Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 16, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
259091	6.9	警告	アップル Vim	-	Vim の Python インターフェースの src/if_python.c における信頼性のない検索パスの脆弱性	CWE-Other その他	CVE-2009-0316	2010-04-26 16:45	2009-01-28	Show	GitHub Exploit DB Packet Storm

259092	9.3	危険	アップルサイバートラスト株式会社 Vim レッドハット	-	Vim におけるエスケープ文字を適切に処理しないことに関する任意のコマンドを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2008-4101	2010-04-26 16:45	2008-10-9	Show	GitHub Exploit DB Packet Storm

259093	9.3	危険	アップルサイバートラスト株式会社 Vim レッドハット	-	Vim における適切に入力をサニタイズしないことに関する任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2008-2712	2010-04-26 16:45	2008-10-9	Show	GitHub Exploit DB Packet Storm

259094	4.3	警告	VMware	-	VMware Server の WebAccess におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-1193	2010-04-21 17:54	2010-03-29	Show	GitHub Exploit DB Packet Storm

259095	7.5	危険	VMware	-	複数の VMware 製品の WebAccess におけるリクエストの発信元を偽装される脆弱性	CWE-20 不適切な入力確認	CVE-2010-0686	2010-04-21 17:53	2010-03-29	Show	GitHub Exploit DB Packet Storm

259096	4.3	警告	VMware	-	複数の VMware 製品の WebAccess におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-1137	2010-04-21 17:51	2010-03-29	Show	GitHub Exploit DB Packet Storm

259097	4.6	警告	GNU Project サイバートラスト株式会社レッドハット	-	GNU Automake の dist または distcheck ルールにおけるコンテンツを変更される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-4029	2010-04-21 17:51	2009-12-20	Show	GitHub Exploit DB Packet Storm

259098	5	警告	Linux レッドハット	-	Linux kernel の virtio-net ドライバにおけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-0741	2010-04-21 17:48	2010-03-30	Show	GitHub Exploit DB Packet Storm

259099	6.9	警告	mielke レッドハット	-	brltty の libbrlttybba.so における権限昇格の脆弱性	CWE-264 CWE-Other	CVE-2008-3279	2010-04-21 17:47	2010-03-30	Show	GitHub Exploit DB Packet Storm

259100	4.3	警告	Mozilla Foundation	-	Mozilla Firefox/SeaMonkey におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-0181	2010-04-20 16:42	2010-03-30	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
268311	7.0	HIGH Local	haxx	curl	The base64 encode function in curl before version 7.51.0 is prone to a buffer being under allocated in 32bit systems if it receives at least 1Gb as input via `CURLOPT_USERNAME`.	-	CVE-2016-8617	2024-11-21 11:59	2018-08-1	Show	GitHub Exploit DB Packet Storm

268312	7.5	HIGH Network	haxx	curl	curl before version 7.51.0 doesn't parse the authority component of the URL correctly when the host name part ends with a '#' character, and could instead be tricked into connecting to a different ho…	-	CVE-2016-8624	2024-11-21 11:59	2018-08-1	Show	GitHub Exploit DB Packet Storm

268313	9.8	CRITICAL Network	haxx	libcurl	The URL percent-encoding decode function in libcurl before 7.51.0 is called `curl_easy_unescape`. Internally, even if this function would be made to allocate a unscape destination buffer larger than …	CWE-787 Out-of-bounds Write	CVE-2016-8622	2024-11-21 11:59	2018-08-1	Show	GitHub Exploit DB Packet Storm

268314	9.8	CRITICAL Network	haxx	curl	The libcurl API function called `curl_maprintf()` before version 7.51.0 can be tricked into doing a double-free due to an unsafe `size_t` multiplication, on systems using 32 bit `size_t` variables.	CWE-415 Double Free	CVE-2016-8618	2024-11-21 11:59	2018-08-1	Show	GitHub Exploit DB Packet Storm

268315	7.5	HIGH Network	redhat	ansible	A flaw was found in Ansible before version 2.2.0. The apt_key module does not properly verify key fingerprints, allowing remote adversary to create an OpenPGP key which matches the short key ID and i…	CWE-320 Key Management Errors	CVE-2016-8614	2024-11-21 11:59	2018-08-1	Show	GitHub Exploit DB Packet Storm

268316	7.7	HIGH Network	redhat	openshift	The OpenShift Enterprise 3 router does not properly sort routes when processing newly added routes. An attacker with access to create routes can potentially overwrite existing routes and redirect net…	-	CVE-2016-8631	2024-11-21 11:59	2018-08-1	Show	GitHub Exploit DB Packet Storm

268317	9.1	CRITICAL Network	redhat	ansible	Ansible before version 2.2.0 fails to properly sanitize fact variables sent from the Ansible controller. An attacker with the ability to create special variables on the controller could execute arbit…	CWE-77 Command Injection	CVE-2016-8628	2024-11-21 11:59	2018-08-1	Show	GitHub Exploit DB Packet Storm

268318	6.1	MEDIUM Network	theforeman	foreman	A flaw was found in foreman 1.5.1. The remote execution plugin runs commands on hosts over SSH from the Foreman web UI. When a job is submitted that contains HTML tags, the console output shown in th…	-	CVE-2016-8613	2024-11-21 11:59	2018-08-1	Show	GitHub Exploit DB Packet Storm

268319	6.5	MEDIUM Network	openstack	glance	A vulnerability was found in Openstack Glance. No limits are enforced within the Glance image service for both v1 and v2 `/images` API POST method for authenticated users, resulting in possible denia…	-	CVE-2016-8611	2024-11-21 11:59	2018-08-1	Show	GitHub Exploit DB Packet Storm

268320	7.8	HIGH Local	redhat	jboss_enterprise_application_platform	It was discovered that EAP packages in certain versions of Red Hat Enterprise Linux use incorrect permissions for /etc/sysconfig/jbossas configuration files. The file is writable to jboss group (root…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-8657	2024-11-21 11:59	2018-08-1	Show	GitHub Exploit DB Packet Storm