Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 9, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
198501	8.8	重要 Network	Percona MariaDB Corporation Ab. オラクル	-	Oracle MySQL およびその他のデータベースにおける任意の構成を作成される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2016-6662	2016-11-22 16:02	2016-08-10	Show	GitHub Exploit DB Packet Storm

198502	6.5	警告	ヒューレット・パッカード Debian Canonical Apache Software Foundation オラクル	-	Apache Tomcat の Session Persistence の実装における SecurityManager の制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2016-0714	2016-11-22 16:02	2016-01-5	Show	GitHub Exploit DB Packet Storm

198503	5	警告	Novell Bouncy Castle オラクル	-	Bouncy Castle Java ライブラリにおける秘密鍵を取得される脆弱性	CWE-200 CWE-310	CVE-2015-7940	2016-11-22 16:02	2015-11-4	Show	GitHub Exploit DB Packet Storm

198504	9.8	緊急 Network	Apache Software Foundation オラクル	-	Apache Groovy の runtime/MethodClosure.java の MethodClosure クラスにおける任意のコードを実行される脆弱性	CWE-Other その他	CVE-2015-3253	2016-11-22 16:01	2015-07-16	Show	GitHub Exploit DB Packet Storm

198505	4	警告	OpenSSL Project	-	OpenSSL における Change Cipher Spec メッセージの処理に脆弱性	CWE-Other その他	CVE-2014-0224	2016-11-22 16:00	2014-06-6	Show	GitHub Exploit DB Packet Storm

198506	4.3	警告	IBM Apache Software Foundation オラクル	-	Apache Tomcat における任意のファイルを読まれる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-0119	2016-11-22 16:00	2014-05-21	Show	GitHub Exploit DB Packet Storm

198507	4.3	警告	日立 IBM Apache Software Foundation オラクル	-	Apache Tomcat の java/org/apache/tomcat/util/buf/Ascii.java における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2014-0099	2016-11-22 16:00	2014-03-27	Show	GitHub Exploit DB Packet Storm

198508	4.3	警告	日立 IBM Apache Software Foundation オラクル	-	Apache Tomcat のデフォルトサーブレットにおけるセキュリティマネージャの制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-0096	2016-11-22 16:00	2014-03-27	Show	GitHub Exploit DB Packet Storm

198509	5	警告	日立 IBM Apache Software Foundation オラクル	-	Apache Tomcat の java/org/apache/coyote/http11/filters/ChunkedInputFilter.java における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2014-0075	2016-11-22 16:00	2014-03-27	Show	GitHub Exploit DB Packet Storm

198510	5	警告	Apache Software Foundation オラクル	-	Apache Commons FileUpload におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2014-0050	2016-11-22 16:00	2014-02-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
347491	-	smartlist	smartlist	The confirm add-on in SmartList 3.15 and earlier allows attackers to subscribe arbitrary e-mail addresses by using a valid cookie that specifies an address other than the address for which the cookie…	NVD-CWE-Other	CVE-2005-0157	2008-09-11 04:35	2005-05-3	Show	GitHub Exploit DB Packet Storm

347492	-	clam_anti-virus	clamav	ClamAV 0.80 and earlier allows remote attackers to bypass virus scanning via a base64 encoded image in a data: (RFC 2397) URL.	NVD-CWE-Other	CVE-2005-0218	2008-09-11 04:35	2005-05-2	Show	GitHub Exploit DB Packet Storm

347493	-	phpbb_group	phpbb	Directory traversal vulnerability in (1) usercp_register.php and (2) usercp_avatar.php for phpBB 2.0.11, and possibly other versions, with gallery avatars enabled, allows remote attackers to delete (…	NVD-CWE-Other	CVE-2005-0258	2008-09-11 04:35	2005-03-14	Show	GitHub Exploit DB Packet Storm

347494	-	phpbb_group	phpbb	phpBB 2.0.11, and possibly other versions, with remote avatars and avatar uploading enabled, allows local users to read arbitrary files by providing both a local and remote location for an avatar, th…	NVD-CWE-Other	CVE-2005-0259	2008-09-11 04:35	2005-03-14	Show	GitHub Exploit DB Packet Storm

347495	-	zakon_group	openconf	Cross-site scripting (XSS) vulnerability in Openconf 1.04, and possibly other versions before 1.10, allows remote attackers to inject arbitrary HTML and web script via the paper title.	NVD-CWE-Other	CVE-2005-0407	2008-09-11 04:35	2005-05-2	Show	GitHub Exploit DB Packet Storm

347496	-	citrusdb	citrusdb	CitrusDB 0.3.6 and earlier does not verify authorization for the (1) importcc.php and (2) uploadcc.php, which allows remote attackers to upload credit card data and obtain sensitive information such …	NVD-CWE-Other	CVE-2005-0409	2008-09-11 04:35	2005-02-14	Show	GitHub Exploit DB Packet Storm

347497	-	citrusdb	citrusdb	SQL injection vulnerability in importcc.php for CitrusDB 0.3.6 and earlier allows remote attackers to inject data via the fields of a CSV file.	NVD-CWE-Other	CVE-2005-0410	2008-09-11 04:35	2005-02-14	Show	GitHub Exploit DB Packet Storm

347498	-	citrusdb	citrusdb	Directory traversal vulnerability in index.php for CitrusDB 0.3.6 and earlier allows remote attackers and local users to include arbitrary PHP files via .. (dot dot) sequences in the load parameter.	NVD-CWE-Other	CVE-2005-0411	2008-09-11 04:35	2005-02-14	Show	GitHub Exploit DB Packet Storm

347499	-	gentoo	poppassd_pam	poppassd_pam 1.0 and earlier, when changing a user password, does not verify that the user entered the old password correctly, which allows remote attackers to change passwords for arbitrary users.	NVD-CWE-Other	CVE-2005-0002	2008-09-11 04:34	2005-05-2	Show	GitHub Exploit DB Packet Storm

347500	-	dmxready	dmxready_site_chassis_manager	Cross-site scripting (XSS) vulnerability in DMXReady Site Chassis Manager allows remote attackers to inject arbitrary web script or HTML via unknown vectors.	NVD-CWE-Other	CVE-2004-2188	2008-09-11 04:33	2004-12-31	Show	GitHub Exploit DB Packet Storm