Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 19, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
201561 6.1 警告
Network 		Plone Foundation - Plone の Zope ZMI の検索機能の manage_findResult コンポーネントにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-7147 2017-02-21 11:05 2016-09-5 Show GitHub Exploit DB Packet Storm
201562 9.1 緊急
Network 		SaltStack - Salt における同一の ID を持つ minion を読まれる脆弱性 CWE-284
不適切なアクセス制御 		CVE-2016-9639 2017-02-20 18:16 2016-11-28 Show GitHub Exploit DB Packet Storm
201563 5.2 警告
Adjacent 		Tenable, Inc. - Nessus におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-9260 2017-02-20 17:43 2017-01-24 Show GitHub Exploit DB Packet Storm
201564 7.5 重要
Network 		日本電気
Apache Software Foundation		 - Apache HTTP Web Server の HTTP/2 プロトコルの処理にサービス運用妨害 (DoS) の脆弱性 CWE-20
CWE-399
CVE-2016-8740 2017-02-20 17:39 2016-12-4 Show GitHub Exploit DB Packet Storm
201565 7.2 重要
Network 		iRZ Company - iRZ RUH2 におけるデータを変更される脆弱性 CWE-345
データの信頼性についての不十分な検証 		CVE-2016-2309 2017-02-20 17:10 2016-05-17 Show GitHub Exploit DB Packet Storm
201566 7.8 重要
Local 		Google - メディアサーバの libopus の silk/NLSF_stabilize.c における情報を公開される脆弱性 CWE-119
バッファエラー 		CVE-2017-0381 2017-02-20 16:38 2017-01-3 Show GitHub Exploit DB Packet Storm
201567 5.9 警告
Network 		DELL EMC (旧 EMC Corporation)
日立		 - 複数の EMC RSA BSAFE 製品における秘密鍵の prime を取得される脆弱性 CWE-200
情報漏えい 		CVE-2016-0887 2017-02-20 16:14 2016-04-11 Show GitHub Exploit DB Packet Storm
201568 9.8 緊急
Network 		Exponent CMS project - Exponent CMS におけるブラインド SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2017-5879 2017-02-17 18:15 2017-02-6 Show GitHub Exploit DB Packet Storm
201569 6.1 警告
Network 		dotCMS - dotCMS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2017-5876 2017-02-17 18:15 2017-02-6 Show GitHub Exploit DB Packet Storm
201570 8.8 重要
Network 		ZoneMinder - ZoneMinder におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2017-5368 2017-02-17 18:15 2017-02-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 19, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
344321 - hp
university_of_washington
sco 		dtmail
pine
unixware 		MIME buffer overflow in email clients, e.g. Solaris mailtool and Outlook. NVD-CWE-Other
CVE-1999-0004 2018-10-13 06:29 1997-12-16 Show GitHub Exploit DB Packet Storm
344322 - microsoft internet_information_server
windows_nt 		In IIS, remote attackers can obtain source code for ASP files by appending "::$DATA" to the URL. NVD-CWE-Other
CVE-1999-0278 2018-10-13 06:29 1998-06-1 Show GitHub Exploit DB Packet Storm
344323 - microsoft windows_nt Local users in Windows NT can obtain administrator privileges by changing the KnownDLLs list to reference malicious programs. NVD-CWE-Other
CVE-1999-0376 2018-10-13 06:29 1999-02-20 Show GitHub Exploit DB Packet Storm
344324 - microsoft backoffice_resource_kit Microsoft Taskpads allows remote web sites to execute commands on the visiting user's machine via certain methods that are marked as Safe for Scripting. NVD-CWE-Other
CVE-1999-0379 2018-10-13 06:29 1999-02-22 Show GitHub Exploit DB Packet Storm
344325 - microsoft windows_nt The screen saver in Windows NT does not verify that its security context has been changed properly, allowing attackers to run programs with elevated privileges. NVD-CWE-Other
CVE-1999-0382 2018-10-13 06:29 1999-03-12 Show GitHub Exploit DB Packet Storm
344326 - microsoft office
outlook
project
visual_basic
windows_2000
windows_nt 		The Forms 2.0 ActiveX control (included with Visual Basic for Applications 5.0) can be used to read text from a user's clipboard when the user accesses documents with ActiveX content. NVD-CWE-Other
CVE-1999-0384 2018-10-13 06:29 1999-01-1 Show GitHub Exploit DB Packet Storm
344327 - microsoft frontpage
personal_web_server 		Microsoft Personal Web Server and FrontPage Personal Web Server in some Windows systems allows a remote attacker to read files on the server by using a nonstandard URL. NVD-CWE-Other
CVE-1999-0386 2018-10-13 06:29 1999-03-1 Show GitHub Exploit DB Packet Storm
344328 - microsoft windows_nt MSHTML.DLL in Internet Explorer 5.0 allows a remote attacker to paste a file name into the file upload intrinsic control, a variant of "untrusted scripted paste" as described in MS:MS98-013. NVD-CWE-Other
CVE-1999-0489 2018-10-13 06:29 1999-05-17 Show GitHub Exploit DB Packet Storm
344329 - microsoft internet_information_server The showcode.asp sample file in IIS and Site Server allows remote attackers to read arbitrary files. NVD-CWE-Other
CVE-1999-0736 2018-10-13 06:29 1999-05-7 Show GitHub Exploit DB Packet Storm
344330 - microsoft internet_information_server The viewcode.asp sample file in IIS and Site Server allows remote attackers to read arbitrary files. NVD-CWE-Other
CVE-1999-0737 2018-10-13 06:29 1999-05-7 Show GitHub Exploit DB Packet Storm