Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 30, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
190531	7.5	重要 Network	日本電気 Apache Software Foundation	-	Apache Tomcat におけるリソース管理に関する脆弱性	CWE-399 リソース管理の問題	CVE-2017-5650	2017-10-3 13:42	2017-04-11	Show	GitHub Exploit DB Packet Storm

190532	9.1	緊急 Network	日本電気 Apache Software Foundation	-	Apache Tomcat におけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2017-5648	2017-10-3 13:42	2017-04-11	Show	GitHub Exploit DB Packet Storm

190533	7.5	重要 Network	日本電気 Apache Software Foundation	-	Apache Tomcat における情報漏えいに関する脆弱性	CWE-200 情報漏えい	CVE-2017-5647	2017-10-3 13:42	2017-04-11	Show	GitHub Exploit DB Packet Storm

190534	8.2	重要 Network	アップル日本電気 OpenSSL Project オラクル	-	OpenSSL の crypto/x509/x509_obj.c の X509_NAME_oneline 関数におけるプロセススタックメモリから重要な情報を取得される脆弱性	CWE-119 バッファエラー	CVE-2016-2176	2017-10-3 13:37	2016-05-3	Show	GitHub Exploit DB Packet Storm

190535	7.5	重要 Network	アップル日本電気 OpenSSL Project 日立レッドハット	-	OpenSSL の ASN.1 BIO の実装の crypto/asn1/a_d2i_fp.c の asn1_d2i_read_bio 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2016-2109	2017-10-3 13:37	2016-05-3	Show	GitHub Exploit DB Packet Storm

190536	9.8	緊急 Network	日本電気アップル OpenSSL Project Google 日立レッドハット	-	OpenSSL の ASN.1 の実装における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2016-2108	2017-10-3 13:37	2016-05-3	Show	GitHub Exploit DB Packet Storm

190537	5.9	警告 Network	日本電気アップル openSUSE project OpenSSL Project オラクル Google 日立レッドハット	-	OpenSSL の AES-NI の実装における重要な平文情報を取得される脆弱性	CWE-200 CWE-310	CVE-2016-2107	2017-10-3 13:37	2016-05-3	Show	GitHub Exploit DB Packet Storm

190538	7.5	重要 Network	アップル日本電気 OpenSSL Project 日立レッドハット	-	OpenSSL の crypto/evp/evp_enc.c の EVP_EncryptUpdate 関数における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2016-2106	2017-10-3 13:37	2016-05-3	Show	GitHub Exploit DB Packet Storm

190539	7.5	重要 Network	日本電気アップル openSUSE project OpenSSL Project オラクル日立レッドハット	-	OpenSSL の crypto/evp/encode.c の EVP_EncodeUpdate 関数における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2016-2105	2017-10-3 13:37	2016-05-3	Show	GitHub Exploit DB Packet Storm

190540	7.5	重要 Network	日本電気 Apache Software Foundation	-	Apache HTTP Server の HTTP/2 ハンドリングコードにおける解放済みメモリの使用に関する脆弱性	CWE-416 解放済みメモリの使用	CVE-2017-9789	2017-10-3 12:27	2017-07-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
349471	-	phpmyfaq	phpmyfaq	PhpMyFaq 1.5.1 allows remote attackers to obtain sensitive information via a LANGCODE parameter that does not exist, which reveals the path in an error message.	NVD-CWE-Other	CVE-2005-3050	2016-10-18 12:32	2005-09-24	Show	GitHub Exploit DB Packet Storm

349472	-	-	-	SQL injection vulnerability in module/down.inc.php in jportal 2.3.1 allows remote attackers to execute arbitrary SQL commands via the search field to download.php.	NVD-CWE-Other	CVE-2005-3052	2016-10-18 12:32	2005-09-24	Show	GitHub Exploit DB Packet Storm

349473	-	powerarchiver	powerarchiver_2002 powerarchiver_2003 powerarchiver_2004 powerarchiver_2006	Multiple stack-based buffer overflows in PowerArchiver 8.10 through 9.5 Beta 4 and Beta 5 allow remote attackers to execute arbitrary code via a long filename in a (1) ACE or (2) ARJ archive.	NVD-CWE-Other	CVE-2005-3061	2016-10-18 12:32	2005-09-28	Show	GitHub Exploit DB Packet Storm

349474	-	alstrasoft	e-friends	PHP remote file inclusion vulnerability in index.php in AlstraSoft E-Friends 4.0 allows remote attackers to execute arbitrary PHP code via the mode parameter.	NVD-CWE-Other	CVE-2005-3062	2016-10-18 12:32	2005-09-28	Show	GitHub Exploit DB Packet Storm

349475	-	unu_networks	mailgust	SQL injection vulnerability in MailGust 1.9 allows remote attackers to execute arbitrary SQL commands via the email field on the password reminder page.	NVD-CWE-Other	CVE-2005-3063	2016-10-18 12:32	2005-09-28	Show	GitHub Exploit DB Packet Storm

349476	-	cmsmadesimple	cms_made_simple	Cross-site scripting (XSS) vulnerability in index.php in CMS Made Simple 0.10 allows remote attackers to inject arbitrary web script or HTML via the page parameter.	NVD-CWE-Other	CVE-2005-3083	2016-10-18 12:32	2005-09-28	Show	GitHub Exploit DB Packet Storm

349477	-	mantis	mantis	Cross-site scripting (XSS) vulnerability in bug_actiongroup_page.php in Mantis 0.19.0a1 through 1.0.0a3 allows remote attackers to inject arbitrary web script or HTML via the summary of the bug, whic…	NVD-CWE-Other	CVE-2005-3090	2016-10-18 12:32	2005-09-29	Show	GitHub Exploit DB Packet Storm

349478	-	image-line_software	fl_studio	Heap-based buffer overflow in Image-Line Software FL Studio 5.0.1 allows remote attackers to execute arbitrary code via a .flp file that contains a long path to a (1) .mid or (2) .wav file.	NVD-CWE-Other	CVE-2005-3092	2016-10-18 12:32	2005-09-29	Show	GitHub Exploit DB Packet Storm

349479	-	nateon	nateon_messenger	The ActiveX control for NateOn Messenger (NateonDownloadManager.ocx) allows remote attackers to download and execute arbitrary programs by setting the arguments to the GotNate.Excute method.	NVD-CWE-Other	CVE-2005-3113	2016-10-18 12:32	2005-09-30	Show	GitHub Exploit DB Packet Storm

349480	-	nateon	nateon_messenger	Buffer overflow in the ActiveX control for NateOn Messenger (NateonDownloadManager.ocx) allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long thi…	NVD-CWE-Other	CVE-2005-3114	2016-10-18 12:32	2005-09-30	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed