Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 16, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
190261 8.8 重要
Network 		Apache Software Foundation - Apache Subversion におけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2013-4246 2017-11-21 16:58 2013-06-12 Show GitHub Exploit DB Packet Storm
190262 6.1 警告
Network 		Apache Software Foundation - Apache Wicket におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-5636 2017-11-21 16:58 2012-10-24 Show GitHub Exploit DB Packet Storm
190263 6.1 警告
Network 		Apache Software Foundation - Apache jUDDI におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-1198 2017-11-21 16:58 2009-06-30 Show GitHub Exploit DB Packet Storm
190264 8.8 重要
Network 		TP-LINK Technologies - TP-Link WR940N WiFi ルータにおけるバッファエラーの脆弱性 CWE-119
バッファエラー 		CVE-2017-13772 2017-11-21 16:52 2017-10-17 Show GitHub Exploit DB Packet Storm
190265 5.7 警告
Adjacent 		シマンテック - Symantec Endpoint Encryption におけるバッファエラーの脆弱性 CWE-119
バッファエラー 		CVE-2017-13683 2017-11-21 16:45 2017-10-20 Show GitHub Exploit DB Packet Storm
190266 7.2 重要
Network 		Keycloak - Keycloak における認証に関する脆弱性 CWE-287
不適切な認証 		CVE-2017-12160 2017-11-21 16:38 2017-10-17 Show GitHub Exploit DB Packet Storm
190267 4.8 警告
Network 		Ignite Realtime - Ignite Realtime Openfire におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2017-15911 2017-11-21 16:38 2017-11-16 Show GitHub Exploit DB Packet Storm
190268 7.5 重要
Network 		serialize-to-js project - serialize-to-js におけるリソースの枯渇に関する脆弱性 CWE-400
リソースの枯渇 		CVE-2017-15871 2017-11-21 16:26 2017-10-24 Show GitHub Exploit DB Packet Storm
190269 6.6 警告
Physics 		Linux - Linux kernel におけるバッファエラーの脆弱性 CWE-119
バッファエラー 		CVE-2017-16534 2017-11-21 14:52 2017-09-21 Show GitHub Exploit DB Packet Storm
190270 6.6 警告
Physics 		Linux - Linux kernel におけるバッファエラーの脆弱性 CWE-119
バッファエラー 		CVE-2017-16531 2017-11-21 14:52 2017-09-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
347721 - phprojekt phprojekt PHP remote file inclusion vulnerability in authform.inc.php in PHProjekt 4.2.3 and earlier allows remote attackers to include arbitrary PHP code via a URL in the path_pre parameter. CWE-94
Code Injection 		CVE-2004-2740 2017-07-29 10:29 2004-12-31 Show GitHub Exploit DB Packet Storm
347722 - horde application_framework Cross-site scripting (XSS) vulnerability in the "help window" (help.php) in Horde Application Framework 2.2.6 allows remote attackers to inject arbitrary web script or HTML via the (1) module, (2) to… CWE-79
Cross-site Scripting 		CVE-2004-2741 2017-07-29 10:29 2004-12-31 Show GitHub Exploit DB Packet Storm
347723 - businessobjects crystal_enterprise Cross-site scripting (XSS) vulnerability in the report viewer in Crystal Enterprise 8.5, 9, and 10 allows remote attackers to inject arbitrary web script or HTML via script in the URL to a report (RP… CWE-79
Cross-site Scripting 		CVE-2004-2742 2017-07-29 10:29 2004-12-31 Show GitHub Exploit DB Packet Storm
347724 - raditha_dissanayake mega_upload_progress_bar upload.cgi in Mega Upload Progress Bar before 1.45 allows remote attackers to copy or overwrite arbitrary files via unspecified parameters related to names of uploaded files. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2004-2743 2017-07-29 10:29 2004-12-31 Show GitHub Exploit DB Packet Storm
347725 - phplist mailing_list_manager Unspecified vulnerability in Tincan Limited PHPlist before 2.8.12 has unknown impact and attack vectors, related to a "security update release." NVD-CWE-noinfo
CVE-2004-2744 2017-07-29 10:29 2004-12-31 Show GitHub Exploit DB Packet Storm
347726 - 2wire homeportal Directory traversal vulnerability in wra/public/wralogin in 2Wire Gateway, possibly as used in HomePortal and other product lines, allows remote attackers to read arbitrary files via a .. (dot dot) i… CWE-22
Path Traversal 		CVE-2004-2749 2017-07-29 10:29 2004-12-31 Show GitHub Exploit DB Packet Storm
347727 - postnuke_software_foundation postnuke SQL injection vulnerability in the members_list module in PostNuke 0.726, and possibly earlier, allows remote attackers to execute arbitrary SQL commands via the sortby parameter. CWE-89
SQL Injection 		CVE-2004-2751 2017-07-29 10:29 2004-12-31 Show GitHub Exploit DB Packet Storm
347728 - hp hp-ux Unspecified vulnerability in SharedX in HP-UX B.11.00, B.11.11, and B.11.22 allows local users to access unspecified files or cause a denial of service via unknown vectors related to handling of "fil… NVD-CWE-noinfo
CVE-2004-2753 2017-07-29 10:29 2004-12-31 Show GitHub Exploit DB Packet Storm
347729 - symantec web_security Cross-site scripting (XSS) vulnerability in Symantec Web Security 2.5, 3.0.0, and 3.0.1 before build 62 allows remote attackers to inject arbitrary web script or HTML via the query string in blocked … CWE-79
Cross-site Scripting 		CVE-2004-2755 2017-07-29 10:29 2004-12-31 Show GitHub Exploit DB Packet Storm
347730 - novell ichain Cross-site scripting (XSS) vulnerability in the failed login page in Novell iChain before 2.2 build 2.2.113 and 2.3 First Customer Ship (FCS) allows remote attackers to inject arbitrary web script or… CWE-79
Cross-site Scripting 		CVE-2004-2757 2017-07-29 10:29 2004-12-31 Show GitHub Exploit DB Packet Storm