Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 24, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
197341	7.2	重要 Network	ソフォス	-	Sophos Web Appliance の Web 管理インターフェースの MgrReport.php コンポーネントにおけるリモートコマンドインジェクションの脆弱性	CWE-77 コマンドインジェクション	CVE-2016-9553	2017-03-29 16:35	2016-11-22	Show	GitHub Exploit DB Packet Storm

197342	9.8	緊急 Network	Evilnet	-	nefarious2 の ircd/m_authenticate.c の m_authenticate 関数における証明書の指紋を偽造される脆弱性	CWE-287 不適切な認証	CVE-2016-7145	2017-03-29 16:30	2016-09-4	Show	GitHub Exploit DB Packet Storm

197343	6.1	警告 Network	DELL EMC (旧 EMC Corporation)	-	EMC Documentum D2 における反射型クロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-9872	2017-03-29 16:29	2016-12-6	Show	GitHub Exploit DB Packet Storm

197344	8.8	重要 Network	ネットギア	-	NETGEAR DGN2200 デバイスのファームウェアの dnslookup.cgi における任意の OS コマンドを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2017-6334	2017-03-29 16:26	2017-02-26	Show	GitHub Exploit DB Packet Storm

197345	5.5	警告 Local	OpenBSD	-	OpenBSD の uvm/uvm_map.c の uvm_map_isavail 関数における整数オーバーフローの脆弱性	CWE-190 整数オーバーフローまたはラップアラウンド	CVE-2016-6522	2017-03-29 16:21	2016-08-2	Show	GitHub Exploit DB Packet Storm

197346	5.5	警告 Local	OpenBSD	-	OpenBSD におけるサービス運用妨害 (DoS) の脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2016-6350	2017-03-29 16:21	2016-06-19	Show	GitHub Exploit DB Packet Storm

197347	5.9	警告 Network	MatrixSSL project	-	MatrixSSL における RSA 秘密鍵の情報を取得される脆弱性	CWE-200 CWE-320	CVE-2016-6882	2017-03-29 16:21	2016-08-19	Show	GitHub Exploit DB Packet Storm

197348	6.1	警告 Network	Plone Foundation	-	Plone CMS の Zope2 の ZMI ページにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-7140	2017-03-29 16:11	2016-08-30	Show	GitHub Exploit DB Packet Storm

197349	6.1	警告 Network	Plone Foundation	-	Plone CMS の不特定のページテンプレートにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-7139	2017-03-29 16:11	2016-08-30	Show	GitHub Exploit DB Packet Storm

197350	6.1	警告 Network	Plone Foundation	-	Plone CMS の URL チェックインフラストラクチャにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-7138	2017-03-29 16:11	2016-08-30	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 24, 2026, 4:05 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
347621	-	punbb	punbb	SQL injection vulnerability in profile.php in PunBB 1.2.4 allows remote authenticated users to execute arbitrary SQL commands via the id parameter in a change_email action.	NVD-CWE-Other	CVE-2005-1051	2016-10-18 12:16	2005-05-2	Show	GitHub Exploit DB Packet Storm

347622	-	sun	j2se	Argument injection vulnerability in Java Web Start for J2SE 1.4.2 up to 1.4.2_06 allows untrusted applications to gain privileges via the value parameter of a property tag in a JNLP file.	NVD-CWE-Other	CVE-2005-0836	2016-10-18 12:15	2005-05-2	Show	GitHub Exploit DB Packet Storm

347623	-	kayako	esupport	Cross-site scripting (XSS) vulnerability in index.php in Kayako eSupport 2.3 allows remote attackers to inject arbitrary web script or HTML via the (1) _i or (2) _c parameter.	NVD-CWE-Other	CVE-2005-0842	2016-10-18 12:15	2005-05-2	Show	GitHub Exploit DB Packet Storm

347624	-	phorum	phorum	CRLF injection vulnerability in search.php in Phorum 5.0.14a allows remote attackers to perform HTTP Response Splitting attacks via the body parameter, which is included in the resulting Location hea…	NVD-CWE-Other	CVE-2005-0843	2016-10-18 12:15	2005-05-2	Show	GitHub Exploit DB Packet Storm

347625	-	-	-	Directory traversal vulnerability in the Webmail interface in SurgeMail 2.2g3 allows remote authenticated users to write arbitrary files or directories via a .. (dot dot) in the attach_id parameter.	NVD-CWE-Other	CVE-2005-0845	2016-10-18 12:15	2005-05-2	Show	GitHub Exploit DB Packet Storm

347626	-	netwin	surgemail	Multiple cross-site scripting (XSS) vulnerabilities in the email auto-reply message in SurgeMail 2.2g3 allow remote attackers to inject arbitrary web script or HTML via the (1) message subject or (2)…	NVD-CWE-Other	CVE-2005-0846	2016-10-18 12:15	2005-05-2	Show	GitHub Exploit DB Packet Storm

347627	-	bosanova ibm mochasoft powerterm	launcher400 client_access tn5250 interconnect	AS/400 Telnet 5250 terminal emulation clients, as implemented by (1) IBM client access, (2) Bosanova, (3) PowerTerm, (4) Mochasoft, and possibly other emulations, allows malicious AS/400 servers to e…	NVD-CWE-Other	CVE-2005-0868	2016-10-18 12:15	2005-05-2	Show	GitHub Exploit DB Packet Storm

347628	-	oracle	10g_reports_server	Multiple cross-site scripting (XSS) vulnerabilities in test.jsp in Oracle Reports Server 10g (9.0.4.3.3) allow remote attackers to inject arbitrary web script or HTML via the (1) desname or (2) reppr…	NVD-CWE-Other	CVE-2005-0873	2016-10-18 12:15	2005-05-2	Show	GitHub Exploit DB Packet Storm

347629	-	cerulean_studios	trillian	Multiple buffer overflows in the (1) AIM, (2) MSN, (3) RSS, and other plug-ins for Trillian 2.0 allow remote web servers to cause a denial of service (application crash) via a long string in an HTTP …	NVD-CWE-Other	CVE-2005-0874	2016-10-18 12:15	2005-05-2	Show	GitHub Exploit DB Packet Storm

347630	-	cerulean_studios	trillian	Multiple buffer overflows in the Yahoo plug-in for Trillian 2.0, 3.0, and 3.1 allow remote web servers to cause a denial of service (application crash) via a long string in an HTTP 1.1 response heade…	NVD-CWE-Other	CVE-2005-0875	2016-10-18 12:15	2005-05-2	Show	GitHub Exploit DB Packet Storm