Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
201501 6.8 警告
Local 		オラクル - Oracle Virtualization の Oracle VM VirtualBox における Core に関する脆弱性 CWE-Other
その他 		CVE-2016-5610 2016-11-21 12:23 2016-10-18 Show GitHub Exploit DB Packet Storm
201502 5.5 警告
Local 		ImageMagick
Canonical
レッドハット		 - ImageMagick の LABEL コーダにおける任意のファイルを読まれる脆弱性 CWE-200
情報漏えい 		CVE-2016-3717 2016-11-21 12:02 2016-05-3 Show GitHub Exploit DB Packet Storm
201503 6.3 警告
Local 		ImageMagick
Canonical
レッドハット		 - ImageMagick の HTTP および FTP コーダにおけるサーバサイドのリクエストフォージェリの脆弱性 CWE-20
不適切な入力確認 		CVE-2016-3718 2016-11-21 11:59 2016-05-3 Show GitHub Exploit DB Packet Storm
201504 3.3
Local 		ImageMagick
Canonical
レッドハット		 - ImageMagick の MSL コーダにおける任意のファイルを移動される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-3716 2016-11-21 11:45 2016-05-3 Show GitHub Exploit DB Packet Storm
201505 6.5 警告
Network 		LibGD project
Debian
openSUSE project		 - GD Graphics Library の gd_tga.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2016-6214 2016-11-21 11:00 2016-07-22 Show GitHub Exploit DB Packet Storm
201506 6.5 警告
Network 		LibGD project
Debian
openSUSE project		 - GD Graphics Library の gd_interpolation.c の _gdContributionsAlloc 関数における整数オーバーフローの脆弱性 CWE-119
CWE-Other
CVE-2016-6207 2016-11-21 11:00 2016-07-22 Show GitHub Exploit DB Packet Storm
201507 6.5 警告
Network 		LibGD project
Debian
openSUSE project		 - GD Graphics Library の gd_gif_out.c の output 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2016-6161 2016-11-21 11:00 2016-05-14 Show GitHub Exploit DB Packet Storm
201508 6.5 警告
Network 		LibGD project
Debian
openSUSE project		 - GD Graphics Library の gdImageCreateFromTgaCtx 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2016-6132 2016-11-21 11:00 2016-07-22 Show GitHub Exploit DB Packet Storm
201509 7.5 重要
Network 		The PHP Group
LibGD project
Debian
openSUSE project		 - PHP で使用される GD Graphics Library の gd_crop.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2016-6128 2016-11-21 11:00 2016-07-22 Show GitHub Exploit DB Packet Storm
201510 8.8 重要
Network 		Mozilla Foundation
openSUSE project
Canonical
Debian
SUSE
レッドハット		 - Mozilla Firefox のブラウザエンジンにおけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2016-2818 2016-11-21 10:57 2016-06-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
345371 - yabb yabb Cross-site scripting (XSS) vulnerability in YaBB.pl in Yet Another Bulletin Board (YaBB) 1 Gold SP 1 allows remote attackers to inject arbitrary web script or HTML via the num parameter. CWE-79
Cross-site Scripting 		CVE-2002-2296 2017-07-29 10:29 2002-12-31 Show GitHub Exploit DB Packet Storm
345372 - atthat.com thatware PHP remote file inclusion vulnerability in artlist.php in Thatware 0.5.2 and 0.5.3 allows remote attackers to execute arbitrary PHP code via the root_path parameter. CWE-94
Code Injection 		CVE-2002-2297 2017-07-29 10:29 2002-12-31 Show GitHub Exploit DB Packet Storm
345373 - atthat.com thatware PHP remote file inclusion vulnerability in config.php in Thatware 0.3 through 0.5.3 allows remote attackers to execute arbitrary PHP code via the root_path parameter. CWE-94
Code Injection 		CVE-2002-2298 2017-07-29 10:29 2002-12-31 Show GitHub Exploit DB Packet Storm
345374 - atthat.com thatware PHP remote file inclusion vulnerability in thatfile.php in Thatware 0.3 through 0.5.2 allows remote attackers to execute arbitrary PHP code via the root_path parameter. CWE-94
Code Injection 		CVE-2002-2299 2017-07-29 10:29 2002-12-31 Show GitHub Exploit DB Packet Storm
345375 - 3com webbngss3nbxnts Buffer overflow in ftpd 5.4 in 3Com NBX 4.0.17 or ftpd 5.4.2 in 3Com NBX 4.1.4 allows remote attackers to cause a denial of service (crash) via a long CEL command. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2002-2300 2017-07-29 10:29 2002-12-31 Show GitHub Exploit DB Packet Storm
345376 - lawson_software lawson_financials Lawson Financials 8.0, when configured to use a third party relational database, stores usernames and passwords in a world-readable file, which allows local users to read the passwords and log onto t… CWE-255
Credentials Management 		CVE-2002-2301 2017-07-29 10:29 2002-12-31 Show GitHub Exploit DB Packet Storm
345377 - 3d3.com shopfactory 3D3.Com ShopFactory 5.5 through 5.8 allows remote attackers to modify the prices in their shopping carts by modifying the price in a hidden form field. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2002-2302 2017-07-29 10:29 2002-12-31 Show GitHub Exploit DB Packet Storm
345378 - 3d3.com shopfactory 3D3.Com ShopFactory 5.8 uses client-side encryption and decryption for sensitive price data, which allows remote attackers to modify shopping cart prices by using the Javascript to decrypt the cookie… CWE-310
Cryptographic Issues 		CVE-2002-2303 2017-07-29 10:29 2002-12-31 Show GitHub Exploit DB Packet Storm
345379 - myphpsoft myphplinks SQL injection vulnerability in admin/auth/checksession.php in MyPHPLinks 2.1.9 and 2.2.0 allows remote attackers to execute arbitrary SQL commands via the idsession parameter. CWE-89
SQL Injection 		CVE-2002-2304 2017-07-29 10:29 2002-12-31 Show GitHub Exploit DB Packet Storm
345380 - phpsecure.org immobilier SQL injection vulnerability in agentadmin.php in Immobilier allows remote attackers to execute arbitrary SQL commands via the (1) agentname or (2) agentpassword parameter. CWE-89
SQL Injection 		CVE-2002-2305 2017-07-29 10:29 2002-12-31 Show GitHub Exploit DB Packet Storm