Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 2, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
197871 6.1 警告
Network 		Plone Foundation - Plone CMS の Zope2 の ZMI ページにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-7140 2017-03-29 16:11 2016-08-30 Show GitHub Exploit DB Packet Storm
197872 6.1 警告
Network 		Plone Foundation - Plone CMS の不特定のページテンプレートにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-7139 2017-03-29 16:11 2016-08-30 Show GitHub Exploit DB Packet Storm
197873 6.1 警告
Network 		Plone Foundation - Plone CMS の URL チェックインフラストラクチャにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-7138 2017-03-29 16:11 2016-08-30 Show GitHub Exploit DB Packet Storm
197874 6.1 警告
Network 		Plone Foundation - Plone CMS におけるオープンリダイレクトの脆弱性 CWE-601
オープンリダイレクト 		CVE-2016-7137 2017-03-29 16:11 2016-08-30 Show GitHub Exploit DB Packet Storm
197875 6.1 警告
Network 		Plone Foundation - Plone CMS の z3c.form におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-7136 2017-03-29 16:11 2016-08-30 Show GitHub Exploit DB Packet Storm
197876 4.9 警告
Network 		Plone Foundation - Plone CMS におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2016-7135 2017-03-29 16:11 2016-08-30 Show GitHub Exploit DB Packet Storm
197877 7.8 重要
Local 		FreeType Project - FreeType 2 の type1/t1load.c の parse_charstrings 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-125
境界外読み取り 		CVE-2016-10244 2017-03-29 15:59 2016-09-8 Show GitHub Exploit DB Packet Storm
197878 6.1 警告
Network 		GNU Project - Wget の url.c の url_parse 関数における CRLF インジェクションの脆弱性 CWE-93
CRLF インジェクション 		CVE-2017-6508 2017-03-29 15:43 2017-03-6 Show GitHub Exploit DB Packet Storm
197879 8.8 重要
Network 		D-Link Systems, Inc. - D-Link DSL-2730U デバイスにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2017-6411 2017-03-29 15:39 2017-03-6 Show GitHub Exploit DB Packet Storm
197880 5.5 警告
Local 		The Qt Company - Qt の QXmlSimpleReader におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2016-10040 2017-03-29 15:30 2016-12-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
354351 - mpc-donkey zengaia SQL injection vulnerability in Zengaia before 0.2 allows remote attackers to execute arbitrary SQL commands via unknown vectors. NVD-CWE-Other
CVE-2005-3075 2008-09-6 05:53 2005-09-28 Show GitHub Exploit DB Packet Storm
354352 - simplog simplog Simplog 0.9.1 might allow remote attackers to execute arbitrary SQL commands or trigger SQL error messages via invalid (1) pid, (2) blogid, (3) cid, or (4) m parameters to archive.php, or the (5) blo… NVD-CWE-Other
CVE-2005-3076 2008-09-6 05:53 2005-09-28 Show GitHub Exploit DB Packet Storm
354353 - microsoft ie_for_macintosh Microsoft Internet Explorer 5.2.3 for Mac OS allows remote attackers to cause a denial of service (crash) via a web page with malformed attributes in a BGSOUND tag, possibly involving double-quotes i… NVD-CWE-Other
CVE-2005-3077 2008-09-6 05:53 2005-09-28 Show GitHub Exploit DB Packet Storm
354354 - punbb punbb Cross-site scripting (XSS) vulnerability in PunBB before 1.2.8 allows remote attackers to inject arbitrary web script or HTML via the "forgotten e-mail" feature. NVD-CWE-Other
CVE-2005-3078 2008-09-6 05:53 2005-09-28 Show GitHub Exploit DB Packet Storm
354355 - punbb punbb PunBB before 1.2.8 allows remote attackers to perform "code inclusion" via the user language selection. NVD-CWE-Other
CVE-2005-3079 2008-09-6 05:53 2005-09-28 Show GitHub Exploit DB Packet Storm
354356 - geshi geshi contrib/example.php in GeSHi before 1.0.7.3 allows remote attackers to read arbitrary files via the language field without a source field set. NVD-CWE-Other
CVE-2005-3080 2008-09-6 05:53 2005-09-28 Show GitHub Exploit DB Packet Storm
354357 - wzdftpd wzdftpd wzdftpd 0.5.4 allows remote authenticated users to execute arbitrary commands via shell metacharacters in the SITE command. NVD-CWE-Other
CVE-2005-3081 2008-09-6 05:53 2005-09-28 Show GitHub Exploit DB Packet Storm
354358 - sony playstation_portable Buffer overflow in the TIFF library in the Photo Viewer for Sony PSP 2.0 firmware allows remote attackers to cause a denial of service via a crafted TIFF image. NVD-CWE-Other
CVE-2005-3084 2008-09-6 05:53 2005-09-28 Show GitHub Exploit DB Packet Storm
354359 - riverdark_studios rss_syndicator_module Multiple cross-site scripting (XSS) vulnerabilities in rss.php in Riverdark Studios RSS Syndicator module 2.1.7 allow remote attackers to inject arbitrary web script or HTML via the (1) forum or (2) … NVD-CWE-Other
CVE-2005-3085 2008-09-6 05:53 2005-09-28 Show GitHub Exploit DB Packet Storm
354360 - contentserv contentserv Directory traversal vulnerability in admin/about.php in contentServ 3.1 allows remote attackers to read or include arbitrary files via ".." sequences in the ctsWebsite parameter. NVD-CWE-Other
CVE-2005-3086 2008-09-6 05:53 2005-09-28 Show GitHub Exploit DB Packet Storm