Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
193111 9.8 緊急
Network 		libxpm project - libXpm における整数オーバーフローの脆弱性 CWE-119
CWE-190
CWE-787
CVE-2016-10164 2017-03-9 11:29 2016-12-12 Show GitHub Exploit DB Packet Storm
193112 5.9 警告
Network 		ChatSecure
Zom		 - ChatSecure および Zom の複数の XMPP クライアントの "XEP-0280: Message Carbons" の実装における連絡先を含むユーザになりすまされる脆弱性 CWE-20
CWE-346
CVE-2017-5590 2017-03-8 19:10 2017-01-24 Show GitHub Exploit DB Packet Storm
193113 6.1 警告
Network 		Visonic - Visonic PowerLink2 におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-5811 2017-03-8 19:06 2016-12-13 Show GitHub Exploit DB Packet Storm
193114 9.8 緊急
Network 		OmniMetrix, LLC - OmniMetrix OmniView Web アプリケーションにおけるアクセス権を取得される脆弱性 CWE-284
不適切なアクセス制御 		CVE-2016-5801 2017-03-8 19:02 2016-12-15 Show GitHub Exploit DB Packet Storm
193115 7.5 重要
Network 		OmniMetrix, LLC - OmniMetrix OmniView Web アプリケーションにおけるアカウント認証情報が漏えいする脆弱性 CWE-200
情報漏えい 		CVE-2016-5786 2017-03-8 19:02 2016-12-15 Show GitHub Exploit DB Packet Storm
193116 9.8 緊急
Network 		Lynxspring - Lynxspring JENEsys BAS Bridge におけるアプリケーションのデータベースにおいて認証情報の保護に十分なセーフガードが欠落している脆弱性 CWE-255
証明書・パスワード管理 		CVE-2016-8378 2017-03-8 18:51 2016-11-15 Show GitHub Exploit DB Packet Storm
193117 8.8 重要
Network 		Lynxspring - Lynxspring JENEsys BAS Bridge におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2016-8369 2017-03-8 18:51 2016-11-15 Show GitHub Exploit DB Packet Storm
193118 8.6 重要
Network 		Lynxspring - Lynxspring JENEsys BAS Bridge における認証なしでシステム内に侵入される脆弱性 CWE-798
ハードコードされた認証情報の使用 		CVE-2016-8361 2017-03-8 18:51 2016-11-15 Show GitHub Exploit DB Packet Storm
193119 7.1 重要
Network 		Lynxspring - Lynxspring JENEsys BAS Bridge における読み取り専用アクセスでアプリケーション内にて任意の変更を許可される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-8357 2017-03-8 18:51 2016-11-15 Show GitHub Exploit DB Packet Storm
193120 6.1 警告
Network 		Moxa Inc. - 複数の Moxa NPort 製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-9371 2017-03-8 18:37 2016-12-1 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 25, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
314831 - apple safari Apple Safari allows remote attackers to bypass intended cookie access restrictions on a web application via "%2e%2e" (encoded dot dot) directory traversal sequences in a URL, which causes Safari to s… NVD-CWE-Other
CVE-2003-0514 2008-09-6 05:34 2004-04-15 Show GitHub Exploit DB Packet Storm
314832 - daiki_ueno liece_emacs_irc_client The liece Emacs IRC client 2.0+0.20030527 and earlier creates temporary files insecurely, which could allow local users to overwrite arbitrary files as other users. NVD-CWE-Other
CVE-2003-0537 2008-09-6 05:34 2003-08-18 Show GitHub Exploit DB Packet Storm
314833 - sgi irix The DNS callbacks in nsd in SGI IRIX 6.5.x through 6.5.20f, and possibly earlier versions, do not perform sufficient sanity checking, with unknown impact. NVD-CWE-Other
CVE-2003-0573 2008-09-6 05:34 2003-08-18 Show GitHub Exploit DB Packet Storm
314834 - phpgroupware phpgroupware Unknown vulnerability in the Virtual File System (VFS) capability for phpGroupWare 0.9.16preRC and versions before 0.9.14.004 with unknown implications, related to the VFS path being under the web do… NVD-CWE-Other
CVE-2003-0599 2008-09-6 05:34 2003-08-27 Show GitHub Exploit DB Packet Storm
314835 - mozilla bugzilla Multiple cross-site scripting vulnerabilities (XSS) in Bugzilla 2.16.x before 2.16.3 and 2.17.x before 2.17.4 allow remote attackers to insert arbitrary HTML or web script via (1) multiple default Ge… NVD-CWE-Other
CVE-2003-0602 2008-09-6 05:34 2003-08-27 Show GitHub Exploit DB Packet Storm
314836 - mozilla bugzilla Bugzilla 2.16.x before 2.16.3, 2.17.x before 2.17.4, and earlier versions allows local users to overwrite arbitrary files via a symlink attack on temporary files that are created in directories with … NVD-CWE-Other
CVE-2003-0603 2008-09-6 05:34 2003-08-27 Show GitHub Exploit DB Packet Storm
314837 - xtokkaetama xtokkaetama Multiple buffer overflows in xtokkaetama 1.0 allow local users to gain privileges via a long (1) -display command line argument or (2) XTOKKAETAMADIR environment variable. NVD-CWE-Other
CVE-2003-0611 2008-09-6 05:34 2003-08-27 Show GitHub Exploit DB Packet Storm
314838 - novell ichain Novell iChain 2.2 before Support Pack 1 does not properly verify that URL redirects match the DNS name of an accelerator, which allows attackers to redirect URLs to malicious web sites. NVD-CWE-Other
CVE-2003-0636 2008-09-6 05:34 2003-08-27 Show GitHub Exploit DB Packet Storm
314839 - bea weblogic_server BEA WebLogic Server and Express, when using NodeManager to start servers, provides Operator users with privileges to overwrite usernames and passwords, which may allow Operators to gain Admin privile… NVD-CWE-Other
CVE-2003-0640 2008-09-6 05:34 2003-08-27 Show GitHub Exploit DB Packet Storm
314840 - johannes_sixt kdbg Kdbg 1.1.0 through 1.2.8 does not check permissions of the .kdbgrc file, which allows local users to execute arbitrary commands. NVD-CWE-Other
CVE-2003-0644 2008-09-6 05:34 2003-09-7 Show GitHub Exploit DB Packet Storm