Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 17, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
200051	7.1	重要 Network	Rapid7	-	Rapid7 Metasploit の全エディションの Meterpreter stdapi Dir.download() 関数におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2017-5228	2017-03-28 16:54	2017-03-1	Show	GitHub Exploit DB Packet Storm

200052	6.1	警告 Network	WebPagetest project	-	webpagetest におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2017-6541	2017-03-28 16:39	2017-03-8	Show	GitHub Exploit DB Packet Storm

200053	6.1	警告 Network	WebPagetest project	-	webpagetest におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2017-6540	2017-03-28 16:38	2017-03-8	Show	GitHub Exploit DB Packet Storm

200054	6.1	警告 Network	WebPagetest project	-	webpagetest におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2017-6539	2017-03-28 16:38	2017-03-8	Show	GitHub Exploit DB Packet Storm

200055	6.1	警告 Network	WebPagetest project	-	webpagetest におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2017-6538	2017-03-28 16:38	2017-03-8	Show	GitHub Exploit DB Packet Storm

200056	6.1	警告 Network	WebPagetest project	-	webpagetest におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2017-6537	2017-03-28 16:38	2017-03-8	Show	GitHub Exploit DB Packet Storm

200057	6.1	警告 Network	WebPagetest project	-	webpagetest におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2017-6536	2017-03-28 16:38	2017-03-8	Show	GitHub Exploit DB Packet Storm

200058	6.1	警告 Network	WebPagetest project	-	webpagetest におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2017-6535	2017-03-28 16:38	2017-03-8	Show	GitHub Exploit DB Packet Storm

200059	6.1	警告 Network	WebPagetest project	-	webpagetest におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2017-6534	2017-03-28 16:38	2017-03-8	Show	GitHub Exploit DB Packet Storm

200060	6.1	警告 Network	WebPagetest project	-	webpagetest におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2017-6533	2017-03-28 16:38	2017-03-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 17, 2026, 4:19 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
345081	-	macromedia	dreamweaver	Macromedia Dreamweaver uses weak encryption to store FTP passwords, which could allow local users to easily decrypt the passwords of other users.	NVD-CWE-Other	CVE-1999-1271	2017-12-19 11:29	1998-06-11	Show	GitHub Exploit DB Packet Storm

345082	-	sgi	irix	Buffer overflows in CDROM Confidence Test program (cdrom) allow local users to gain root privileges.	NVD-CWE-Other	CVE-1999-1272	2017-12-19 11:29	1998-03-1	Show	GitHub Exploit DB Packet Storm

345083	-	national_science_foundation	squid_web_proxy	Squid Internet Object Cache 1.1.20 allows users to bypass access control lists (ACLs) by encoding the URL with hexadecimal escape sequences.	NVD-CWE-Other	CVE-1999-1273	2017-12-19 11:29	1998-02-20	Show	GitHub Exploit DB Packet Storm

345084	-	ipass	roamserver	iPass RoamServer 3.1 creates temporary files with world-writable permissions.	NVD-CWE-Other	CVE-1999-1274	2017-12-19 11:29	1997-12-29	Show	GitHub Exploit DB Packet Storm

345085	-	ibm	lotus_cc_mail	Lotus cc:Mail release 8 stores the postoffice password in plaintext in a hidden file which has insecure permissions, which allows local users to gain privileges.	NVD-CWE-Other	CVE-1999-1275	2017-12-19 11:29	1997-09-8	Show	GitHub Exploit DB Packet Storm

345086	-	backweb_technologies	backweb_client	BackWeb client stores the username and password in cleartext for proxy authentication in the Communication registry key, which could allow other local users to gain privileges by reading the password.	NVD-CWE-Other	CVE-1999-1277	2017-12-19 11:29	1998-12-24	Show	GitHub Exploit DB Packet Storm

345087	-	nlog	nlog	nlog CGI scripts do not properly filter shell metacharacters from the IP address argument, which could allow remote attackers to execute certain commands via (1) nlog-smb.pl or (2) rpc-nlog.pl.	NVD-CWE-Other	CVE-1999-1278	2017-12-19 11:29	1998-12-25	Show	GitHub Exploit DB Packet Storm

345088	-	hummingbird	exceed	Hummingbird Exceed 6.0.1.0 inadvertently includes a DLL that was meant for development and testing, which logs user names and passwords in cleartext in the test.log file.	NVD-CWE-Other	CVE-1999-1280	2017-12-19 11:29	1998-12-3	Show	GitHub Exploit DB Packet Storm

345089	-	winddance_networks_corporation	breeze_network_server	Development version of Breeze Network Server allows remote attackers to cause the system to reboot by accessing the configbreeze CGI program.	NVD-CWE-Other	CVE-1999-1281	2017-12-19 11:29	1998-12-26	Show	GitHub Exploit DB Packet Storm

345090	-	realnetworks	realsystem_g2_server	RealSystem G2 server stores the administrator password in cleartext in a world-readable configuration file, which allows local users to gain privileges.	NVD-CWE-Other	CVE-1999-1282	2017-12-19 11:29	1998-12-10	Show	GitHub Exploit DB Packet Storm