Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 17, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
192861	8.8	重要 Network	PivotX	-	PivotX における任意の PHP コードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2017-8402	2017-06-26 18:15	2017-05-29	Show	GitHub Exploit DB Packet Storm

192862	6.5	警告 Network	Cloud Foundry Foundation Pivotal Software, Inc.	-	Pivotal Elastic Runtime および cf-release の Loggregator Traffic Controller エンドポイントにおける入力確認に関する脆弱性	CWE-20 不適切な入力確認	CVE-2016-2165	2017-06-26 18:12	2016-03-23	Show	GitHub Exploit DB Packet Storm

192863	6.1	警告 Network	Cloud Foundry Foundation Pivotal Software, Inc.	-	Cloud Foundry などの製品の UAA OAuth 承認ページにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-0781	2017-06-26 18:12	2016-03-23	Show	GitHub Exploit DB Packet Storm

192864	7.5	重要 Network	Cloud Foundry Foundation Pivotal Software, Inc.	-	Pivotal Elastic Runtime および cf-release におけるリソース管理に関する脆弱性	CWE-399 リソース管理の問題	CVE-2016-0780	2017-06-26 18:12	2016-03-23	Show	GitHub Exploit DB Packet Storm

192865	8.8	重要 Network	Cloud Foundry Foundation Pivotal Software, Inc.	-	Cloud Foundry Runtime cf-release などの製品におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2015-3191	2017-06-26 18:12	2015-04-10	Show	GitHub Exploit DB Packet Storm

192866	7	重要 Local	Google	-	Android の TrustZone における競合状態に関する脆弱性	CWE-362 競合状態	CVE-2016-10297	2017-06-26 17:35	2017-05-1	Show	GitHub Exploit DB Packet Storm

192867	7.8	重要 Local	Google	-	Android の TrustZone における二重解放に関する脆弱性	CWE-415 二重解放	CVE-2015-9007	2017-06-26 17:35	2017-05-1	Show	GitHub Exploit DB Packet Storm

192868	7.8	重要 Local	Google	-	Android の TrustZone における整数オーバーフローの脆弱性	CWE-190 整数オーバーフローまたはラップアラウンド	CVE-2015-9005	2017-06-26 17:35	2017-05-1	Show	GitHub Exploit DB Packet Storm

192869	5.5	警告 Local	Google	-	Android の TrustZone における情報漏えいに関する脆弱性	CWE-200 情報漏えい	CVE-2014-9951	2017-06-26 17:35	2017-05-1	Show	GitHub Exploit DB Packet Storm

192870	7.8	重要 Local	Google	-	Android の TrustZone における NULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2014-9949	2017-06-26 17:35	2017-05-1	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 17, 2026, 4:15 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
346691	-	soren_boysen	skull-splitter_guestbook	Cross-site scripting (XSS) vulnerability in Skull-Splitter Guestbook 1.0, 2.0 and 2.2 allows remote attackers to inject arbitrary web script or HTML via the (1) title or (2) content of a message.	NVD-CWE-Other	CVE-2005-1620	2016-10-18 12:21	2005-05-16	Show	GitHub Exploit DB Packet Storm

346692	-	postnuke_software_foundation	postnuke	Directory traversal vulnerability in the pnModFunc function in pnMod.php for PostNuke 0.750 through 0.760rc4 allows remote attackers to read arbitrary files via a .. (dot dot) in the func parameter t…	NVD-CWE-Other	CVE-2005-1621	2016-10-18 12:21	2005-05-16	Show	GitHub Exploit DB Packet Storm

346693	-	metalinks	metacart_e-shop	Cross-site scripting (XSS) vulnerability in productsByCategory.asp in MetaCart e-Shop allows remote attackers to inject arbitrary web script or HTML via the strCatalog_NAME parameter.	NVD-CWE-Other	CVE-2005-1622	2016-10-18 12:21	2005-05-16	Show	GitHub Exploit DB Packet Storm

346694	-	jgs-xa	jgs-portal	Multiple SQL injection vulnerabilities in JGS-XA JGS-Portal 3.0.2 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) anzahl_beitraege parameter to jgs_portal.php, 2) yea…	NVD-CWE-Other	CVE-2005-1633	2016-10-18 12:21	2005-05-17	Show	GitHub Exploit DB Packet Storm

346695	-	jgs-xa	jgs-portal	Multiple cross-site scripting (XSS) vulnerabilities in JGS-XA JGS-Portal 3.0.2 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) anzahl_beitraege parameter to jgs_…	NVD-CWE-Other	CVE-2005-1634	2016-10-18 12:21	2005-05-17	Show	GitHub Exploit DB Packet Storm

346696	-	jgs-xa	jgs-portal	JGS-XA JGS-Portal 3.0.2 and earlier allows remote attackers to obtain the full server path via direct requests to (1) jgs_portal_ref.php, (2) jgs_portal_land.php, (3) jgs_portal_log.php, (4) jgs_port…	NVD-CWE-Other	CVE-2005-1635	2016-10-18 12:21	2005-05-17	Show	GitHub Exploit DB Packet Storm

346697	-	yahoo	messenger	The Logfile feature in Yahoo! Messenger 5.x through 6.0 can be activated by a YMSGR: URL and writes all output to a single ypager.log file, even when there are multiple users, and does not properly w…	NVD-CWE-Other	CVE-2005-1671	2016-10-18 12:21	2005-05-19	Show	GitHub Exploit DB Packet Storm

346698	-	timo_rossi	picasm	Stack-based buffer overflow in the error directive in picasm 1.12b and earlier allows attackers to execute arbitrary code via a long error message.	NVD-CWE-Other	CVE-2005-1679	2016-10-18 12:21	2005-05-20	Show	GitHub Exploit DB Packet Storm

346699	-	d-link	dsl-502t dsl-504t dsl-562t dsl-g604t	D-Link DSL-502T, DSL-504T, DSL-562T, and DSL-G604T, when /cgi-bin/firmwarecfg is executed, allows remote attackers to bypass authentication (1) if their IP address already exists in /var/tmp/fw_ip or…	NVD-CWE-Other	CVE-2005-1680	2016-10-18 12:21	2005-05-20	Show	GitHub Exploit DB Packet Storm

346700	-	bugada_andrea	php_advanced_transfer_manager	PHP remote file inclusion vulnerability in common.php in phpATM 1.21, and possibly earlier versions, allows remote attackers to execute arbitrary PHP code via a URL in the include_location parameter …	NVD-CWE-Other	CVE-2005-1681	2016-10-18 12:21	2005-05-20	Show	GitHub Exploit DB Packet Storm