Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 2:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
259741 9.3 危険 リアルネットワークス - RealNetworks RealPlayer におけるサウンドヒープオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2010-4380 2011-01-11 14:27 2010-12-10 Show GitHub Exploit DB Packet Storm
259742 4.3 警告 WEBインベンター - SGX-SP Final および SGX-SP Final NE におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2010-3926 2011-01-11 14:05 2011-01-11 Show GitHub Exploit DB Packet Storm
259743 2.6 注意 WEBインベンター - Contents-Mall におけるパスワードの取扱いに関する脆弱性 CWE-Other
その他
CVE-2010-3925 2011-01-11 14:04 2011-01-11 Show GitHub Exploit DB Packet Storm
259744 4 警告 エイムラック - Aipo における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2010-3924 2011-01-11 14:02 2011-01-11 Show GitHub Exploit DB Packet Storm
259745 9.3 危険 レッドハット
リアルネットワークス
- RealNetworks RealPlayer における SIPR ヒープオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2010-4379 2011-01-7 15:36 2010-12-10 Show GitHub Exploit DB Packet Storm
259746 10 危険 リアルネットワークス - RealNetworks RealPlayer の AAC スペクトルデータの解析処理における脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2010-0125 2011-01-7 15:35 2010-12-10 Show GitHub Exploit DB Packet Storm
259747 5 警告 リアルネットワークス - RealNetworks RealPlayer の cook コーデックにおける任意のメモリへアクセスされる脆弱性 CWE-Other
その他
CVE-2010-2579 2011-01-7 15:35 2010-12-10 Show GitHub Exploit DB Packet Storm
259748 10 危険 リアルネットワークス - RealNetworks RealPlayer の cook コーデックにおける脆弱性 CWE-Other
その他
CVE-2010-0121 2011-01-7 15:35 2010-12-10 Show GitHub Exploit DB Packet Storm
259749 9.3 危険 レッドハット
リアルネットワークス
- RealNetworks RealPlayer の drv2.dll モジュールにおける任意のコードを実行される脆弱性 CWE-119
バッファエラー
CVE-2010-4378 2011-01-7 15:35 2010-12-10 Show GitHub Exploit DB Packet Storm
259750 9.3 危険 リアルネットワークス - RealNetworks RealPlayer の Cook Audio Codec におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2010-4377 2011-01-7 15:35 2010-12-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
270571 7.5 HIGH
Network
jqueryform php_formmail_generator The generated PHP form code does not properly validate user input folder directories, allowing a remote unauthenticated attacker to perform a path traversal and access arbitrary files on the server. … CWE-22
Path Traversal
CVE-2016-9484 2024-11-21 12:01 2018-07-14 Show GitHub Exploit DB Packet Storm
270572 9.8 CRITICAL
Network
jqueryform php_formmail_generator The PHP form code generated by PHP FormMail Generator deserializes untrusted input as part of the phpfmg_filman_download() function. A remote unauthenticated attacker may be able to use this vulnerab… CWE-502
 Deserialization of Untrusted Data
CVE-2016-9483 2024-11-21 12:01 2018-07-14 Show GitHub Exploit DB Packet Storm
270573 9.8 CRITICAL
Network
jqueryform php_formmail_generator Code generated by PHP FormMail Generator may allow a remote unauthenticated user to bypass authentication in the to access the administrator panel by navigating directly to /admin.php?mod=admin&func=… CWE-287
Improper Authentication
CVE-2016-9482 2024-11-21 12:01 2018-07-14 Show GitHub Exploit DB Packet Storm
270574 9.8 CRITICAL
Network
zohocorp manageengine_applications_manager ManageEngine Applications Manager 12 and 13 before build 13200, allows unserialization of unsafe Java objects. The vulnerability can be exploited by remote user without authentication and it allows t… CWE-502
 Deserialization of Untrusted Data
CVE-2016-9498 2024-11-21 12:01 2018-07-14 Show GitHub Exploit DB Packet Storm
270575 6.1 MEDIUM
Network
jqueryform php_formmail_generator The code generated by PHP FormMail Generator prior to 17 December 2016 is vulnerable to stored cross-site scripting. In the generated form.lib.php file, upload file types are checked against a hard-c… CWE-79
Cross-site Scripting
CVE-2016-9493 2024-11-21 12:01 2018-07-14 Show GitHub Exploit DB Packet Storm
270576 9.8 CRITICAL
Network
jqueryform php_formmail_generator The code generated by PHP FormMail Generator prior to 17 December 2016 is vulnerable to unrestricted upload of dangerous file types. In the generated form.lib.php file, upload file types are checked … CWE-434
 Unrestricted Upload of File with Dangerous Type 
CVE-2016-9492 2024-11-21 12:01 2018-07-14 Show GitHub Exploit DB Packet Storm
270577 7.8 HIGH
Local
forescout secureconnector On Windows endpoints, the SecureConnector agent must run under the local SYSTEM account or another administrator account in order to enable full functionality of the agent. The typical configuration … CWE-264
Permissions, Privileges, and Access Controls
CVE-2016-9486 2024-11-21 12:01 2018-07-14 Show GitHub Exploit DB Packet Storm
270578 7.8 HIGH
Local
forescout secureconnector On Windows endpoints, the SecureConnector agent must run under the local SYSTEM account or another administrator account in order to enable full functionality of the agent. The typical configuration … CWE-264
Permissions, Privileges, and Access Controls
CVE-2016-9485 2024-11-21 12:01 2018-07-14 Show GitHub Exploit DB Packet Storm
270579 4.4 MEDIUM
Local
linux linux_kernel It was discovered in the Linux kernel before 4.11-rc8 that root can gain direct access to an internal keyring, such as '.dns_resolver' in RHEL-7 or '.builtin_trusted_keys' upstream, by joining it as … CWE-347
 Improper Verification of Cryptographic Signature
CVE-2016-9604 2024-11-21 12:01 2018-07-11 Show GitHub Exploit DB Packet Storm
270580 8.8 HIGH
Network
redhat
debian
mozilla
enterprise_linux_desktop
enterprise_linux_server
enterprise_linux_workstation
debian_linux
thunderbird
firefox_esr
A potentially exploitable crash in "EnumerateSubDocuments" while adding or removing sub-documents. This vulnerability affects Firefox ESR < 45.6 and Thunderbird < 45.6. CWE-284
Improper Access Control
CVE-2016-9905 2024-11-21 12:01 2018-06-12 Show GitHub Exploit DB Packet Storm