Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
201731	5.5	警告 Local	マイクロソフト	-	複数の Microsoft Windows 製品のカーネル API における権限昇格の脆弱性	CWE-200 CWE-264	CVE-2016-7216	2016-11-11 16:30	2016-11-8	Show	GitHub Exploit DB Packet Storm

201732	7.8	重要 Local	マイクロソフト	-	複数の Microsoft Windows 製品のタスクスケジューラにおける権限昇格の脆弱性	CWE-264 CWE-Other	CVE-2016-7222	2016-11-11 14:54	2016-11-8	Show	GitHub Exploit DB Packet Storm

201733	7.5	重要 Network	マイクロソフト	-	Microsoft Internet Explorer 11 および Microsoft Edge における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2016-7241	2016-11-11 14:51	2016-11-8	Show	GitHub Exploit DB Packet Storm

201734	3.1	低 Network	マイクロソフト	-	Microsoft Internet Explorer 9 から 11 および Microsoft Edge の XSS フィルタの RegEx クラスにおけるクロスサイトスクリプティングの脆弱性	CWE-200 CWE-79	CVE-2016-7239	2016-11-11 14:51	2016-11-8	Show	GitHub Exploit DB Packet Storm

201735	3.1	低 Network	マイクロソフト	-	Microsoft Internet Explorer 9 から 11 および Microsoft Edge のスクリプトエンジンにおけるローカルファイルの存在を特定される脆弱性	CWE-200 情報漏えい	CVE-2016-7227	2016-11-11 14:51	2016-11-8	Show	GitHub Exploit DB Packet Storm

201736	3.1	低 Network	マイクロソフト	-	Microsoft Internet Explorer 9 から 11 および Microsoft Edge における同一生成元ポリシーを回避される脆弱性	CWE-200 情報漏えい	CVE-2016-7199	2016-11-11 14:51	2016-11-8	Show	GitHub Exploit DB Packet Storm

201737	7.5	重要 Network	マイクロソフト	-	Microsoft Internet Explorer 9 から 11 および Microsoft Edge における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2016-7198	2016-11-11 14:51	2016-11-8	Show	GitHub Exploit DB Packet Storm

201738	7.5	重要 Network	マイクロソフト	-	Microsoft Internet Explorer 10 および 11 ならびに Microsoft Edge における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2016-7196	2016-11-11 14:51	2016-11-8	Show	GitHub Exploit DB Packet Storm

201739	7.5	重要 Network	マイクロソフト	-	Microsoft Internet Explorer 9 から 11 および Microsoft Edge における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2016-7195	2016-11-11 14:51	2016-11-8	Show	GitHub Exploit DB Packet Storm

201740	7.5	重要 Network	マイクロソフト	-	Microsoft Edge の Chakra JavaScript スクリプトエンジンにおける任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2016-7243	2016-11-11 14:49	2016-11-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
345371	-	qdig	qdig	Multiple cross-site scripting (XSS) vulnerabilities in index.php in Qdig before 1.2.9.3, when register_globals is enabled, allow remote attackers to inject arbitrary web script or HTML via the (1) pr…	NVD-CWE-Other	CVE-2006-3265	2017-07-20 10:32	2006-06-28	Show	GitHub Exploit DB Packet Storm

345372	-	infinite_core_technologies	ict	SQL injection vulnerability in index.php in Infinite Core Technologies (ICT) 1.0 Gold and earlier allows remote attackers to execute arbitrary SQL commands via the post parameter.	NVD-CWE-Other	CVE-2006-3267	2017-07-20 10:32	2006-06-28	Show	GitHub Exploit DB Packet Storm

345373	-	thorcms	thorcms	SQL injection vulnerability in cms_admin.php in THoRCMS 1.3.1 allows remote attackers to execute arbitrary SQL commands via multiple unspecified parameters, such as the add_link_mid parameter. NOTE:…	NVD-CWE-Other	CVE-2006-3270	2017-07-20 10:32	2006-06-29	Show	GitHub Exploit DB Packet Storm

345374	-	astrodog_press	some_chess	Cross-site request forgery (CSRF) vulnerability in menu.php in Some Chess 1.5 rc2 allows remote attackers to conduct actions as another user, such as changing usernames and passwords, via unspecified…	NVD-CWE-Other	CVE-2006-3272	2017-07-20 10:32	2006-06-29	Show	GitHub Exploit DB Packet Storm

345375	-	yabb	yabb	SQL injection vulnerability in profile.php in YaBB SE 1.5.5 and earlier allows remote attackers to execute SQL commands via a double-encoded user parameter in a viewprofile action.	NVD-CWE-Other	CVE-2006-3275	2017-07-20 10:32	2006-06-29	Show	GitHub Exploit DB Packet Storm

345376	-	realnetworks	helix_dna_server	Heap-based buffer overflow in RealNetworks Helix DNA Server 10.0 and 11.0 allows remote attackers to execute arbitrary code via (1) a long User-Agent HTTP header in the RTSP service and (2) unspecifi…	NVD-CWE-Other	CVE-2006-3276	2017-07-20 10:32	2006-06-29	Show	GitHub Exploit DB Packet Storm

345377	-	realnetworks	helix_dna_server	Upgrade to Helix DNA Server version 11.1 : https://helix-server.helixcommunity.org/2005/devdocs/builds	NVD-CWE-Other	CVE-2006-3276	2017-07-20 10:32	2006-06-29	Show	GitHub Exploit DB Packet Storm

345378	-	positive_software	h-sphere	Cross-site scripting (XSS) vulnerability in H-Sphere 2.5.1 Beta 1 and earlier allows remote attackers to inject arbitrary web script or HTML via the (1) next_template, (2) start, (3) curr_menu_id, an…	NVD-CWE-Other	CVE-2006-3278	2017-07-20 10:32	2006-06-29	Show	GitHub Exploit DB Packet Storm

345379	-	cisco	wireless_control_system	The internal database in Cisco Wireless Control System (WCS) for Linux and Windows before 3.2(51) uses an undocumented, hard-coded username and password, which allows remote authenticated users to re…	NVD-CWE-Other	CVE-2006-3285	2017-07-20 10:32	2006-06-29	Show	GitHub Exploit DB Packet Storm

345380	-	cisco	wireless_control_system	The internal database in Cisco Wireless Control System (WCS) for Linux and Windows before 3.2(63) stores a hard-coded username and password in plaintext within unspecified files, which allows remote …	NVD-CWE-Other	CVE-2006-3286	2017-07-20 10:32	2006-06-29	Show	GitHub Exploit DB Packet Storm