Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 15, 2026, 12:10 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
192621	9.8	緊急 Network	VMware	-	VMware Unified Access Gateway および Horizon View におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2017-4907	2017-07-3 16:46	2017-04-18	Show	GitHub Exploit DB Packet Storm

192622	5.4	警告 Network	IBM	-	IBM Business Process Manager におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2017-1140	2017-07-3 16:42	2017-03-31	Show	GitHub Exploit DB Packet Storm

192623	8	重要 Network	IBM	-	IBM Sterling Order Management におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2016-9991	2017-07-3 16:42	2016-12-16	Show	GitHub Exploit DB Packet Storm

192624	5.3	警告 Network	IBM	-	IBM WebSphere Application Server における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2016-9736	2017-07-3 16:42	2016-12-1	Show	GitHub Exploit DB Packet Storm

192625	8.1	重要 Network	IBM	-	IBM Rhapsody DM における XML 外部エンティティの脆弱性	CWE-611 XML 外部エンティティ参照の不適切な制限	CVE-2016-9698	2017-07-3 16:42	2016-12-1	Show	GitHub Exploit DB Packet Storm

192626	8.1	重要 Network	IBM	-	IBM Tivoli Key Lifecycle Manager におけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2016-6098	2017-07-3 16:41	2016-06-29	Show	GitHub Exploit DB Packet Storm

192627	9.8	緊急 Network	IBM	-	IBM Tivoli Key Lifecycle Manager における証明書・パスワードの管理に関する脆弱性	CWE-255 証明書・パスワード管理	CVE-2016-6093	2017-07-3 16:41	2016-06-29	Show	GitHub Exploit DB Packet Storm

192628	5.3	警告 Network	markdown-it project	-	markdown-it におけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2015-3295	2017-07-3 16:39	2015-03-31	Show	GitHub Exploit DB Packet Storm

192629	6.5	警告 Network	libdwarf project	-	libdwarf の dwarf_leb.c におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2015-8538	2017-07-3 16:35	2015-12-14	Show	GitHub Exploit DB Packet Storm

192630	8.8	重要 Network	atmail pty ltd	-	atmail におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2017-9519	2017-07-3 16:32	2017-05-29	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
347021	-	foundrynet	edgeiron	The default configuration of Foundry Networks EdgeIron 4802F allows remote attackers to modify sensitive information via arbitrary SNMP community strings.	NVD-CWE-Other	CVE-2002-0478	2016-10-18 11:20	2002-08-12	Show	GitHub Exploit DB Packet Storm

347022	-	iss	realsecure_nokia	ISS RealSecure for Nokia devices before IPSO build 6.0.2001.141d is configured to allow a user "skank" on a machine "starscream" to become a key manager when the "first time connection" feature is en…	NVD-CWE-Other	CVE-2002-0480	2016-10-18 11:20	2002-08-12	Show	GitHub Exploit DB Packet Storm

347023	-	php	php	move_uploaded_file in PHP does not does not check for the base directory (open_basedir), which could allow remote attackers to upload files to unintended locations on the system.	NVD-CWE-Other	CVE-2002-0484	2016-10-18 11:20	2002-08-12	Show	GitHub Exploit DB Packet Storm

347024	-	linux_directory_penguin	nslookup	Linux Directory Penguin NsLookup CGI script (nslookup.pl) 1.0 allows remote attackers to execute arbitrary code via shell metacharacters in the (1) query or (2) type parameters.	NVD-CWE-Other	CVE-2002-0489	2016-10-18 11:20	2002-08-12	Show	GitHub Exploit DB Packet Storm

347025	-	phpbb_group	phpbb	phpBB 1.4.4 and earlier with BBcode allows remote attackers to cause a denial of service (CPU consumption) and corrupt the database via null \0 characters within [code] tags.	NVD-CWE-Other	CVE-2002-0533	2016-10-18 11:20	2002-08-12	Show	GitHub Exploit DB Packet Storm

347026	-	openbsd	openbsd	mail in OpenBSD 2.9 and 3.0 processes a tilde (~) escape character in a message even when it is not in interactive mode, which could allow local users to gain root privileges via calls to mail in cro…	NVD-CWE-Other	CVE-2002-0542	2016-10-18 11:20	2002-07-3	Show	GitHub Exploit DB Packet Storm

347027	-	oracle	application_server application_server_web_cache oracle8i oracle9i	PL/SQL module 3.0.9.8.2 in Oracle 9i Application Server 1.0.2.x allows remote attackers to obtain sensitive information via the OWA_UTIL stored procedures (1) OWA_UTIL.signature, (2) OWA_UTIL.listpri…	NVD-CWE-Other	CVE-2002-0560	2016-10-18 11:20	2002-07-3	Show	GitHub Exploit DB Packet Storm

347028	-	oracle	application_server application_server_web_cache oracle8i oracle9i	The default configuration of the PL/SQL Gateway web administration interface in Oracle 9i Application Server 1.0.2.x uses null authentication, which allows remote attackers to gain privileges and mod…	NVD-CWE-Other	CVE-2002-0561	2016-10-18 11:20	2002-07-3	Show	GitHub Exploit DB Packet Storm

347029	-	oracle	application_server application_server_web_cache oracle9i	The default configuration of Oracle 9i Application Server 1.0.2.x running Oracle JSP or SQLJSP stores globals.jsa under the web root, which allows remote attackers to gain sensitive information inclu…	NVD-CWE-Other	CVE-2002-0562	2016-10-18 11:20	2002-07-3	Show	GitHub Exploit DB Packet Storm

347030	-	oracle	application_server application_server_web_cache oracle8i oracle9i	PL/SQL module 3.0.9.8.2 in Oracle 9i Application Server 1.0.2.x allows remote attackers to bypass authentication for a Database Access Descriptor (DAD) by modifying the URL to reference an alternate …	NVD-CWE-Other	CVE-2002-0564	2016-10-18 11:20	2002-07-3	Show	GitHub Exploit DB Packet Storm