Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 2, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
201431 6.1 警告
Local 		マイクロソフト - Microsoft Windows 10 および Windows Server 2016 の仮想ハードディスクドライバにおける権限昇格の脆弱性 CWE-Other
その他 		CVE-2016-7226 2016-11-11 16:30 2016-11-8 Show GitHub Exploit DB Packet Storm
201432 6.1 警告
Local 		マイクロソフト - Microsoft Windows 10 および Windows Server 2016 の仮想ハードディスクドライバにおける権限昇格の脆弱性 CWE-Other
その他 		CVE-2016-7225 2016-11-11 16:30 2016-11-8 Show GitHub Exploit DB Packet Storm
201433 6.1 警告
Local 		マイクロソフト - 複数の Microsoft Windows 製品の仮想ハードディスクドライバにおける権限昇格の脆弱性 CWE-Other
その他 		CVE-2016-7224 2016-11-11 16:30 2016-11-8 Show GitHub Exploit DB Packet Storm
201434 6.1 警告
Local 		マイクロソフト - 複数の Microsoft Windows 製品の仮想ハードディスクドライバにおける権限昇格の脆弱性 CWE-Other
その他 		CVE-2016-7223 2016-11-11 16:30 2016-11-8 Show GitHub Exploit DB Packet Storm
201435 3.3
Local 		マイクロソフト - Microsoft Windows 10 の仮想保護モードにおける重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2016-7220 2016-11-11 16:30 2016-11-8 Show GitHub Exploit DB Packet Storm
201436 5.5 警告
Local 		マイクロソフト - 複数の Microsoft Windows 製品のカーネル API における権限昇格の脆弱性 CWE-200
CWE-264
CVE-2016-7216 2016-11-11 16:30 2016-11-8 Show GitHub Exploit DB Packet Storm
201437 7.8 重要
Local 		マイクロソフト - 複数の Microsoft Windows 製品のタスク スケジューラにおける権限昇格の脆弱性 CWE-264
CWE-Other
CVE-2016-7222 2016-11-11 14:54 2016-11-8 Show GitHub Exploit DB Packet Storm
201438 7.5 重要
Network 		マイクロソフト - Microsoft Internet Explorer 11 および Microsoft Edge における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2016-7241 2016-11-11 14:51 2016-11-8 Show GitHub Exploit DB Packet Storm
201439 3.1
Network 		マイクロソフト - Microsoft Internet Explorer 9 から 11 および Microsoft Edge の XSS フィルタの RegEx クラスにおけるクロスサイトスクリプティングの脆弱性 CWE-200
CWE-79
CVE-2016-7239 2016-11-11 14:51 2016-11-8 Show GitHub Exploit DB Packet Storm
201440 3.1
Network 		マイクロソフト - Microsoft Internet Explorer 9 から 11 および Microsoft Edge のスクリプトエンジンにおけるローカルファイルの存在を特定される脆弱性 CWE-200
情報漏えい 		CVE-2016-7227 2016-11-11 14:51 2016-11-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
345461 - edgewall_software trac Cross-site scripting (XSS) vulnerability in Edgewall Software Trac 0.9.4 and earlier allows remote attackers to inject arbitrary web script or HTML via unknown attack vectors related to a "wiki macro… NVD-CWE-Other
CVE-2006-2106 2017-07-20 10:31 2006-04-29 Show GitHub Exploit DB Packet Storm
345462 - virtual_private_server vserver Virtual Private Server (Vserver) 2.0.x before 2.0.2-rc18 and 2.1.x before 2.1.1-rc18 provides certain context capabilities (ccaps) that allow local guest users to perform operations that were only in… NVD-CWE-Other
CVE-2006-2110 2017-07-20 10:31 2006-05-2 Show GitHub Exploit DB Packet Storm
345463 - virtual_private_server vserver This vulnerability is addressed in the following product releases: Virtual Private Server, Vserver, 2.0.2-rc18 Virtual Private Server, Vserver, 2.1.1-rc18 NVD-CWE-Other
CVE-2006-2110 2017-07-20 10:31 2006-05-2 Show GitHub Exploit DB Packet Storm
345464 - network_administration_visualized network_administration_visualized Multiple SQL injection vulnerabilities in the report interface in Network Administration Visualized (NAV) before 3.0.1 allow remote attackers to execute arbitrary SQL commands via unknown vectors. NVD-CWE-Other
CVE-2006-2123 2017-07-20 10:31 2006-05-2 Show GitHub Exploit DB Packet Storm
345465 - turnkey_solutions sunshop_shopping_cart Multiple cross-site scripting (XSS) vulnerabilities in SunShop 3.5 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) prevaction, (2) previd, (3) prevstart, (4) ite… NVD-CWE-Other
CVE-2006-2124 2017-07-20 10:31 2006-05-2 Show GitHub Exploit DB Packet Storm
345466 - avalon_ltd maxtrade SQL injection vulnerability in pocategories.php in MaxTrade 1.0.1 and earlier allows remote attackers to execute arbitrary SQL commands via the (1) categori and (2) stranica parameters. NVD-CWE-Other
CVE-2006-2126 2017-07-20 10:31 2006-05-2 Show GitHub Exploit DB Packet Storm
345467 - deltascripts pro_publish Direct static code injection vulnerability in Pro Publish 2.0 allows remote authenticated administrators to execute arbitrary PHP code by editing certain settings, which are stored in set_inc.php. NVD-CWE-Other
CVE-2006-2129 2017-07-20 10:31 2006-05-2 Show GitHub Exploit DB Packet Storm
345468 - advanced_poll advanced_poll SQL injection vulnerability in include/class_poll.php in Advanced Poll 2.0.4 allows remote attackers to execute arbitrary SQL commands via the User-Agent HTTP header. NVD-CWE-Other
CVE-2006-2130 2017-07-20 10:31 2006-05-2 Show GitHub Exploit DB Packet Storm
345469 - advanced_poll advanced_poll Successful exploitation requires that magic_quotes_gpc is set to off. NVD-CWE-Other
CVE-2006-2130 2017-07-20 10:31 2006-05-2 Show GitHub Exploit DB Packet Storm
345470 - advanced_poll advanced_poll include/class_poll.php in Advanced Poll 2.0.4 uses the HTTP_X_FORWARDED_FOR (X-Forwarded-For HTTP header) to identify the IP address of a client, which makes it easier for remote attackers to spoof t… NVD-CWE-Other
CVE-2006-2131 2017-07-20 10:31 2006-05-2 Show GitHub Exploit DB Packet Storm