Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 14, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
201321 8.8 重要
Network 		GitLab.org - Gitlab の偽装の機能における他のユーザとして "ログイン" される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-4340 2017-02-8 18:15 2016-05-2 Show GitHub Exploit DB Packet Storm
201322 9.8 緊急
Network 		Magento, Inc. - Magento CE および EE における PHP オブジェクトインジェクション攻撃を実行される脆弱性 CWE-74
インジェクション 		CVE-2016-4010 2017-02-8 17:23 2016-05-17 Show GitHub Exploit DB Packet Storm
201323 9.8 緊急
Network 		LibGD project - GD Graphics ライブラリの gdImageWebPtr 関数におけるメモリ二重解放の脆弱性 CWE-415
二重解放 		CVE-2016-6912 2017-02-8 17:03 2016-08-17 Show GitHub Exploit DB Packet Storm
201324 7.8 重要
Local 		シトリックス・システムズ
Xen プロジェクト		 - Xen の x86 エミュレータにおける権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-9386 2017-02-8 16:53 2016-11-22 Show GitHub Exploit DB Packet Storm
201325 6 警告
Local 		シトリックス・システムズ
Xen プロジェクト		 - Xen の x86 セグメントベースの書き込みのエミュレーション機能におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2016-9385 2017-02-8 16:53 2016-11-22 Show GitHub Exploit DB Packet Storm
201326 8.8 重要
Local 		シトリックス・システムズ
Xen プロジェクト		 - Xen における任意のメモリを変更される脆弱性 CWE-20
不適切な入力確認 		CVE-2016-9383 2017-02-8 16:53 2016-11-22 Show GitHub Exploit DB Packet Storm
201327 7.8 重要
Local 		シトリックス・システムズ
Xen プロジェクト		 - Xen における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-9382 2017-02-8 16:53 2016-11-22 Show GitHub Exploit DB Packet Storm
201328 7.5 重要
Local 		シトリックス・システムズ
Fabrice Bellard		 - Xen の QEMU における権限を取得される脆弱性 CWE-264
CWE-362
CVE-2016-9381 2017-02-8 16:53 2016-11-22 Show GitHub Exploit DB Packet Storm
201329 8.8 重要
Adjacent 		Ubiquiti Networks - Ubiquiti Networks UniFi におけるデータベースを変更される脆弱性 CWE-284
不適切なアクセス制御 		CVE-2016-7792 2017-02-8 16:52 2016-09-30 Show GitHub Exploit DB Packet Storm
201330 7.5 重要
Network 		jwt project - jwt の Encryption/Symmetric.php の verify 関数における署名を偽造される脆弱性 CWE-361
時間とステータス 		CVE-2016-7037 2017-02-8 16:50 2016-09-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 14, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
358961 - purity purity Multiple buffer overflows in purity 1-16 allow local users to gain privileges and modify high scores tables. NVD-CWE-Other
CVE-2002-1124 2008-09-6 05:29 2002-09-24 Show GitHub Exploit DB Packet Storm
358962 - digital osf_1 Buffer overflow in uucp in Compaq Tru64/OSF1 3.x allows local users to execute arbitrary code via a long source (-s) command line parameter. NVD-CWE-Other
CVE-2002-1127 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
358963 - squirrelmail squirrelmail Cross-site scripting vulnerabilities in SquirrelMail 1.2.7 and earlier allows remote attackers to execute script as other web users via (1) addressbook.php, (2) options.php, (3) search.php, or (4) he… NVD-CWE-Other
CVE-2002-1131 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
358964 - squirrelmail squirrelmail SquirrelMail 1.2.7 and earlier allows remote attackers to determine the absolute pathname of the options.php script via a malformed optpage file argument, which generates an error message when the fi… NVD-CWE-Other
CVE-2002-1132 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
358965 - stephen_turner analog anlgform.pl in Analog before 5.23 does not restrict access to the PROGRESSFREQ progress update command, which allows remote attackers to cause a denial of service (disk consumption) by using the comm… NVD-CWE-Other
CVE-2002-1154 2008-09-6 05:29 2002-10-11 Show GitHub Exploit DB Packet Storm
358966 - mod_ssl mod_ssl Cross-site scripting vulnerability in the mod_ssl Apache module 2.8.9 and earlier, when UseCanonicalName is off and wildcard DNS is enabled, allows remote attackers to execute script as other web sit… NVD-CWE-Other
CVE-2002-1157 2008-09-6 05:29 2002-11-4 Show GitHub Exploit DB Packet Storm
358967 - checkpoint check_point_vpn
firewall-1
next_generation 		Check Point FireWall-1 SecuRemote/SecuClient 4.0 and 4.1 allows clients to bypass the "authentication timeout" by modifying the to_expire or expire values in the client's users.C configuration file. NVD-CWE-Other
CVE-2002-0428 2008-09-6 05:28 2002-08-12 Show GitHub Exploit DB Packet Storm
358968 - dave_lawrence xtux XTux allows remote attackers to cause a denial of service (CPU consumption) via random inputs in the initial connection. NVD-CWE-Other
CVE-2002-0431 2008-09-6 05:28 2002-07-26 Show GitHub Exploit DB Packet Storm
358969 - citadel ux Buffer overflow in (1) lprintf and (2) cprintf in sysdep.c of Citadel/UX 5.90 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via attacks … NVD-CWE-Other
CVE-2002-0432 2008-09-6 05:28 2002-07-26 Show GitHub Exploit DB Packet Storm
358970 - pi3 pi3web Pi3Web 2.0.0 allows remote attackers to view restricted files via an HTTP request containing a "*" (wildcard or asterisk) character. NVD-CWE-Other
CVE-2002-0433 2008-09-6 05:28 2002-07-26 Show GitHub Exploit DB Packet Storm