Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
200571 6.5 警告 シスコシステムズ - Cisco Prime Infrastructure における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2016-1359 2016-03-7 14:50 2016-03-2 Show GitHub Exploit DB Packet Storm
200572 4.3 警告 シスコシステムズ - Cisco FireSIGHT システム ソフトウェアにおける有効なユーザ名を列挙される脆弱性 CWE-255
CWE-287
CVE-2016-1356 2016-03-7 14:50 2016-03-2 Show GitHub Exploit DB Packet Storm
200573 4.3 警告 シスコシステムズ - Cisco FireSIGHT システム ソフトウェアの管理インターフェースにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-1355 2016-03-7 14:50 2016-03-2 Show GitHub Exploit DB Packet Storm
200574 4.3 警告 シスコシステムズ - Cisco Unified Communications Domain Manager におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-1354 2016-03-7 14:50 2016-03-2 Show GitHub Exploit DB Packet Storm
200575 5 警告 シスコシステムズ - Cisco FirePOWER Management Center のデバイスログインページにおける重要なソフトウェアバージョン情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2016-1342 2016-03-7 14:50 2016-02-24 Show GitHub Exploit DB Packet Storm
200576 4.3 警告 Ruby on Rails project - Ruby on Rails 用 rails-html-sanitizer gem の lib/rails/html/scrubbers.rb におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2015-7580 2016-03-7 14:49 2015-10-30 Show GitHub Exploit DB Packet Storm
200577 4.3 警告 Ruby on Rails project - Ruby on Rails 用 rails-html-sanitizer gem におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2015-7579 2016-03-7 14:49 2015-08-11 Show GitHub Exploit DB Packet Storm
200578 5 警告 libdwarf project - libdwarf の dwarf_frame2.c の dwarf_read_cie_fde_prefix 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2016-2091 2016-03-7 14:44 2016-01-19 Show GitHub Exploit DB Packet Storm
200579 3.5 注意 IBM - IBM WebSphere Portal におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2015-7491 2016-03-4 17:52 2015-09-29 Show GitHub Exploit DB Packet Storm
200580 4.3 警告 IBM - IBM WebSphere Portal におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2015-7457 2016-03-4 17:52 2015-09-29 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 20, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
307021 - oracle secure_backup Unspecified vulnerability in the Oracle Secure Backup component in Oracle Secure Backup 10.1.0.1 allows remote attackers to affect confidentiality via unknown vectors. NVD-CWE-noinfo
CVE-2008-3981 2013-01-3 14:00 2009-01-14 Show GitHub Exploit DB Packet Storm
307022 - nec mobile_handset Unspecified vulnerability in the NEC mobile handset allows remote attackers to cause a denial of service (reboot) via crafted packets. NOTE: as of 20071016, the only disclosure is a vague pre-advisor… CWE-20
 Improper Input Validation  		CVE-2007-5557 2013-01-3 14:00 2007-10-19 Show GitHub Exploit DB Packet Storm
307023 - mybb mybb Multiple unspecified vulnerabilities in MyBulletinBoard (MyBB) before 1.0.2 have unspecified impact and attack vectors, related to (1) admin/moderate.php, (2) admin/themes.php, (3) inc/functions.php,… NVD-CWE-noinfo
CVE-2006-0218 2013-01-3 14:00 2006-01-17 Show GitHub Exploit DB Packet Storm
307024 - invisionpower invision_power_board The make_password function in ipsclass.php in Invision Power Board (IPB) 2.1.4 uses random data generated from partially predictable seeds to create the authentication code that is sent by e-mail to … CWE-287
Improper Authentication 		CVE-2006-0633 2013-01-3 14:00 2006-02-10 Show GitHub Exploit DB Packet Storm
307025 - zen-cart zen_cart Zen Cart before 1.2.7 does not protect the admin/includes directory, which allows remote attackers to cause unknown impact via unspecified vectors, probably direct requests. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2006-0697 2013-01-3 14:00 2006-02-15 Show GitHub Exploit DB Packet Storm
307026 - e107 e107 Incomplete blacklist vulnerability in usersettings.php in e107 0.7.20 and earlier allows remote attackers to conduct SQL injection attacks via the loginname parameter. NVD-CWE-Other
CVE-2010-2098 2012-12-13 13:00 2010-05-28 Show GitHub Exploit DB Packet Storm
307027 - e107 e107 Per: http://cwe.mitre.org/data/definitions/184.html 'CWE-184: Incomplete Blacklist' NVD-CWE-Other
CVE-2010-2098 2012-12-13 13:00 2010-05-28 Show GitHub Exploit DB Packet Storm
307028 - kerio personal_firewall
serverfirewall 		The FWDRV driver in Kerio Personal Firewall 4.2 and Server Firewall 1.1.1 allows local users to cause a denial of service (crash) by setting the PAGE_NOACCESS or PAGE_GUARD protection on the Page Env… NVD-CWE-Other
CVE-2005-3286 2012-12-13 11:43 2005-10-23 Show GitHub Exploit DB Packet Storm
307029 - mybb mybb Multiple cross-site scripting (XSS) vulnerabilities in MyBB before 1.2.13 allow remote attackers to inject arbitrary web script or HTML via unspecified parameters to (1) portal.php and (2) inc/functi… CWE-79
Cross-site Scripting 		CVE-2008-3069 2012-11-27 12:48 2008-07-9 Show GitHub Exploit DB Packet Storm
307030 - mybb mybb Unspecified vulnerability in inc/datahandler/user.php in MyBB before 1.2.13 has unknown impact and attack vectors related to the $user['language'] variable, probably related to SQL injection. CWE-89
NVD-CWE-noinfo
SQL Injection 		CVE-2008-3070 2012-11-27 12:48 2008-07-9 Show GitHub Exploit DB Packet Storm