Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 16, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
193371	6.5	警告 Network	Google	-	Google Chrome の FFMPEG の libavformat/mov.c におけるメモリ二重解放の脆弱性	CWE-415 二重解放	CVE-2015-1207	2017-06-13 17:02	2015-01-6	Show	GitHub Exploit DB Packet Storm

193372	5.5	警告 Local	lrzip project	-	lrzip で使用される LZO の lzo1x_d.ch の lzo1x_decompress 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-125 境界外読み取り	CVE-2017-8845	2017-06-13 16:55	2017-03-25	Show	GitHub Exploit DB Packet Storm

193373	5.5	警告 Local	Linux	-	Linux Kernel の drivers/usb/serial/omninet.c の omninet_open 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2017-8925	2017-06-13 16:34	2017-03-18	Show	GitHub Exploit DB Packet Storm

193374	4.6	警告 Physics	Linux	-	Linux Kernel の drivers/usb/serial/io_ti.c の edge_bulk_in_callback 関数における重要な情報を取得される脆弱性	CWE-191 整数アンダーフロー	CVE-2017-8924	2017-06-13 16:34	2017-03-18	Show	GitHub Exploit DB Packet Storm

193375	9.8	緊急 Network	DELL EMC (旧 EMC Corporation)	-	EMC Mainframe Enablers ResourcePak Base における認可・権限・アクセス制御に関する脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2017-4982	2017-06-13 16:18	2017-05-8	Show	GitHub Exploit DB Packet Storm

193376	6.1	警告 Network	BlackBerry	-	BlackBerry Unified Endpoint Manager におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2017-3894	2017-06-13 16:02	2017-05-9	Show	GitHub Exploit DB Packet Storm

193377	6.1	警告 Network	SunnyThemes	-	WordPress 用 Spiffy Calendar プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2017-9420	2017-06-13 15:32	2017-06-2	Show	GitHub Exploit DB Packet Storm

193378	6.1	警告 Network	Michael De Wildt	-	WordPress Backup to Dropbox プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-9310	2017-06-13 15:32	2014-12-22	Show	GitHub Exploit DB Packet Storm

193379	9.8	緊急 Network	Atlassian	-	Atlassian SourceTree における OS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2017-8768	2017-06-13 15:26	2017-05-3	Show	GitHub Exploit DB Packet Storm

193380	8.1	重要 Network	Foxit Software Inc	-	iOS 用 Foxit PDF におけるログイン情報を傍受される脆弱性	CWE-295 不正な証明書検証	CVE-2017-8059	2017-06-13 15:17	2017-05-5	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 16, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
346551	-	hylafax	hylafax	hfaxd in HylaFAX before 4.2.1, when installed with a "weak" hosts.hfaxd file, allows remote attackers to authenticate and bypass intended access restrictions via a crafted (1) username or (2) hostnam…	NVD-CWE-Other	CVE-2004-1182	2016-10-18 11:52	2004-12-31	Show	GitHub Exploit DB Packet Storm

346552	-	gadu-gadu	gadu-gadu_instant_messenger	Cross-site scripting vulnerability in the parser for Gadu-Gadu allows remote attackers to inject arbitrary web script or HTML via (1) http:// or (2) news:// URLs, a different vulnerability than CVE-2…	NVD-CWE-Other	CVE-2004-1229	2016-10-18 11:52	2005-01-10	Show	GitHub Exploit DB Packet Storm

346553	-	atari800 debian	atari800 debian_linux	Multiple buffer overflows in the RtConfigLoad function in rt-config.c for Atari800 before 1.3.4 allow local users to execute arbitrary code via large values in the configuration file.	NVD-CWE-Other	CVE-2004-1076	2016-10-18 11:51	2005-01-10	Show	GitHub Exploit DB Packet Storm

346554	-	rssh gentoo	rssh linux	rssh 2.2.2 and earlier does not properly restrict programs that can be run, which could allow remote authenticated users to bypass intended access restrictions and execute arbitrary programs via (1) …	NVD-CWE-Other	CVE-2004-1161	2016-10-18 11:51	2005-01-10	Show	GitHub Exploit DB Packet Storm

346555	-	ssmtp	ssmtp	The log_event function in ssmtp 2.50.6 and earlier allows local users to overwrite arbitrary files via a symlink attack on the ssmtp.log temporary log file.	NVD-CWE-Other	CVE-2004-0423	2016-10-18 11:45	2004-07-7	Show	GitHub Exploit DB Packet Storm

346556	-	microsoft	ie	Internet Explorer 6 allows remote attackers to cause a denial of service (crash) via Javascript that creates a new popup window and disables the imagetoolbar functionality with a META tag, which trig…	NVD-CWE-Other	CVE-2004-0479	2016-10-18 11:45	2004-07-7	Show	GitHub Exploit DB Packet Storm

346557	-	yabb	yabb	Directory traversal vulnerability in ModifyMessage.php in YaBB SE 1.5.4 through 1.5.5b allows remote attackers to delete arbitrary files via a .. (dot dot) in the attachOld parameter.	NVD-CWE-Other	CVE-2004-0344	2016-10-18 11:44	2004-11-23	Show	GitHub Exploit DB Packet Storm

346558	-	lionmax_software	www_file_share_pro	Directory traversal vulnerability in upload capability of WWW File Share Pro 2.42 and earlier allows remote attackers to overwrite arbitrary files via .. (dot dot) sequences in the filename parameter…	NVD-CWE-Other	CVE-2004-0059	2016-10-18 11:40	2004-02-17	Show	GitHub Exploit DB Packet Storm

346559	-	lionmax_software	www_file_share_pro	WWW File Share Pro 2.42 and earlier allows remote attackers to cause a denial of service (crash) via a large POST request.	NVD-CWE-Other	CVE-2004-0060	2016-10-18 11:40	2004-02-17	Show	GitHub Exploit DB Packet Storm

346560	-	lionmax_software	www_file_share_pro	WWW File Share Pro 2.42 and earlier allows remote attackers to bypass directory access restrictions via (1) a URL with a trailing . (dot), or (2) a URI with a leading slash or backslash character.	NVD-CWE-Other	CVE-2004-0061	2016-10-18 11:40	2004-02-17	Show	GitHub Exploit DB Packet Storm