Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
198881	5.4	警告 Network	IBM	-	IBM FileNet Workplace XT および FileNet Workplace におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-5981	2016-11-28 16:57	2016-10-7	Show	GitHub Exploit DB Packet Storm

198882	5.3	警告 Network	IBM	-	IBM Tealeaf Customer Experience のリプレイサーバにおける SSRF 攻撃を実行される脆弱性	CWE-Other その他	CVE-2016-5968	2016-11-28 16:57	2016-09-12	Show	GitHub Exploit DB Packet Storm

198883	5.5	警告 Local	IBM	-	IBM Rational Asset Analyzer のインストールコンポーネントにおける WAS 管理者パスワードを取得される脆弱性	CWE-Other その他	CVE-2016-5967	2016-11-28 16:57	2016-09-14	Show	GitHub Exploit DB Packet Storm

198884	5.4	警告 Network	IBM	-	IBM Rational DOORS Next Generation におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-5955	2016-11-28 16:57	2016-09-19	Show	GitHub Exploit DB Packet Storm

198885	9.1	緊急 Network	IBM	-	IBM Security Access Manager for Web および Security Access Manager における任意のコマンドを実行される脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2016-3028	2016-11-28 16:57	2016-09-21	Show	GitHub Exploit DB Packet Storm

198886	8.1	重要 Network	IBM	-	IBM Security Access Manager for Mobile および Security Access Manager におけるアクセス権を取得される脆弱性	CWE-Other その他	CVE-2016-3025	2016-11-28 16:57	2016-09-21	Show	GitHub Exploit DB Packet Storm

198887	6.5	警告 Network	IBM	-	IBM Security Privileged Identity Manager における任意のファイルに追加される脆弱性	CWE-20 不適切な入力確認	CVE-2016-2996	2016-11-28 16:57	2016-08-10	Show	GitHub Exploit DB Packet Storm

198888	8.5	重要 Network	IBM	-	IBM Tivoli Storage Manger for Virtual Environments: Data Protection for VMware における TSM 資格情報の要求を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2016-2988	2016-11-28 16:57	2016-08-22	Show	GitHub Exploit DB Packet Storm

198889	5.4	警告 Network	IBM	-	複数の IBM Rational 製品におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-2986	2016-11-28 16:57	2016-09-7	Show	GitHub Exploit DB Packet Storm

198890	7	重要 Local	IBM	-	IBM Spectrum Scale および General Parallel File System における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2016-2985	2016-11-28 16:57	2016-08-4	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
346911	-	-	-	Multiple cross-site scripting (XSS) vulnerabilities in templates/notepads/notepads.inc in Horde Mnemo Note Manager H3 before 2.0.3 allow remote authenticated users to inject arbitrary web script or H…	NVD-CWE-Other	CVE-2005-4192	2011-03-8 11:27	2005-12-13	Show	GitHub Exploit DB Packet Storm

346912	-	innovateware	sights_n_sounds_streaming_media_server	Buffer overflow in MediaServerList.exe in Sights 'n Sounds Streaming Media Server 2.0.3.a allows remote attackers to cause a denial of service (application crash) via a long query string.	NVD-CWE-Other	CVE-2005-4194	2011-03-8 11:27	2005-12-13	Show	GitHub Exploit DB Packet Storm

346913	-	php_web_scripts	link_up_gold	Cross-site scripting (XSS) vulnerability in Link Up Gold 2.5 and earlier allows remote attackers to inject arbitrary web script or HTML via (1) link parameter to tell_friend.php, (2) phrase[] paramet…	NVD-CWE-Other	CVE-2005-4231	2011-03-8 11:27	2005-12-14	Show	GitHub Exploit DB Packet Storm

346914	-	powerdev	encapsgallery	SQL injection vulnerability in gallery.php in EncapsGallery 1.0.0 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter.	NVD-CWE-Other	CVE-2005-4234	2011-03-8 11:27	2005-12-14	Show	GitHub Exploit DB Packet Storm

346915	-	whmcompletesolution	whmcompletesolution	Cross-site scripting (XSS) vulnerability in knowledgebase.php in WHMCompleteSolution 2.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the search parameters.	NVD-CWE-Other	CVE-2005-4235	2011-03-8 11:27	2005-12-14	Show	GitHub Exploit DB Packet Storm

346916	-	cartkeeper	ckgold_shopping_cart	Cross-site scripting (XSS) vulnerability in search.php in CKGOLD allows remote attackers to inject arbitrary web script or HTML via the search parameters.	NVD-CWE-Other	CVE-2005-4236	2011-03-8 11:27	2005-12-14	Show	GitHub Exploit DB Packet Storm

346917	-	servers-r-us	mysqlauction	Cross-site scripting (XSS) vulnerability in MySQL Auction 3.0 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified search module parameters, possibly the keyword…	NVD-CWE-Other	CVE-2005-4237	2011-03-8 11:27	2005-12-14	Show	GitHub Exploit DB Packet Storm

346918	-	mantis	mantis	Cross-site scripting (XSS) vulnerability in view_filters_page.php in Mantis 1.0.0rc3 and earlier allows remote attackers to inject arbitrary web script or HTML via the target_field parameter.	NVD-CWE-Other	CVE-2005-4238	2011-03-8 11:27	2005-12-14	Show	GitHub Exploit DB Packet Storm

346919	-	php_jackknife	php_jackknife	Cross-site scripting (XSS) vulnerability in Search/DisplayResults.php in PHP JackKnife 2.21 and earlier allows remote attackers to inject arbitrary web script or HTML via URL-encoded values in the sK…	NVD-CWE-Other	CVE-2005-4239	2011-03-8 11:27	2005-12-14	Show	GitHub Exploit DB Packet Storm

346920	-	vcd-db	vcd-db	Cross-site scripting (XSS) vulnerability in the category page in VCD-db 0.98 and earlier allows remote attackers to inject arbitrary web script or HTML via the batch parameter.	NVD-CWE-Other	CVE-2005-4241	2011-03-8 11:27	2005-12-14	Show	GitHub Exploit DB Packet Storm