Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
193641	5.4	警告 Network	IBM	-	IBM Kenexa LCMS Premier on Cloud におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-5948	2017-02-22 11:25	2016-06-29	Show	GitHub Exploit DB Packet Storm

193642	7.8	重要 Local	IBM	-	IBM Security Identity Manager 仮想アプライアンスにおけるユーザの認証情報を読まれる脆弱性	CWE-255 証明書・パスワード管理	CVE-2016-9739	2017-02-22 11:09	2016-12-1	Show	GitHub Exploit DB Packet Storm

193643	6.1	警告 Network	IBM	-	IBM Security Identity Manager 仮想アプライアンスにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-9704	2017-02-22 11:09	2016-12-1	Show	GitHub Exploit DB Packet Storm

193644	2.4	低 Physics	IBM	-	IBM Security Identity Manager 仮想アプライアンスにおける重要な情報を取得される脆弱性	CWE-384 セッションの固定化	CVE-2016-9703	2017-02-22 11:09	2016-12-1	Show	GitHub Exploit DB Packet Storm

193645	3.7	低 Network	IBM	-	IBM Security Access Manager における情報を公開される脆弱性	CWE-200 情報漏えい	CVE-2016-3045	2017-02-22 11:07	2016-12-8	Show	GitHub Exploit DB Packet Storm

193646	4	警告 Local	IBM	-	IBM Security Key Lifecycle Manager におけるローカルに保存された Web ページを読まれる脆弱性	CWE-200 情報漏えい	CVE-2016-6097	2017-02-21 16:55	2016-06-29	Show	GitHub Exploit DB Packet Storm

193647	6.1	警告 Network	IBM	-	IBM Security Key Lifecycle Manager におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-6096	2017-02-21 16:55	2016-06-29	Show	GitHub Exploit DB Packet Storm

193648	4.3	警告 Network	IBM	-	IBM Security Key Lifecycle Manager における環境などに関する重要な情報を含むエラーメッセージを出力される脆弱性	CWE-200 情報漏えい	CVE-2016-6094	2017-02-21 16:55	2016-06-29	Show	GitHub Exploit DB Packet Storm

193649	6.2	警告 Local	IBM	-	IBM Security Key Lifecycle Manager における平文で保存されたユーザの認証情報を読まれる脆弱性	CWE-200 情報漏えい	CVE-2016-6092	2017-02-21 16:55	2016-06-29	Show	GitHub Exploit DB Packet Storm

193650	5.4	警告 Network	IBM	-	IBM Connections におけるホストヘッダを挿入される脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-0310	2017-02-21 16:43	2016-08-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 21, 2026, 4:10 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
293901	-	php	php	Multiple buffer overflows in the php_ntuser component for PHP 5.2.3 allow context-dependent attackers to cause a denial of service or execute arbitrary code via long arguments to the (1) ntuser_getus…	NVD-CWE-Other	CVE-2007-4507	2017-09-29 10:29	2007-08-24	Show	GitHub Exploit DB Packet Storm

293902	-	joomla	eventlist	SQL injection vulnerability in index.php in the EventList component (com_eventlist) 0.8 and earlier for Joomla! allows remote attackers to execute arbitrary SQL commands via the did parameter in a de…	NVD-CWE-Other	CVE-2007-4509	2017-09-29 10:29	2007-08-24	Show	GitHub Exploit DB Packet Storm

293903	-	ibm	aix	Multiple stack-based buffer overflows in IBM AIX 5.2 and 5.3 allow local users to gain privileges via a long argument to the (1) "-p" option to lqueryvg or (2) the "-V" option to lquerypv.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2007-4513	2017-09-29 10:29	2007-11-6	Show	GitHub Exploit DB Packet Storm

293904	-	php	php	The Foreign Function Interface (ffi) extension in PHP 5.0.5 does not follow safe_mode restrictions, which allows context-dependent attackers to execute arbitrary code by loading an arbitrary DLL and …	NVD-CWE-Other	CVE-2007-4528	2017-09-29 10:29	2007-08-25	Show	GitHub Exploit DB Packet Storm

293905	-	kde	kde	backend/session.c in KDM in KDE 3.3.0 through 3.5.7, when autologin is configured and "shutdown with password" is enabled, allows remote attackers to bypass the password requirement and login to arbi…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2007-4569	2017-09-29 10:29	2007-09-22	Show	GitHub Exploit DB Packet Storm

293906	-	redhat	mcstrans	Algorithmic complexity vulnerability in the MCS translation daemon in mcstrans 0.2.3 allows local users to cause a denial of service (temporary daemon outage) via a large range of compartments in sen…	CWE-20 Improper Input Validation	CVE-2007-4570	2017-09-29 10:29	2007-11-10	Show	GitHub Exploit DB Packet Storm

293907	-	redhat	enterprise_linux	Unspecified vulnerability in the "stack unwinder fixes" in kernel in Red Hat Enterprise Linux 5, when running on AMD64 and Intel 64, allows local users to cause a denial of service via unknown vector…	NVD-CWE-noinfo	CVE-2007-4574	2017-09-29 10:29	2007-10-23	Show	GitHub Exploit DB Packet Storm

293908	-	openoffice	openoffice	HSQLDB before 1.8.0.9, as used in OpenOffice.org (OOo) 2 before 2.3.1, allows user-assisted remote attackers to execute arbitrary Java code via crafted database documents, related to "exposing static…	CWE-94 Code Injection	CVE-2007-4575	2017-09-29 10:29	2007-12-6	Show	GitHub Exploit DB Packet Storm

293909	-	wbb2-addon	acrotxt	SQL injection vulnerability in acrotxt.php in WBB2-Addon: Acrotxt 1 allows remote attackers to execute arbitrary SQL commands via the show parameter.	CWE-89 SQL Injection	CVE-2007-4581	2017-09-29 10:29	2007-08-29	Show	GitHub Exploit DB Packet Storm

293910	-	acti	network_video_recorder	Buffer overflow in the nvUnifiedControl.AUnifiedControl.1 ActiveX control in nvUnifiedControl.dll 1.1.45.0 in ACTi Network Video Recorder (NVR) SP2 2.0 allows remote attackers to execute arbitrary co…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2007-4582	2017-09-29 10:29	2007-08-29	Show	GitHub Exploit DB Packet Storm