Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 5, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
197131	6.1	警告 Network	Huawei	-	Huawei eSpace Integrated Access Device ソフトウェアにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-8789	2017-05-2 16:37	2016-11-30	Show	GitHub Exploit DB Packet Storm

197132	6.5	警告 Network	Huawei	-	複数の Huawei CloudEngine 製品におけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2016-8780	2017-05-2 16:37	2016-11-30	Show	GitHub Exploit DB Packet Storm

197133	6.7	警告 Local	Huawei	-	Huawei NEM Phone のソフトウェアの Touch Panel ドライバにおけるバッファエラーの脆弱性	CWE-119 バッファエラー	CVE-2016-8775	2017-05-2 16:37	2016-11-23	Show	GitHub Exploit DB Packet Storm

197134	6.5	警告 Network	Huawei	-	Huawei AnyOffice における入力確認に関する脆弱性	CWE-20 不適切な入力確認	CVE-2016-8275	2017-05-2 16:37	2016-09-7	Show	GitHub Exploit DB Packet Storm

197135	5.3	警告 Network	Huawei	-	Huawei eSpace IAD における情報漏えいに関する脆弱性	CWE-200 情報漏えい	CVE-2016-8271	2017-05-2 16:37	2016-09-5	Show	GitHub Exploit DB Packet Storm

197136	8.8	重要 Network	Huawei	-	Huawei LogCenter における認可・権限・アクセス制御に関する脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2015-8671	2017-05-2 16:37	2015-12-2	Show	GitHub Exploit DB Packet Storm

197137	6.5	警告 Network	Huawei	-	Huawei LogCenter における入力確認に関する脆弱性	CWE-20 不適切な入力確認	CVE-2015-8670	2017-05-2 16:37	2015-12-2	Show	GitHub Exploit DB Packet Storm

197138	7.5	重要 Network	Huawei	-	Huawei FusionAccess のソフトウェアにおける入力確認に関する脆弱性	CWE-20 不適切な入力確認	CVE-2015-7844	2017-05-2 16:37	2015-09-9	Show	GitHub Exploit DB Packet Storm

197139	8.8	重要 Network	Huawei	-	Huawei Tecal E9000 Chassis の Hyper Module Management ソフトウェアにおける認可・権限・アクセス制御に関する脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-9696	2017-05-2 16:37	2014-12-24	Show	GitHub Exploit DB Packet Storm

197140	8.8	重要 Network	Huawei	-	Huawei Tecal E9000 Chassis の Hyper Module Management ソフトウェアにおける認可・権限・アクセス制御に関する脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-9695	2017-05-2 16:37	2014-12-24	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
346971	-	andreas_huggel	exiv2	Buffer overflow in Andreas Huggel Exiv2 before 0.9 does not null terminate strings before calling the sscanf function, which allows remote attackers to cause a denial of service (application crash) v…	NVD-CWE-Other	CVE-2005-4676	2017-07-20 10:29	2005-12-31	Show	GitHub Exploit DB Packet Storm

346972	-	audienceview	audienceview	Cross-site scripting (XSS) vulnerability in error.asp in AudienceView allows remote attackers to inject arbitrary web script or HTML via the TSerrorMessage parameter. NOTE: the provenance of this in…	NVD-CWE-Other	CVE-2005-4682	2017-07-20 10:29	2005-12-31	Show	GitHub Exploit DB Packet Storm

346973	-	padl_software	migrationtools	PADL MigrationTools 46, when a failure occurs, stores contents of /etc/shadow in a world-readable /tmp/nis.$$.ldif file, and possibly other sensitive information in other temporary files, which are n…	NVD-CWE-Other	CVE-2005-4683	2017-07-20 10:29	2005-12-31	Show	GitHub Exploit DB Packet Storm

346974	-	kde	konqueror	Konqueror can associate a cookie with multiple domains when the DNS resolver has a non-root domain in its search list, which allows remote attackers to trick a user into accepting a cookie for a host…	NVD-CWE-Other	CVE-2005-4684	2017-07-20 10:29	2005-12-31	Show	GitHub Exploit DB Packet Storm

346975	-	mozilla	firefox mozilla	Firefox and Mozilla can associate a cookie with multiple domains when the DNS resolver has a non-root domain in its search list, which allows remote attackers to trick a user into accepting a cookie …	NVD-CWE-Other	CVE-2005-4685	2017-07-20 10:29	2005-12-31	Show	GitHub Exploit DB Packet Storm

346976	-	-	-	Unspecified vulnerability in the www_add method in Asset.pm in Plain Black WebGUI 6.3.0 and other versions before 6.7.6 allows attackers to execute arbitrary code via unknown attack vectors.	NVD-CWE-Other	CVE-2005-4694	2017-07-20 10:29	2005-12-31	Show	GitHub Exploit DB Packet Storm

346977	-	microsoft	windows_xp	The Microsoft Wireless Zero Configuration system (WZCS) allows local users to access WEP keys and pair-wise Master Keys (PMK) of the WPA pre-shared key via certain calls to the WZCQueryInterface API …	NVD-CWE-Other	CVE-2005-4697	2017-07-20 10:29	2005-12-31	Show	GitHub Exploit DB Packet Storm

346978	-	tellme	tellme	Cross-site scripting (XSS) vulnerability in TellMe 1.2 and earlier allows remote attackers to inject arbitrary web script or HTML via the 91) q_IP (IP) or (2) q_Host (HOST) parameters.	NVD-CWE-Other	CVE-2005-4698	2017-07-20 10:29	2005-12-31	Show	GitHub Exploit DB Packet Storm

346979	-	tellme	tellme	TellMe 1.2 and earlier, when the Server (o_Server) and HEAD (o_Head) options are enabled, allows remote attackers to obtain sensitive information via an invalid q_Host parameter, which reveals the fu…	NVD-CWE-Other	CVE-2005-4700	2017-07-20 10:29	2005-12-31	Show	GitHub Exploit DB Packet Storm

346980	-	-	-	The popSubjectContext method in the SecurityAssociation class in JBoss Enterprise Java Beans (EJB) 3.0 RC3 maintains the threadPrincipal and threadCredential values from a previous client's authentic…	NVD-CWE-Other	CVE-2005-4709	2017-07-20 10:29	2005-12-31	Show	GitHub Exploit DB Packet Storm