Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 14, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
201321 8.8 重要
Network 		GitLab.org - Gitlab の偽装の機能における他のユーザとして "ログイン" される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-4340 2017-02-8 18:15 2016-05-2 Show GitHub Exploit DB Packet Storm
201322 9.8 緊急
Network 		Magento, Inc. - Magento CE および EE における PHP オブジェクトインジェクション攻撃を実行される脆弱性 CWE-74
インジェクション 		CVE-2016-4010 2017-02-8 17:23 2016-05-17 Show GitHub Exploit DB Packet Storm
201323 9.8 緊急
Network 		LibGD project - GD Graphics ライブラリの gdImageWebPtr 関数におけるメモリ二重解放の脆弱性 CWE-415
二重解放 		CVE-2016-6912 2017-02-8 17:03 2016-08-17 Show GitHub Exploit DB Packet Storm
201324 7.8 重要
Local 		シトリックス・システムズ
Xen プロジェクト		 - Xen の x86 エミュレータにおける権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-9386 2017-02-8 16:53 2016-11-22 Show GitHub Exploit DB Packet Storm
201325 6 警告
Local 		シトリックス・システムズ
Xen プロジェクト		 - Xen の x86 セグメントベースの書き込みのエミュレーション機能におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2016-9385 2017-02-8 16:53 2016-11-22 Show GitHub Exploit DB Packet Storm
201326 8.8 重要
Local 		シトリックス・システムズ
Xen プロジェクト		 - Xen における任意のメモリを変更される脆弱性 CWE-20
不適切な入力確認 		CVE-2016-9383 2017-02-8 16:53 2016-11-22 Show GitHub Exploit DB Packet Storm
201327 7.8 重要
Local 		シトリックス・システムズ
Xen プロジェクト		 - Xen における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-9382 2017-02-8 16:53 2016-11-22 Show GitHub Exploit DB Packet Storm
201328 7.5 重要
Local 		シトリックス・システムズ
Fabrice Bellard		 - Xen の QEMU における権限を取得される脆弱性 CWE-264
CWE-362
CVE-2016-9381 2017-02-8 16:53 2016-11-22 Show GitHub Exploit DB Packet Storm
201329 8.8 重要
Adjacent 		Ubiquiti Networks - Ubiquiti Networks UniFi におけるデータベースを変更される脆弱性 CWE-284
不適切なアクセス制御 		CVE-2016-7792 2017-02-8 16:52 2016-09-30 Show GitHub Exploit DB Packet Storm
201330 7.5 重要
Network 		jwt project - jwt の Encryption/Symmetric.php の verify 関数における署名を偽造される脆弱性 CWE-361
時間とステータス 		CVE-2016-7037 2017-02-8 16:50 2016-09-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 15, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
358911 - inktomi media-ixt
traffic_edge
traffic_server 		Buffer overflow in traffic_manager for Inktomi Traffic Server 4.0.18 through 5.2.2, Traffic Edge 1.1.2 and 1.5.0, and Media-IXT 3.0.4 allows local users to gain root privileges via a long -path argum… NVD-CWE-Other
CVE-2002-1013 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
358912 - realnetworks realjukebox_2
realjukebox_2_plus
realone_player 		Buffer overflow in RealJukebox 2 1.0.2.340 and 1.0.2.379, and RealOne Player Gold 6.0.10.505, allows remote attackers to execute arbitrary code via an RFS skin file whose skin.ini contains a long val… NVD-CWE-Other
CVE-2002-1014 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
358913 - realnetworks realjukebox_2
realjukebox_2_plus
realone_player 		RealJukebox 2 1.0.2.340 and 1.0.2.379, and RealOne Player Gold 6.0.10.505, allows remote attackers to execute arbitrary script in the Local computer zone by inserting the script into the skin.ini fil… NVD-CWE-Other
CVE-2002-1015 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
358914 - adobe digital_editions Adobe eBook Reader allows a user to bypass restrictions for copy, print, lend, and give operations by backing up key data files, performing the operations, and restoring the original data files. NVD-CWE-Other
CVE-2002-1016 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
358915 - adobe digital_editions Adobe eBook Reader 2.1 and 2.2 allows a user to copy eBooks to other systems by using the backup feature, capturing the encryption Challenge, and using the appropriate hash function to generate the a… NVD-CWE-Other
CVE-2002-1017 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
358916 - working_resources_inc. badblue BadBlue server allows remote attackers to read restricted files, such as EXT.INI, via an HTTP request that contains a hex-encoded null byte. NVD-CWE-Other
CVE-2002-1021 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
358917 - working_resources_inc. badblue BadBlue server stores passwords in plaintext in the ext.ini file, which could allow local and possibly remote attackers to gain privileges. NVD-CWE-Other
CVE-2002-1022 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
358918 - working_resources_inc. badblue BadBlue server allows remote attackers to cause a denial of service (crash) via an HTTP GET request without a URI. NVD-CWE-Other
CVE-2002-1023 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
358919 - macromedia jrun JRun 3.0 through 4.0 allows remote attackers to read JSP source code via an encoded null byte in an HTTP GET request, which causes the server to send the .JSP file unparsed. NVD-CWE-Other
CVE-2002-1025 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
358920 - macromedia sitespring Macromedia Sitespring 1.2.0 (277.1) using Sybase runtime engine 7.0.2.1480 allows remote attackers to cause a denial of service (crash) via a long malformed request to TCP port 2500, possibly trigger… NVD-CWE-Other
CVE-2002-1026 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm