Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 9, 2026, 4:11 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
190051 5.5 警告
Local 		GNU Project - GNU Libextractor における境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2017-15922 2017-11-6 17:13 2017-10-17 Show GitHub Exploit DB Packet Storm
190052 6.1 警告
Network 		MediaWiki - MediaWiki におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-4378 2017-11-6 17:12 2012-06-14 Show GitHub Exploit DB Packet Storm
190053 6.1 警告
Network 		MediaWiki - MediaWiki におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-4377 2017-11-6 17:12 2012-08-27 Show GitHub Exploit DB Packet Storm
190054 6.1 警告
Network 		BouquetEditor project - Dream Multimedia Dreambox デバイス用 BouquetEditor Web プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2017-15287 2017-11-6 17:08 2017-10-12 Show GitHub Exploit DB Packet Storm
190055 7.5 重要
Network 		Node.js Foundation - Node.js におけるリソースの枯渇に関する脆弱性 CWE-400
リソースの枯渇 		CVE-2015-7384 2017-11-6 16:58 2015-10-6 Show GitHub Exploit DB Packet Storm
190056 5.4 警告
Network 		ATutor - ATutor LMS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2015-6521 2017-11-6 16:58 2015-12-31 Show GitHub Exploit DB Packet Storm
190057 5.9 警告
Network 		http.rb project - Ruby http gem における情報漏えいに関する脆弱性 CWE-200
情報漏えい 		CVE-2015-1828 2017-11-6 16:58 2015-03-24 Show GitHub Exploit DB Packet Storm
190058 9.8 緊急
Network 		Apache Software Foundation - Apache Roller における XML 外部エンティティの脆弱性 CWE-611
XML 外部エンティティ参照の不適切な制限 		CVE-2014-0030 2017-11-6 16:58 2014-01-11 Show GitHub Exploit DB Packet Storm
190059 8.8 重要
Network 		Ruckus Wireless, Inc. - Ruckus Wireless Zone Director コントローラのファームウェアにおける OS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2017-6223 2017-11-6 16:32 2017-09-29 Show GitHub Exploit DB Packet Storm
190060 5.5 警告
Local 		Sound eXchange - Sound eXchange におけるバッファエラーの脆弱性 CWE-119
バッファエラー 		CVE-2017-15372 2017-11-6 16:32 2017-10-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 9, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
352021 - michael_jennings
debian 		eterm
debian_linux 		Buffer overflow in Eterm 0.9.2 allows local users to gain privileges via a long ETERMPATH environment variable. NVD-CWE-Other
CVE-2003-0382 2016-10-18 11:33 2003-07-2 Show GitHub Exploit DB Packet Storm
352022 - debian debian_linux Buffer overflow in xaos 3.0-23 and earlier, when running setuid, allows local users to gain root privileges via a long -language option. NVD-CWE-Other
CVE-2003-0385 2016-10-18 11:33 2003-07-2 Show GitHub Exploit DB Packet Storm
352023 - andrew_morgan linux_pam pam_wheel in Linux-PAM 0.78, with the trust option enabled and the use_uid option disabled, allows local users to spoof log entries and gain privileges by causing getlogin() to return a spoofed user … NVD-CWE-Other
CVE-2003-0388 2016-10-18 11:33 2003-07-24 Show GitHub Exploit DB Packet Storm
352024 - james_theiler opt Multiple buffer overflows in Options Parsing Tool (OPT) shared library 3.18 and earlier, when used in setuid programs, may allow local users to execute arbitrary code via long command line options th… NVD-CWE-Other
CVE-2003-0390 2016-10-18 11:33 2003-07-2 Show GitHub Exploit DB Packet Storm
352025 - amax_information_technologies magic_winmail_server Format string vulnerability in Magic WinMail Server 2.3, and possibly other 2.x versions, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via format s… NVD-CWE-Other
CVE-2003-0391 2016-10-18 11:33 2003-07-2 Show GitHub Exploit DB Packet Storm
352026 - st ftp_service Directory traversal vulnerability in ST FTP Service 3.0 allows remote attackers to list arbitrary directories via a CD command with a DoS drive letter argument (e.g. E:). NVD-CWE-Other
CVE-2003-0392 2016-10-18 11:33 2003-07-2 Show GitHub Exploit DB Packet Storm
352027 - privacyware privatefirewall Privacyware Privatefirewall 3.0 does not block certain incoming packets when in "Filter Internet Traffic" or Deny Internet Traffic" modes, which allows remote attackers to identify running services v… NVD-CWE-Other
CVE-2003-0393 2016-10-18 11:33 2003-07-2 Show GitHub Exploit DB Packet Storm
352028 - blnews blnews objects.inc.php4 in BLNews 2.1.3 allows remote attackers to execute arbitrary PHP code via a Server[path] parameter that points to malicious code on an attacker-controlled web site. NVD-CWE-Other
CVE-2003-0394 2016-10-18 11:33 2003-07-2 Show GitHub Exploit DB Packet Storm
352029 - sharman_networks kazaa Buffer overflow in FastTrack (FT) network code, as used in Kazaa 2.0.2 and possibly other versions and products, allows remote attackers to execute arbitrary code via a packet containing a large list… NVD-CWE-Other
CVE-2003-0397 2016-10-18 11:33 2003-07-2 Show GitHub Exploit DB Packet Storm
352030 - vignette content_suite
storyserver
vignette 		Vignette StoryServer 4 and 5, and Vignette V/5 and V/6, with the SSI EXEC feature enabled, allows remote attackers to execute arbitrary code via a text variable to a Vignette Application that is late… NVD-CWE-Other
CVE-2003-0398 2016-10-18 11:33 2003-07-2 Show GitHub Exploit DB Packet Storm