Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 9, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
198341 9.8 緊急
Network 		Exponent CMS project - Exponent CMS の framework/modules/core/controllers/expCommentController.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2016-9481 2016-12-1 14:18 2016-11-29 Show GitHub Exploit DB Packet Storm
198342 6.5 警告
Network 		マイクロフォーカス株式会社 - 複数の Micro Focus 製品の管理サーバにおける任意のファイルを読まれる脆弱性 CWE-200
CWE-22
CVE-2016-5765 2016-12-1 14:03 2016-11-28 Show GitHub Exploit DB Packet Storm
198343 6.5 警告
Network 		Drupal - Drupal の transliterate メカニズムにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2016-9452 2016-12-1 11:47 2016-11-16 Show GitHub Exploit DB Packet Storm
198344 6.8 警告
Network 		Drupal - Drupal の確認フォームにおけるオープンリダイレクトの脆弱性 CWE-Other
その他 		CVE-2016-9451 2016-12-1 11:47 2016-11-16 Show GitHub Exploit DB Packet Storm
198345 7.5 重要
Network 		Drupal - Drupal のユーザパスワードのリセットフォームにおけるキャッシュポイズニング攻撃を実行される脆弱性 CWE-Other
その他 		CVE-2016-9450 2016-12-1 11:47 2016-11-16 Show GitHub Exploit DB Packet Storm
198346 4.3 警告
Network 		Drupal - Drupal の taxonomy モジュールにおけるタクソノミータームに関する重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2016-9449 2016-12-1 11:47 2016-11-16 Show GitHub Exploit DB Packet Storm
198347 8.8 重要
Network 		Apache Software Foundation - Apache Hadoop における任意のコマンドを実行される脆弱性 CWE-Other
その他 		CVE-2016-5393 2016-12-1 11:09 2016-11-29 Show GitHub Exploit DB Packet Storm
198348 8.8 重要
Network 		デル - Dell iDRAC7 および iDRAC8 デバイスのファームウェアにおける Bash のシェルアクセス権を取得される脆弱性 CWE-Other
その他 		CVE-2016-5685 2016-12-1 10:48 2016-11-16 Show GitHub Exploit DB Packet Storm
198349 7.8 重要
Local 		Igor Sysoev - Debian および Ubuntu 上で稼動する nginx パッケージにおける root 権限を取得される脆弱性 CWE-59
リンク解釈の問題 		CVE-2016-1247 2016-11-30 17:27 2016-11-15 Show GitHub Exploit DB Packet Storm
198350 7.8 重要
Local 		Linux
Canonical		 - Ubuntu の linux パッケージの overlayfs の実装における root アクセス権を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2015-1328 2016-11-30 16:50 2015-06-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
350241 - acuma acusend Acuma Acusend 4, and possibly earlier versions, allows remote authenticated users to read the reports of other users by inferring the full URL, whose name is easily predictable. NVD-CWE-Other
CVE-2002-1538 2008-09-6 05:30 2003-03-31 Show GitHub Exploit DB Packet Storm
350242 - alt-n mdaemon Buffer overflow in MDaemon POP server 6.0.7 and earlier allows remote authenticated users to cause a denial of service via long (1) DELE or (2) UIDL arguments. NVD-CWE-Other
CVE-2002-1539 2008-09-6 05:30 2003-03-31 Show GitHub Exploit DB Packet Storm
350243 - working_resources_inc. badblue BadBlue 1.7 allows remote attackers to bypass password protections for directories and files via an HTTP request containing an extra / (slash). NVD-CWE-Other
CVE-2002-1541 2008-09-6 05:30 2003-03-31 Show GitHub Exploit DB Packet Storm
350244 - solarwinds tftp_server SolarWinds TFTP server 5.0.55 and earlier allows remote attackers to cause a denial of service (crash) via a large UDP datagram, possibly triggering a buffer overflow. NVD-CWE-Other
CVE-2002-1542 2008-09-6 05:30 2003-03-31 Show GitHub Exploit DB Packet Storm
350245 - netbsd netbsd Buffer overflow in trek on NetBSD 1.5 through 1.5.3 allows local users to gain privileges via long keyboard input. NVD-CWE-Other
CVE-2002-1543 2008-09-6 05:30 2003-03-31 Show GitHub Exploit DB Packet Storm
350246 - cooolsoft personal_ftp_server Directory traversal vulnerability in CooolSoft Personal FTP Server 2.24 allows remote attackers to read or modify arbitrary files via .. (dot dot) sequences in the commands (1) LIST (ls), (2) mkdir, … NVD-CWE-Other
CVE-2002-1544 2008-09-6 05:30 2003-03-31 Show GitHub Exploit DB Packet Storm
350247 - cooolsoft personal_ftp_server CooolSoft Personal FTP Server 2.24 allows remote attackers to obtain the absolute pathname of the FTP root via a PWD command, which includes the full path in the response. NVD-CWE-Other
CVE-2002-1545 2008-09-6 05:30 2003-03-31 Show GitHub Exploit DB Packet Storm
350248 - brs webweaver BRS WebWeaver Web Server 1.01 allows remote attackers to bypass password protections for files and directories via an HTTP request containing a "/./" sequence. NVD-CWE-Other
CVE-2002-1546 2008-09-6 05:30 2003-03-31 Show GitHub Exploit DB Packet Storm
350249 - juniper netscreen_screenos Netscreen running ScreenOS 4.0.0r6 and earlier allows remote attackers to cause a denial of service via a malformed SSH packet to the Secure Command Shell (SCS) management interface, as demonstrated … NVD-CWE-Other
CVE-2002-1547 2008-09-6 05:30 2003-03-31 Show GitHub Exploit DB Packet Storm
350250 - light_httpd light_httpd Buffer overflow in Light HTTPd (lhttpd) 0.1 allows remote attackers to execute arbitrary code via a long HTTP GET request. NVD-CWE-Other
CVE-2002-1549 2008-09-6 05:30 2003-03-31 Show GitHub Exploit DB Packet Storm