Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 17, 2026, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
201261	3.7	低 Network	ヒューレット・パッカード・エンタープライズ	-	HPE Integrated Lights-Out 3 ファームウェアの TLS の実装における重要な情報を取得される脆弱性	CWE-310 暗号の問題	CVE-2016-4379	2016-09-12 11:11	2016-08-30	Show	GitHub Exploit DB Packet Storm

201262	6.5	警告 Network	Fedora Project FreeIPA project	-	FreeIPA の cert_revoke コマンドにおける任意の証明書を無効にされる脆弱性	CWE-Other その他	CVE-2016-5404	2016-09-12 09:50	2016-08-22	Show	GitHub Exploit DB Packet Storm

201263	7.5	重要 Network	Ruby on Rails project	-	Ruby on Rails の Action Record におけるデータベースクエリの制限を回避される脆弱性	CWE-Other その他	CVE-2016-6317	2016-09-9 18:00	2016-08-11	Show	GitHub Exploit DB Packet Storm

201264	6.1	警告 Network	Debian Ruby on Rails project	-	Ruby on Rails の Action View におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-6316	2016-09-9 18:00	2016-08-11	Show	GitHub Exploit DB Packet Storm

201265	7.8	重要 Local	openSUSE project CrackLib project	-	CrackLib の lib/fascist.c の FascistGecosUser 関数におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2016-6318	2016-09-9 16:57	2016-08-31	Show	GitHub Exploit DB Packet Storm

201266	6.5	警告 Network	Huawei	-	Huawei Unified Maintenance Audit における任意のユーザパスワードの MD5 ハッシュを取得される脆弱性	CWE-200 情報漏えい	CVE-2016-7108	2016-09-9 15:59	2016-08-24	Show	GitHub Exploit DB Packet Storm

201267	7.5	重要 Network	Huawei	-	Huawei Unified Maintenance Audit における任意のユーザパスワードをリセットされる脆弱性	CWE-Other その他	CVE-2016-7107	2016-09-9 15:59	2016-08-24	Show	GitHub Exploit DB Packet Storm

201268	9.8	緊急 Network	Huawei	-	Huawei Unified Maintenance Audit における任意のコマンドを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2016-7110	2016-09-9 15:58	2016-08-24	Show	GitHub Exploit DB Packet Storm

201269	9.8	緊急 Network	Huawei	-	Huawei Unified Maintenance Audit における任意のコマンドを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2016-7109	2016-09-9 15:58	2016-08-24	Show	GitHub Exploit DB Packet Storm

201270	5.5	警告 Local	Huawei	-	複数の Huawei 製品の Intelligent Baseboard Management Controller におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2016-6900	2016-09-9 15:52	2016-08-24	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 17, 2026, 4:15 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
346441	-	arc	arc	arc 5.21j and earlier create temporary files with world-readable permissions, which allows local users to read sensitive information from files created by (1) arc (arc.c) or (2) marc (marc.c).	NVD-CWE-Other	CVE-2005-2945	2016-10-18 12:31	2005-09-17	Show	GitHub Exploit DB Packet Storm

346442	-	-	-	KillProcess 2.20 and earlier allows local users to bypass kill list restrictions by launching multiple processes at the same time, which are not all killed by KillProcess.	NVD-CWE-Other	CVE-2005-2948	2016-10-18 12:31	2005-09-17	Show	GitHub Exploit DB Packet Storm

346443	-	mark_d._roth	pam_per_user	pam_per_user before 0.4 does not verify if the user name changes between authentication attempts and uses the same subrequest handle, which allows remote attackers or local users to login as other us…	NVD-CWE-Other	CVE-2005-2949	2016-10-18 12:31	2005-09-17	Show	GitHub Exploit DB Packet Storm

346444	-	miva	miva_merchant	Cross-site scripting (XSS) vulnerability in merchant.mvc in MIVA Merchant 5 allows remote attackers to inject arbitrary web script or HTML via the Customer_Login parameter.	NVD-CWE-Other	CVE-2005-2953	2016-10-18 12:31	2005-09-17	Show	GitHub Exploit DB Packet Storm

346445	-	adaptive_technology_resource_centre	atutor	config.inc.php in ATutor 1.5.1, and possibly earlier versions, uses an incomplete blacklist to check for dangerous file extensions, which allows authenticated administrators or educators to execute a…	NVD-CWE-Other	CVE-2005-2955	2016-10-18 12:31	2005-09-17	Show	GitHub Exploit DB Packet Storm

346446	-	adaptive_technology_resource_centre	atutor	ATutor 1.5.1, and possibly earlier versions, stores temporary chat logs under the web document root with insufficient access control and predictable filenames, which allows remote attackers to obtain…	NVD-CWE-Other	CVE-2005-2956	2016-10-18 12:31	2005-09-17	Show	GitHub Exploit DB Packet Storm

346447	-	avira	desktop	Stack-based buffer overflow in AVIRA Desktop for Windows 1.00.00.68 with AVPACK32.DLL 6.31.0.3, when archive scanning is enabled, allows remote attackers to execute arbitrary code via a long filename…	NVD-CWE-Other	CVE-2005-2957	2016-10-18 12:31	2005-09-17	Show	GitHub Exploit DB Packet Storm

346448	-	compaq	compaqhttpserver	Cross-site scripting (XSS) vulnerability in CompaqHTTPServer 2.1 allows remote attackers to inject arbitrary web script or HTML via the URL, which is not properly quoted in the resulting 404 error pa…	NVD-CWE-Other	CVE-2005-2982	2016-10-18 12:31	2005-09-20	Show	GitHub Exploit DB Packet Storm

346449	-	oracle	reports	SQL injection vulnerability in Oracle Reports that use Lexical References allows remote attackers to execute arbitrary SQL commands via the values in the parameter form that appears when the paramfor…	CWE-89 SQL Injection	CVE-2005-2983	2016-10-18 12:31	2005-09-20	Show	GitHub Exploit DB Packet Storm

346450	-	symantec	norton_antivirus	Symantec AntiVirus Corporate Edition 9.0.1.x and 9.0.4.x, and possibly other versions, when obtaining updates from an internal LiveUpdate server, stores sensitive information in cleartext in the Log.…	NVD-CWE-Other	CVE-2005-2766	2016-10-18 12:30	2005-09-2	Show	GitHub Exploit DB Packet Storm