Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 7, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
196531 8.2 重要
Network 		BlackBerry - BlackBerry Enterprise Server のコアにおける脆弱性 CWE-254
セキュリティ機能 		CVE-2016-3128 2017-01-30 11:58 2016-03-11 Show GitHub Exploit DB Packet Storm
196532 6.1 警告
Network 		OpenStack - Gerrit 用 Openstack Puppet モジュールの Gerrit 設定におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-5737 2017-01-30 11:50 2016-06-22 Show GitHub Exploit DB Packet Storm
196533 5.9 警告
Network 		Ignite Realtime
Fedora Project		 - Smack の XMPP ライブラリにおける TLS の保護を回避される脆弱性 CWE-362
競合状態 		CVE-2016-10027 2017-01-30 11:40 2016-11-22 Show GitHub Exploit DB Packet Storm
196534 7.5 重要
Network 		Cloud Foundry Foundation - Cloud Foundry Foundation における認証情報のログを作成される脆弱性 CWE-200
情報漏えい 		CVE-2016-9882 2017-01-30 11:38 2016-12-16 Show GitHub Exploit DB Packet Storm
196535 9.8 緊急
Network 		Artifex Software - Artifex Software MuJS の regexp.c の regemit 関数における整数オーバーフローの脆弱性 CWE-190
整数オーバーフローまたはラップアラウンド 		CVE-2016-10141 2017-01-30 11:10 2016-12-20 Show GitHub Exploit DB Packet Storm
196536 7.5 重要
Network 		OTR - Gajim 用 OTR プラグインにおける重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2016-9107 2017-01-30 11:08 2016-10-9 Show GitHub Exploit DB Packet Storm
196537 8 重要
Network 		ブロケード コミュニケーションズ システムズ株式会社 - Brocade Virtual Traffic Manager におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2016-8201 2017-01-30 10:58 2016-09-13 Show GitHub Exploit DB Packet Storm
196538 5.5 警告
Local 		LG Electronics - MTK チップセットを使用する LG デバイスのにおける任意のサードパーティアプリケーションにアクセスされる脆弱性 CWE-200
情報漏えい 		CVE-2016-10135 2017-01-30 10:46 2016-11-17 Show GitHub Exploit DB Packet Storm
196539 8.8 重要
Network 		MetalGenix - GeniXCMS のメディアリネーム機能におけるファイルをリネームされる脆弱性 CWE-19
データ処理 		CVE-2017-5520 2017-01-30 10:44 2017-01-13 Show GitHub Exploit DB Packet Storm
196540 7.4 重要
Network 		MetalGenix - GeniXCMS のメディアファイルアップロード機能における SSRF 攻撃を実行される脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2017-5518 2017-01-30 10:44 2017-01-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
350051 - d-link dwl-1000ap D-Link DWL-1000AP Firmware 3.2.28 #483 Wireless LAN Access Point stores the administrative password in plaintext in the default Management Information Base (MIB), which allows remote attackers to gai… NVD-CWE-Other
CVE-2001-1220 2008-09-6 05:25 2001-12-21 Show GitHub Exploit DB Packet Storm
350052 - d-link dwl-1000ap D-Link DWL-1000AP Firmware 3.2.28 #483 Wireless LAN Access Point uses a default SNMP community string of 'public' which allows remote attackers to gain sensitive information. NVD-CWE-Other
CVE-2001-1221 2008-09-6 05:25 2001-12-21 Show GitHub Exploit DB Packet Storm
350053 - plesk plesk_server_administrator Plesk Server Administrator (PSA) 1.0 allows remote attackers to obtain PHP source code via an HTTP request containing the target's IP address and a valid account name for the domain. NVD-CWE-Other
CVE-2001-1222 2008-09-6 05:25 2002-03-25 Show GitHub Exploit DB Packet Storm
350054 - elsa lancom_1100_office The web administration server for ELSA Lancom 1100 Office does not require authentication, which allows arbitrary remote attackers to gain administrative privileges by connecting to the server. NVD-CWE-Other
CVE-2001-1223 2008-09-6 05:25 2001-12-26 Show GitHub Exploit DB Packet Storm
350055 - lightwave consoleserver The pre-login mode in the System Administrator interface of Lightwave ConsoleServer 3200 allows remote attackers to obtain sensitive information such as system status, configuration, and users. NVD-CWE-Other
CVE-2001-0396 2008-09-6 05:24 2001-07-2 Show GitHub Exploit DB Packet Storm
350056 - silent_runner silent_runner_collector_src Buffer overflow in Silent Runner Collector (SRC) 1.6.1 allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long SMTP HELO command. NVD-CWE-Other
CVE-2001-0397 2008-09-6 05:24 2001-06-18 Show GitHub Exploit DB Packet Storm
350057 - ritlabs the_bat The BAT! mail client allows remote attackers to bypass user warnings of an executable attachment and execute arbitrary commands via an attachment whose file name contains many spaces, which also caus… NVD-CWE-Other
CVE-2001-0398 2008-09-6 05:24 2001-06-18 Show GitHub Exploit DB Packet Storm
350058 - matt_tourtillott nph-maillist nph-maillist.pl allows remote attackers to execute arbitrary commands via shell metacharacters ("`") in the email address. NVD-CWE-Other
CVE-2001-0400 2008-09-6 05:24 2001-07-2 Show GitHub Exploit DB Packet Storm
350059 - samba samba Samba before 2.2.0 allows local attackers to overwrite arbitrary files via a symlink attack using (1) a printer queue query, (2) the more command in smbclient, or (3) the mput command in smbclient. NVD-CWE-Other
CVE-2001-0406 2008-09-6 05:24 2001-07-2 Show GitHub Exploit DB Packet Storm
350060 - ncm ncm_content_management_system content.pl script in NCM Content Management System allows remote attackers to read arbitrary contents of the content database by inserting SQL characters into the id parameter. NVD-CWE-Other
CVE-2001-0418 2008-09-6 05:24 2001-07-2 Show GitHub Exploit DB Packet Storm