Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
193801 8.8 重要
Network 		Kallithea - Kallithea におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2016-3691 2017-05-18 18:53 2016-05-2 Show GitHub Exploit DB Packet Storm
193802 6.5 警告
Network 		Kallithea - Kallithea における認可・権限・アクセス制御に関する脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-3114 2017-05-18 18:53 2016-05-2 Show GitHub Exploit DB Packet Storm
193803 5.5 警告
Local 		Fabrice Bellard - QEMU の hw/display/cirrus_vga_rop.h におけるサービス運用妨害 (DoS) の脆弱性 CWE-125
境界外読み取り 		CVE-2017-7718 2017-05-18 18:51 2017-03-16 Show GitHub Exploit DB Packet Storm
193804 8.8 重要
Network 		PoDoFo project - PoDoFo におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2017-8787 2017-05-18 18:50 2017-04-22 Show GitHub Exploit DB Packet Storm
193805 5.5 警告
Local 		PoDoFo project - PoDoFo におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2017-8054 2017-05-18 18:50 2017-04-22 Show GitHub Exploit DB Packet Storm
193806 5.5 警告
Local 		PoDoFo project - PoDoFo におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2017-8053 2017-05-18 18:50 2017-04-22 Show GitHub Exploit DB Packet Storm
193807 5.5 警告
Local 		PoDoFo project - PoDoFo におけるサービス運用妨害 (DoS) の脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2017-7994 2017-05-18 18:50 2017-04-21 Show GitHub Exploit DB Packet Storm
193808 8.8 重要
Local 		IBM - IBM Platform LSF における権限を昇格される脆弱性 CWE-320
鍵管理のエラー 		CVE-2017-1205 2017-05-18 18:29 2017-04-6 Show GitHub Exploit DB Packet Storm
193809 7.3 重要
Network 		IBM - IBM API Connect における入力確認に関する脆弱性 CWE-20
不適切な入力確認 		CVE-2017-1161 2017-05-18 18:29 2017-03-21 Show GitHub Exploit DB Packet Storm
193810 5.4 警告
Network 		IBM - IBM Financial Transaction Manager におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2017-1160 2017-05-18 18:29 2017-04-5 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
346951 - indexcor ezdatabase Directory traversal vulnerability in index.php in ezDatabase 2.1.2 and earlier allows remote attackers to include arbitrary local files via ".." sequences in the p parameter. NVD-CWE-Other
CVE-2005-4302 2011-03-8 11:27 2005-12-17 Show GitHub Exploit DB Packet Storm
346952 - focalmedia.net sitenet_bbs Multiple cross-site scripting (XSS) vulnerabilities in SiteNet BBS 2.0 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) pg, (2) tid, (3) cid, and (4) fid paramete… NVD-CWE-Other
CVE-2005-4306 2011-03-8 11:27 2005-12-17 Show GitHub Exploit DB Packet Storm
346953 - jonathan_bravata scarecrow Cross-site scripting (XSS) vulnerability in ScareCrow 2.13 and earlier allows remote attackers to inject arbitrary web script or HTML via the forum parameter to (1) forum.cgi and (2) post.cgi, or (3)… NVD-CWE-Other
CVE-2005-4307 2011-03-8 11:27 2005-12-17 Show GitHub Exploit DB Packet Storm
346954 - ssh tectia_server SSH Tectia Server 5.0.0 (A, F, and T), when allowing host-based authentication only, allows users to log in with the wrong credentials. NVD-CWE-Other
CVE-2005-4310 2011-03-8 11:27 2005-12-17 Show GitHub Exploit DB Packet Storm
346955 - dcscripts dcforum
dcforum\+ 		Cross-site scripting (XSS) vulnerability in DCForum 6.25 and earlier, and possibly DCForum+ 1.x, allows remote attackers to inject arbitrary web script or HTML via (1) the page parameter in dcboard.p… NVD-CWE-Other
CVE-2005-4311 2011-03-8 11:27 2005-12-17 Show GitHub Exploit DB Packet Storm
346956 - - - SQL injection vulnerability in index.php in AlmondSoft Almond Classifieds 5.02 allows remote attackers to execute arbitrary SQL commands via the id parameter. NVD-CWE-Other
CVE-2005-4312 2011-03-8 11:27 2005-12-17 Show GitHub Exploit DB Packet Storm
346957 - ppcal_shopping_cart ppcal_shopping_cart Cross-site scripting (XSS) vulnerability in ppcal.cgi in PPCal Shopping Cart 3.3.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the (1) stop and (2) user parameters. NVD-CWE-Other
CVE-2005-4314 2011-03-8 11:27 2005-12-17 Show GitHub Exploit DB Packet Storm
346958 - sourcefire snort Stack-based buffer overflow in the Back Orifice (BO) preprocessor for Snort before 2.4.3 allows remote attackers to execute arbitrary code via a crafted UDP packet. NVD-CWE-Other
CVE-2005-3252 2011-03-8 11:26 2005-10-19 Show GitHub Exploit DB Packet Storm
346959 - avaya
proxim 		wireless_ap-3
wireless_ap-4
wireless_ap-5
wireless_ap-6
wireless_ap-7
wireless_ap-8
ap-2000
ap-4000
ap-600
ap-700 		Wireless Access Points (AP) for (1) Avaya AP-3 through AP-6 2.5 to 2.5.4, and AP-7/AP-8 2.5 and other versions before 3.1, and (2) Proxim AP-600 and AP-2000 before 2.5.5, and Proxim AP-700 and AP-400… NVD-CWE-Other
CVE-2005-3253 2011-03-8 11:26 2005-12-16 Show GitHub Exploit DB Packet Storm
346960 - squid squid The rfc1738_do_escape function in ftp.c for Squid 2.5 STABLE11 and earlier allows remote FTP servers to cause a denial of service (segmentation fault) via certain "odd" responses. NVD-CWE-Other
CVE-2005-3258 2011-03-8 11:26 2005-10-20 Show GitHub Exploit DB Packet Storm