Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
198361 7.8 重要
Local 		Nitro Software, Inc. - Nitro Pro の PDF 構文解析機能におけるリモートでの境界外書き込みの脆弱性 CWE-119
バッファエラー 		CVE-2016-8709 2017-03-7 16:51 2016-09-30 Show GitHub Exploit DB Packet Storm
198362 9.8 緊急
Network 		Facebook - Facebook HHVM の wddx の無限再帰における脆弱性 CWE-674
不適切な再帰制御 		CVE-2016-6875 2017-03-7 16:43 2016-08-2 Show GitHub Exploit DB Packet Storm
198363 9.8 緊急
Network 		Facebook - Facebook HHVM の array_*_recursive 関数における脆弱性 CWE-674
不適切な再帰制御 		CVE-2016-6874 2017-03-7 16:43 2016-08-2 Show GitHub Exploit DB Packet Storm
198364 9.8 緊急
Network 		Facebook - Facebook HHVM の圧縮の自己再帰における脆弱性 CWE-674
不適切な再帰制御 		CVE-2016-6873 2017-03-7 16:43 2016-08-2 Show GitHub Exploit DB Packet Storm
198365 9.8 緊急
Network 		Facebook - Facebook HHVM の StringUtil::implode における整数オーバーフローの脆弱性 CWE-190
整数オーバーフローまたはラップアラウンド 		CVE-2016-6872 2017-03-7 16:43 2016-08-2 Show GitHub Exploit DB Packet Storm
198366 9.8 緊急
Network 		Facebook - Facebook HHVM の bcmath における整数オーバーフローの脆弱性 CWE-190
整数オーバーフローまたはラップアラウンド 		CVE-2016-6871 2017-03-7 16:43 2016-08-2 Show GitHub Exploit DB Packet Storm
198367 9.8 緊急
Network 		Facebook - Facebook HHVM の複数の関数における境界外書き込みの脆弱性 CWE-787
境界外書き込み 		CVE-2016-6870 2017-03-7 16:43 2016-07-2 Show GitHub Exploit DB Packet Storm
198368 7.5 重要
Network 		WSO2 - WSO2 Identity Server の XACML フロー機能における XML 外部エンティティの脆弱性 CWE-611
XML 外部エンティティ参照の不適切な制限 		CVE-2016-4312 2017-03-7 16:17 2016-08-12 Show GitHub Exploit DB Packet Storm
198369 8.8 重要
Network 		WSO2 - WSO2 Identity Server の XACML フロー機能におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2016-4311 2017-03-7 16:17 2016-08-12 Show GitHub Exploit DB Packet Storm
198370 9.8 緊急
Network 		Zend Technologies Ltd.
Fedora Project		 - Zend Framework の Zend_Db_Select の order および group メソッドにおける SQL インジェクション攻撃を実行される脆弱性 CWE-89
SQLインジェクション 		CVE-2016-6233 2017-03-7 15:36 2016-07-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
346581 - macromedia coldfusion
jrun 		Buffer overflow in the WriteToLog function for JRun 3.0 through 4.0 web server connectors, such as (1) mod_jrun and (2) mod_jrun20 for Apache, with verbose logging enabled, allows remote attackers to… NVD-CWE-Other
CVE-2004-0646 2017-07-11 10:30 2004-12-23 Show GitHub Exploit DB Packet Storm
346582 - shorewall shorewall shorewall 1.4.10c and earlier, and 2.0.x before 2.0.3a, allows local users to overwrite arbitrary files via a symlink attack on the chains-$$ temporary file. NVD-CWE-Other
CVE-2004-0647 2017-07-11 10:30 2004-08-6 Show GitHub Exploit DB Packet Storm
346583 - mozilla firefox
mozilla
thunderbird 		Mozilla (Suite) before 1.7.1, Firefox before 0.9.2, and Thunderbird before 0.7.2 allow remote attackers to launch arbitrary programs via a URI referencing the shell: protocol. NVD-CWE-Other
CVE-2004-0648 2017-07-11 10:30 2004-08-6 Show GitHub Exploit DB Packet Storm
346584 - l2tpd
gentoo 		l2tpd
linux 		Buffer overflow in write_packet in control.c for l2tpd may allow remote attackers to execute arbitrary code. NVD-CWE-Other
CVE-2004-0649 2017-07-11 10:30 2004-08-6 Show GitHub Exploit DB Packet Storm
346585 - newatlanta servletexec UploadServlet in Cisco Collaboration Server (CCS) running ServletExec before 3.0E allows remote attackers to upload and execute arbitrary files via a direct call to the UploadServlet URL. NVD-CWE-Other
CVE-2004-0650 2017-07-11 10:30 2004-08-6 Show GitHub Exploit DB Packet Storm
346586 - bea weblogic_server BEA WebLogic Server and WebLogic Express 7.0 through 7.0 Service Pack 4, and 8.1 through 8.1 Service Pack 2, allows attackers to obtain the username and password for booting the server by directly ac… NVD-CWE-Other
CVE-2004-0652 2017-07-11 10:30 2004-08-6 Show GitHub Exploit DB Packet Storm
346587 - - - eupdatedb in esearch 0.6.1 and earlier allows local users to create arbitrary files via a symlink attack on the esearchdb.py.tmp temporary file. NVD-CWE-Other
CVE-2004-0655 2017-07-11 10:30 2004-08-6 Show GitHub Exploit DB Packet Storm
346588 - pureftpd pureftpd The accept_client function in PureFTPd 1.0.18 and earlier allows remote attackers to cause a denial of service by exceeding the maximum number of connections. NVD-CWE-Other
CVE-2004-0656 2017-07-11 10:30 2004-08-6 Show GitHub Exploit DB Packet Storm
346589 - linux linux_kernel Integer overflow in the hpsb_alloc_packet function (incorrectly reported as alloc_hpsb_packet) in IEEE 1394 (Firewire) driver 2.4 and 2.6 allows local users to cause a denial of service (crash) and p… NVD-CWE-Other
CVE-2004-0658 2017-07-11 10:30 2004-08-6 Show GitHub Exploit DB Packet Storm
346590 - mplayer mplayer Buffer overflow in TranslateFilename for common.c in MPlayer 1.0pre4 allows remote attackers to execute arbitrary code via a long file name. NVD-CWE-Other
CVE-2004-0659 2017-07-11 10:30 2004-08-6 Show GitHub Exploit DB Packet Storm