Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 30, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
201361 9.1 緊急
Network 		Exponent CMS project - Exponent CMS におけるブラインド SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2016-9272 2016-11-16 10:22 2016-11-6 Show GitHub Exploit DB Packet Storm
201362 6.1 警告
Network 		MoinMoin - MoinMoin における "JavaScript インジェクション" 攻撃を実行される脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-7148 2016-11-15 17:56 2016-10-31 Show GitHub Exploit DB Packet Storm
201363 6.1 警告
Network 		MoinMoin - MoinMoin における "JavaScript インジェクション" 攻撃を実行される脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-7146 2016-11-15 17:56 2016-10-31 Show GitHub Exploit DB Packet Storm
201364 7.2 重要
Network 		Dotclear - Dotclear の "Install or upgrade manually" モジュールのブログの外観における任意のコードを実行される脆弱性 CWE-Other
その他 		CVE-2016-9268 2016-11-15 17:33 2016-11-8 Show GitHub Exploit DB Packet Storm
201365 7.8 重要
Local 		Git for Windows project - Windows 用 Git における権限を取得される脆弱性 CWE-Other
その他 		CVE-2016-9274 2016-11-15 17:15 2016-11-5 Show GitHub Exploit DB Packet Storm
201366 7.8 重要
Local 		Teradata Corporation - Teradata Studio Express の studioexpressinstall におけるシステムファイルを上書きされる脆弱性 CWE-264
CWE-59
CVE-2016-7490 2016-11-15 17:09 2016-10-3 Show GitHub Exploit DB Packet Storm
201367 9.8 緊急
Network 		Teradata Corporation - Teradata Virtual Machine Community Edition の /opt/teradata/gsctools/bin/t2a.pl における昇格されたコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-7489 2016-11-15 17:08 2016-10-1 Show GitHub Exploit DB Packet Storm
201368 7.8 重要
Local 		Teradata Corporation - Teradata Virtual Machine Community Edition における内容を変更される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-7488 2016-11-15 17:08 2016-10-1 Show GitHub Exploit DB Packet Storm
201369 7.5 重要
Network 		7-Zip - 7z.so ライブラリおよび 7z アプリケーションにおけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2016-9296 2016-11-15 16:36 2016-07-17 Show GitHub Exploit DB Packet Storm
201370 7.5 重要
Network 		Artifex Software - Artifex Software MuJS の jscompile.c コンポーネントにおけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2016-9294 2016-11-15 16:24 2016-10-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
354521 - apache james Spooler in Apache Foundation James 2.2.0 allows local users to cause a denial of service (memory consumption) by triggering various error conditions in the retrieve function, which prevents a lock fr… NVD-CWE-Other
CVE-2004-2650 2008-09-6 05:44 2004-12-31 Show GitHub Exploit DB Packet Storm
354522 - pd9_software megabbs Unspecified vulnerability in PD9 Software MegaBBS 2.0 and 2.1 allows attackers to gain privileges via unknown vectors involving (1) admin/userlevelmembers-edit.asp and (2) admin/edit-groups.asp. NVD-CWE-Other
CVE-2004-2653 2008-09-6 05:44 2004-12-31 Show GitHub Exploit DB Packet Storm
354523 - squid squid The clientAbortBody function in client_side.c in Squid Web Proxy Cache before 2.6 STABLE6 allows remote attackers to cause a denial of service (segmentation fault) via unspecified vectors that trigge… NVD-CWE-Other
CVE-2004-2654 2008-09-6 05:44 2004-12-31 Show GitHub Exploit DB Packet Storm
354524 - suse suse_linux resmgr in SUSE CORE 9 does not properly identify terminal names, which allows local users to spoof terminals and login types. NVD-CWE-Other
CVE-2004-2658 2008-09-6 05:44 2004-12-31 Show GitHub Exploit DB Packet Storm
354525 - soft3304 04webserver Soft3304 04WebServer before 1.41 does not properly check file names, which allows remote attackers to obtain sensitive information (CGI source code). NVD-CWE-Other
CVE-2004-2661 2008-09-6 05:44 2004-12-31 Show GitHub Exploit DB Packet Storm
354526 - soft3304 04webserver Soft3304 04WebServer before 1.41 allows remote attackers to cause a denial of service (resource consumption or crash) via certain data related to OpenSSL, which causes a thread to terminate but conti… NVD-CWE-Other
CVE-2004-2662 2008-09-6 05:44 2004-12-31 Show GitHub Exploit DB Packet Storm
354527 - john_lim adodb John Lim ADOdb Library for PHP before 4.23 allows remote attackers to obtain sensitive information via direct requests to certain scripts that result in an undefined value of ADODB_DIR, which reveals… NVD-CWE-Other
CVE-2004-2664 2008-09-6 05:44 2004-12-31 Show GitHub Exploit DB Packet Storm
354528 - john_lim adodb This vulnerability is addressed in the following product release: John Lim, ADOdb, 4.23 NVD-CWE-Other
CVE-2004-2664 2008-09-6 05:44 2004-12-31 Show GitHub Exploit DB Packet Storm
354529 - mantis mantis Mantis before 20041016 provides a complete Issue History (Bug History) in the web interface regardless of view_history_threshold, which allows remote attackers to obtain sensitive information (privat… NVD-CWE-Other
CVE-2004-2666 2008-09-6 05:44 2004-12-31 Show GitHub Exploit DB Packet Storm
354530 - - - Cross-site scripting (XSS) vulnerability in Lotus Domino 6.0.x before 6.0.4 and 6.5.x before 6.5.2 allows remote attackers to inject arbitrary web script or HTML via unknown attack vectors. NVD-CWE-Other
CVE-2004-2667 2008-09-6 05:44 2004-12-31 Show GitHub Exploit DB Packet Storm