Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 6, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
198151	6.8	警告 Physics	シトリックス・システムズ	-	Citrix Receiver Desktop Lock の不正なアクセス制御メカニズムにおける認証要求を回避される脆弱性	CWE-Other その他	CVE-2016-9111	2016-11-8 17:49	2016-10-27	Show	GitHub Exploit DB Packet Storm

198152	7.8	重要 Local	Python Software Foundation	-	Pillow における任意のコードを実行される脆弱性	CWE-Other その他	CVE-2016-9190	2016-11-8 17:38	2016-10-3	Show	GitHub Exploit DB Packet Storm

198153	5.5	警告 Local	Python Software Foundation	-	Pillow における重要な情報を取得される脆弱性	CWE-Other その他	CVE-2016-9189	2016-11-8 17:38	2016-10-3	Show	GitHub Exploit DB Packet Storm

198154	7.5	重要 Network	Spark Framework project	-	Spark におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2016-9177	2016-11-8 17:28	2016-11-7	Show	GitHub Exploit DB Packet Storm

198155	9.8	緊急 Network	マイクロフォーカス株式会社	-	Micro Focus Rumba の send.exe および receive.exe コンポーネントにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2016-9176	2016-11-8 17:27	2016-10-31	Show	GitHub Exploit DB Packet Storm

198156	8.8	重要 Network	Exponent CMS project	-	Exponent CMS の framework/modules/core/controllers/expRatingController.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2016-9242	2016-11-8 17:23	2016-11-4	Show	GitHub Exploit DB Packet Storm

198157	7.5	重要 Network	Exponent CMS project	-	Exponent CMS の /framework/modules/core/controllers/expHTMLEditorController.php における SQL インジェクションの脆弱性	CWE-200 CWE-89	CVE-2016-9184	2016-11-8 17:23	2016-11-3	Show	GitHub Exploit DB Packet Storm

198158	7.5	重要 Network	Exponent CMS project	-	Exponent CMS の /framework/modules/ecommerce/controllers/orderController.php における情報公開の脆弱性	CWE-200 情報漏えい	CVE-2016-9183	2016-11-8 17:23	2016-11-3	Show	GitHub Exploit DB Packet Storm

198159	7.5	重要 Network	Exponent CMS project	-	Exponent CMS におけるパーミッションチェックを回避される脆弱性	CWE-Other その他	CVE-2016-9182	2016-11-8 17:23	2016-11-3	Show	GitHub Exploit DB Packet Storm

198160	8.1	重要 Network	Joomla!	-	Joomla! の Users コンポーネントの controllers/user.php の UsersModelRegistration クラスにおけるユーザアカウントを作成される脆弱性	CWE-20 不適切な入力確認	CVE-2016-8870	2016-11-8 16:46	2016-10-25	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
348451	-	sangwan_kim	bookmark4u	PHP remote file inclusion vulnerability in Bookmark4U 1.8.3 allows remote attackers to execute arbitrary PHP code viaa URL in the prefix parameter to (1) dbase.php, (2) config.php, or (3) common.load…	CWE-94 Code Injection	CVE-2003-1253	2008-09-6 05:36	2003-12-31	Show	GitHub Exploit DB Packet Storm

348452	-	-	-	Active PHP Bookmarks (APB) 1.1.01 allows remote attackers to execute arbitrary PHP code via (1) head.php, (2) apb_common.php, or (3) apb_view_class.php by modifying the APB_SETTINGS parameter to refe…	NVD-CWE-Other	CVE-2003-1254	2008-09-6 05:36	2003-12-31	Show	GitHub Exploit DB Packet Storm

348453	-	e-theni	e-theni	aff_liste_langue.php in E-theni allows remote attackers to execute arbitrary PHP code by modifying the rep_include parameter to reference a URL on a remote web server that contains para_langue.php.	NVD-CWE-Other	CVE-2003-1256	2008-09-6 05:36	2003-12-31	Show	GitHub Exploit DB Packet Storm

348454	-	e-theni	e-theni	Successful exploitation requires that "register_globals" is enabled.	NVD-CWE-Other	CVE-2003-1256	2008-09-6 05:36	2003-12-31	Show	GitHub Exploit DB Packet Storm

348455	-	e-theni	e-theni	find_theni_home.php in E-theni allows remote attackers to obtain sensitive system information via a URL request which executes phpinfo.	NVD-CWE-Other	CVE-2003-1257	2008-09-6 05:36	2003-12-31	Show	GitHub Exploit DB Packet Storm

348456	-	versatilebulletinboard	versatilebulletinboard	activate.php in versatileBulletinBoard (vBB) 0.9.5 and 0.9.6 allows remote attackers to gain unauthorized administrative access via a URL request with the uid parameter set to the webmaster uid.	NVD-CWE-Other	CVE-2003-1258	2008-09-6 05:36	2003-12-31	Show	GitHub Exploit DB Packet Storm

348457	-	-	-	Buffer overflow in CuteFTP 4.2 and 5.0 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long FTP server banner.	NVD-CWE-Other	CVE-2003-1259	2008-09-6 05:36	2003-12-31	Show	GitHub Exploit DB Packet Storm

348458	-	globalscape	cuteftp	Buffer overflow in CuteFTP 5.0 allows remote attackers to execute arbitrary code via a long response to a LIST command.	NVD-CWE-Other	CVE-2003-1260	2008-09-6 05:36	2003-12-31	Show	GitHub Exploit DB Packet Storm

348459	-	globalscape	cuteftp	Buffer overflow in CuteFTP 5.0 and 5.0.1 allows local users to cause a denial of service (crash) by copying a long URL into a clipboard.	NVD-CWE-Other	CVE-2003-1261	2008-09-6 05:36	2003-12-31	Show	GitHub Exploit DB Packet Storm

348460	-	brown_bear_software	ical	ICAL.EXE in iCal 3.7 allows remote attackers to cause a denial of service (crash) via a malformed HTTP request, possibly due to an invalid method name.	NVD-CWE-Other	CVE-2003-1263	2008-09-6 05:36	2003-12-31	Show	GitHub Exploit DB Packet Storm