351 6.1 MEDIUM
Network
phpmyadmin
opensuse
phpmyadmin
opensuse
Cross-site scripting (XSS) vulnerability in phpMyAdmin 4.4.x before 4.4.15.6 and 4.6.x before 4.6.2 allows remote attackers to inject arbitrary web script or HTML via special characters that are mish… CWE-79
Cross-site Scripting
CVE-2016-5099 2024-11-21 11:53 2016-07-5 Show GitHub Exploit DB Packet Storm
274352 5.3 MEDIUM
Network
phpmyadmin
opensuse
phpmyadmin
opensuse
Directory traversal vulnerability in libraries/error_report.lib.php in phpMyAdmin before 4.6.2-prerelease allows remote attackers to determine the existence of arbitrary files by triggering an error. CWE-22
Path Traversal
CVE-2016-5098 2024-11-21 11:53 2016-07-5 Show GitHub Exploit DB Packet Storm
274353 5.3 MEDIUM
Network
opensuse
phpmyadmin
opensuse
phpmyadmin
phpMyAdmin before 4.6.2 places tokens in query strings and does not arrange for them to be stripped before external navigation, which allows remote attackers to obtain sensitive information by readin… CWE-200
Information Exposure
CVE-2016-5097 2024-11-21 11:53 2016-07-5 Show GitHub Exploit DB Packet Storm
274354 7.5 HIGH
Network
ntp
oracle
novell
suse
opensuse
ntp
solaris
suse_manager
linux_enterprise_server
openstack_cloud
manager_proxy
linux_enterprise_desktop
leap
opensuse
ntpd in NTP before 4.2.8p8 allows remote attackers to cause a denial of service (daemon crash) via a crypto-NAK packet. NOTE: this vulnerability exists because of an incorrect fix for CVE-2016-1547. CWE-476
 NULL Pointer Dereference
CVE-2016-4957 2024-11-21 11:53 2016-07-5 Show GitHub Exploit DB Packet Storm
274355 5.3 MEDIUM
Network
ntp
oracle
novell
suse
opensuse
siemens
ntp
solaris
suse_manager
linux_enterprise_server
openstack_cloud
manager_proxy
linux_enterprise_desktop
leap
opensuse
simatic_net_cp_443-1_opc_ua_firmware
ntpd in NTP 4.x before 4.2.8p8 allows remote attackers to cause a denial of service (interleaved-mode transition and time change) via a spoofed broadcast packet. NOTE: this vulnerability exists beca… NVD-CWE-noinfo
CVE-2016-4956 2024-11-21 11:53 2016-07-5 Show GitHub Exploit DB Packet Storm
274356 5.9 MEDIUM
Network
ntp
oracle
novell
suse
opensuse
siemens
ntp
solaris
suse_manager
linux_enterprise_server
openstack_cloud
manager_proxy
linux_enterprise_desktop
leap
opensuse
simatic_net_cp_443-1_opc_ua_firmware
ntpd in NTP 4.x before 4.2.8p8, when autokey is enabled, allows remote attackers to cause a denial of service (peer-variable clearing and association outage) by sending (1) a spoofed crypto-NAK packe… CWE-362
Race Condition
CVE-2016-4955 2024-11-21 11:53 2016-07-5 Show GitHub Exploit DB Packet Storm
274357 7.5 HIGH
Network
ntp
oracle
suse
opensuse
siemens
ntp
solaris
linux_enterprise_server
openstack_cloud
manager_proxy
manager
linux_enterprise_desktop
leap
opensuse
simatic_net_cp_443-1_opc_ua_firmware
tim_4r-ie_firmware<…
ntpd in NTP 4.x before 4.2.8p8 allows remote attackers to cause a denial of service (ephemeral-association demobilization) by sending a spoofed crypto-NAK packet with incorrect authentication data at… CWE-287
Improper Authentication
CVE-2016-4953 2024-11-21 11:53 2016-07-5 Show GitHub Exploit DB Packet Storm
274358 7.5 HIGH
Network
ntp
oracle
suse
opensuse
siemens
ntp
solaris
linux_enterprise_server
openstack_cloud
manager_proxy
manager
linux_enterprise_desktop
leap
opensuse
simatic_net_cp_443-1_opc_ua_firmware
tim_4r-ie_firmware<…
The process_packet function in ntp_proto.c in ntpd in NTP 4.x before 4.2.8p8 allows remote attackers to cause a denial of service (peer-variable modification) by sending spoofed packets from many sou… CWE-362
Race Condition
CVE-2016-4954 2024-11-21 11:53 2016-07-5 Show GitHub Exploit DB Packet Storm
274359 7.1 HIGH
Local
linux
oracle
canonical
linux_kernel
linux
ubuntu_linux
The IPT_SO_SET_REPLACE setsockopt implementation in the netfilter subsystem in the Linux kernel before 4.6 allows local users to cause a denial of service (out-of-bounds read) or possibly obtain sens… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2016-4998 2024-11-21 11:53 2016-07-4 Show GitHub Exploit DB Packet Storm
274360 7.8 HIGH
Local
linux
canonical
novell
oracle
debian
linux_kernel
ubuntu_linux
suse_linux_enterprise_module_for_public_cloud
suse_linux_enterprise_server
suse_linux_enterprise_live_patching
suse_linux_enterprise_desktop
suse_linux_ent…
The compat IPT_SO_SET_REPLACE and IP6T_SO_SET_REPLACE setsockopt implementations in the netfilter subsystem in the Linux kernel before 4.6.3 allow local users to gain privileges or cause a denial of … CWE-264
Permissions, Privileges, and Access Controls
CVE-2016-4997 2024-11-21 11:53 2016-07-4 Show GitHub Exploit DB Packet Storm