Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 6, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
196631 9.8 緊急
Network 		GNU Project - GNU oSIP におけるバッファエラーの脆弱性 CWE-119
バッファエラー 		CVE-2016-10324 2017-05-16 17:57 2016-09-2 Show GitHub Exploit DB Packet Storm
196632 9.8 緊急
Network 		ATutor - ATutor の include/lib/mysql_connect.inc.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2016-2555 2017-05-16 17:56 2016-03-7 Show GitHub Exploit DB Packet Storm
196633 6.1 警告
Network 		openSUSE project
Roundcube.net		 - Roundcube Webmail におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-4068 2017-05-16 17:52 2016-01-6 Show GitHub Exploit DB Packet Storm
196634 6.1 警告
Network 		Webmin Project - Usermin におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-4897 2017-05-16 17:51 2016-10-7 Show GitHub Exploit DB Packet Storm
196635 7.5 重要
Network 		Debian
xmlsoft.org		 - libxml2 の xmlsave.c の xmlBufAttrSerializeTxtContent 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-125
境界外読み取り 		CVE-2016-4483 2017-05-16 17:42 2016-05-23 Show GitHub Exploit DB Packet Storm
196636 9.8 緊急
Network 		SAP - SAP NetWeaver におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2016-10311 2017-05-16 17:42 2016-12-7 Show GitHub Exploit DB Packet Storm
196637 9.8 緊急
Network 		NovaStor - Linux 用 NovaBACKUP DataCenter の datamover モジュールにおけるリモートでコマンドを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2016-4899 2017-05-16 17:34 2016-11-15 Show GitHub Exploit DB Packet Storm
196638 9.8 緊急
Network 		NovaStor - Linux 用 NovaBACKUP DataCenter の datamover モジュールにおけるリモートでコマンドを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2016-4898 2017-05-16 17:34 2016-11-15 Show GitHub Exploit DB Packet Storm
196639 4.7 警告
Local 		xmlsoft.org - libxml2 におけるサービス運用妨害 (DoS) の脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2017-5969 2017-05-16 17:31 2017-02-12 Show GitHub Exploit DB Packet Storm
196640 4.9 警告
Network 		Intellinet - Intellinet NFC-30ir IP Camera の ファームウェアの Web べースの管理サイトにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2017-7461 2017-05-16 17:27 2017-04-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 6, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
346401 - php php The substr_compare function in string.c in PHP 5.1.2 allows context-dependent attackers to cause a denial of service (memory access violation) via an out-of-bounds offset argument. CWE-399
 Resource Management Errors 		CVE-2006-1991 2017-07-20 10:31 2006-04-25 Show GitHub Exploit DB Packet Storm
346402 - dforum dforum PHP remote file inclusion vulnerability in dForum 1.5 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the DFORUM_PATH parameter to (1) about.php, (2) admin.php, (3) anm… NVD-CWE-Other
CVE-2006-1994 2017-07-20 10:31 2006-04-25 Show GitHub Exploit DB Packet Storm
346403 - sybase pylon_anywhere Unspecified vulnerability in Sybase Pylon Anywhere groupware synchronization server before 7.0 allows local users to obtain sensitive information such as email and PIM data of another user via unknow… NVD-CWE-noinfo
CVE-2006-1997 2017-07-20 10:31 2006-04-25 Show GitHub Exploit DB Packet Storm
346404 - logmethods logmethods Cross-site scripting (XSS) vulnerability in /lms/a2z.jsp in logMethods 0.9 allows remote attackers to inject arbitrary web script or HTML via the kwd parameter. NVD-CWE-Other
CVE-2006-2000 2017-07-20 10:31 2006-04-25 Show GitHub Exploit DB Packet Storm
346405 - ivan_zahariev izarc Multiple directory traversal vulnerabilities in IZArc Archiver 3.5 beta 3 allow remote attackers to write arbitrary files via a ..\ (dot dot backslash) in a (1) .rar, (2) .tar, (3) .zip, (4) .jar, or… NVD-CWE-Other
CVE-2006-2006 2017-07-20 10:31 2006-04-25 Show GitHub Exploit DB Packet Storm
346406 - winny winny Heap-based buffer overflow in Winny 2.0 b7.1 and earlier allows remote attackers to execute arbitrary code via long strings to certain commands sent to the file transfer port. NVD-CWE-Other
CVE-2006-2007 2017-07-20 10:31 2006-04-25 Show GitHub Exploit DB Packet Storm
346407 - web-provence sl_site SQL injection vulnerability in page.php in SL_site 1.0 allows remote attackers to execute arbitrary SQL commands via the id_page parameter. NOTE: this issue could be used to produce resultant XSS fro… NVD-CWE-Other
CVE-2006-2013 2017-07-20 10:31 2006-04-25 Show GitHub Exploit DB Packet Storm
346408 - web-provence sl_site Directory traversal vulnerability in gallerie.php in SL_site 1.0 allows remote attackers to list images in arbitrary directories via ".." sequences in the rep parameter, which is used to construct a … NVD-CWE-Other
CVE-2006-2014 2017-07-20 10:31 2006-04-25 Show GitHub Exploit DB Packet Storm
346409 - web-provence sl_site Cross-site scripting (XSS) vulnerability in SL_site 1.0 allows remote attackers to inject arbitrary web script or HTML via the recherche parameter in recherche.php. NOTE: other XSS vectors, as repor… NVD-CWE-Other
CVE-2006-2015 2017-07-20 10:31 2006-04-25 Show GitHub Exploit DB Packet Storm
346410 - dnsmasq dnsmasq Dnsmasq 2.29 allows remote attackers to cause a denial of service (application crash) via a DHCP client broadcast reply request. NVD-CWE-Other
CVE-2006-2017 2017-07-20 10:31 2006-04-25 Show GitHub Exploit DB Packet Storm