Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 4, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
192631 8.8 重要
Network 		Unitrends - Unitrends Enterprise Backup における入力確認に関する脆弱性 CWE-20
不適切な入力確認 		CVE-2017-7283 2017-05-18 16:23 2017-04-14 Show GitHub Exploit DB Packet Storm
192632 9.8 緊急
Network 		Google - Android One デバイス上で稼動する Android の Qualcomm GPS サブシステムにおける任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-6727 2017-05-18 16:23 2016-11-7 Show GitHub Exploit DB Packet Storm
192633 7.8 重要
Local 		Phusion B.V. - Phusion Passenger における認可・権限・アクセス制御に関する脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-10345 2017-05-18 16:23 2016-11-9 Show GitHub Exploit DB Packet Storm
192634 7.5 重要
Network 		flatCore - flatCore における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2017-7879 2017-05-18 16:19 2017-04-11 Show GitHub Exploit DB Packet Storm
192635 9.8 緊急
Network 		flatCore - flatCore における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2017-7878 2017-05-18 16:19 2017-04-12 Show GitHub Exploit DB Packet Storm
192636 8.8 重要
Network 		flatCore - flatCore におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2017-7877 2017-05-18 16:19 2017-04-12 Show GitHub Exploit DB Packet Storm
192637 8.8 重要
Network 		BigTree CMS - BigTree CMS におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2017-7881 2017-05-18 16:00 2017-04-14 Show GitHub Exploit DB Packet Storm
192638 8.8 重要
Network 		MantisBT Group - MantisBT における任意のパスワードにリセットされる脆弱性 CWE-640
パスワードを忘れた場合の脆弱なパスワードリカバリの仕組み 		CVE-2017-7615 2017-05-18 15:55 2017-04-8 Show GitHub Exploit DB Packet Storm
192639 9.8 緊急
Network 		サムスン - Samsung SM-G920F デバイス上で稼動する SecEmailSync における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2016-2566 2017-05-18 15:05 2016-02-2 Show GitHub Exploit DB Packet Storm
192640 3.3
Local 		サムスン - Samsung SM-G920F デバイス上で稼動する SecEmailSync における送信済み電子メールメッセージを読まれる脆弱性 CWE-200
情報漏えい 		CVE-2016-2565 2017-05-18 15:05 2016-02-2 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 4, 2026, 4:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
348011 - evan_sims effingerd efFingerD 0.2.12 allows remote attackers to cause a denial of service (daemon crash) via a packet with a single byte, which triggers a "Wrong protocol or connection state" error. NVD-CWE-Other
CVE-2004-2273 2008-09-6 05:43 2004-12-31 Show GitHub Exploit DB Packet Storm
348012 - ibm lotus_notes Buffer overflow in IBM Lotus Notes 6.5.x before 6.5.3 and 6.0.x before 6.0.5 allows remote attackers to cause a denial of service (crash) via unknown vectors related to Java applets, as identified by… NVD-CWE-Other
CVE-2004-2280 2008-09-6 05:43 2004-12-31 Show GitHub Exploit DB Packet Storm
348013 - ibm lotus_notes Multiple unknown vulnerabilities in IBM Lotus Notes 6.5.x before 6.5.4 and 6.0.x before 6.0.5 have unknown impact and attack vectors, related to Java applets, as identified by (1) KSPR5YS6GR and (2) … NVD-CWE-Other
CVE-2004-2281 2008-09-6 05:43 2004-12-31 Show GitHub Exploit DB Packet Storm
348014 - daniel_barron dansguardian DansGuardian before 2.7.7-2 allows remote attackers to bypass URL filters via a ".." in the request. NVD-CWE-Other
CVE-2004-2282 2008-09-6 05:43 2004-12-31 Show GitHub Exploit DB Packet Storm
348015 - daniel_barron dansguardian Unknown vulnerability in DansGuardian before 2.6.1-13 allows remote attackers to bypass URL filters via a crafted request that causes a page to be added to the clean page cache. NVD-CWE-Other
CVE-2004-2283 2008-09-6 05:43 2004-12-31 Show GitHub Exploit DB Packet Storm
348016 - dsm light_web_file_browser Directory traversal vulnerability in explorer.php in DSM Light Web File Browser 2.0 allows remote attackers to read arbitrary files via .. (dot dot) in the wdir parameter. NVD-CWE-Other
CVE-2004-2287 2008-09-6 05:43 2004-12-31 Show GitHub Exploit DB Packet Storm
348017 - jelsoft vbulletin Cross-site scripting (XSS) vulnerability in index.php in Jelsoft vBulletin allows remote attackers to spoof parts of a website via the loc parameter. NVD-CWE-Other
CVE-2004-2288 2008-09-6 05:43 2004-12-31 Show GitHub Exploit DB Packet Storm
348018 - francisco_burzi php-nuke Canonicalize-before-filter error in the send_review function in the Reviews module for PHP-Nuke 6.0 to 7.3 allows remote attackers to inject arbitrary web script or HTML via hex-encoded XSS sequences… NVD-CWE-Other
CVE-2004-2294 2008-09-6 05:43 2004-12-31 Show GitHub Exploit DB Packet Storm
348019 - novell internet_messaging_system
netmail 		Novell Internet Messaging System (NIMS) 2.6 and 3.0, and NetMail 3.1 and 3.5, is installed with a default NMAP authentication credential, which allows remote attackers to read and write mail store da… NVD-CWE-Other
CVE-2004-2298 2008-09-6 05:43 2004-12-31 Show GitHub Exploit DB Packet Storm
348020 - mbedthis_software mbedthis_appweb_http_server Information leak in Mbedthis AppWeb HTTP server 1.0 through 1.1.2 allows remote attackers to obtain sensitive information via a user message that is generated when Mbedthis denies access. NVD-CWE-Other
CVE-2004-2317 2008-09-6 05:43 2004-12-31 Show GitHub Exploit DB Packet Storm