Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 4, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
201851 9.8 緊急
Network 		マイクロフォーカス株式会社 - Micro Focus Rumba の send.exe および receive.exe コンポーネントにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2016-9176 2016-11-8 17:27 2016-10-31 Show GitHub Exploit DB Packet Storm
201852 8.8 重要
Network 		Exponent CMS project - Exponent CMS の framework/modules/core/controllers/expRatingController.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2016-9242 2016-11-8 17:23 2016-11-4 Show GitHub Exploit DB Packet Storm
201853 7.5 重要
Network 		Exponent CMS project - Exponent CMS の /framework/modules/core/controllers/expHTMLEditorController.php における SQL インジェクションの脆弱性 CWE-200
CWE-89
CVE-2016-9184 2016-11-8 17:23 2016-11-3 Show GitHub Exploit DB Packet Storm
201854 7.5 重要
Network 		Exponent CMS project - Exponent CMS の /framework/modules/ecommerce/controllers/orderController.php における情報公開の脆弱性 CWE-200
情報漏えい 		CVE-2016-9183 2016-11-8 17:23 2016-11-3 Show GitHub Exploit DB Packet Storm
201855 7.5 重要
Network 		Exponent CMS project - Exponent CMS におけるパーミッションチェックを回避される脆弱性 CWE-Other
その他 		CVE-2016-9182 2016-11-8 17:23 2016-11-3 Show GitHub Exploit DB Packet Storm
201856 8.1 重要
Network 		Joomla! - Joomla! の Users コンポーネントの controllers/user.php の UsersModelRegistration クラスにおけるユーザアカウントを作成される脆弱性 CWE-20
不適切な入力確認 		CVE-2016-8870 2016-11-8 16:46 2016-10-25 Show GitHub Exploit DB Packet Storm
201857 9.8 緊急
Network 		Joomla! - Joomla! の Users コンポーネントの controllers/user.php の UsersModelRegistration クラスにおける権限を取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2016-8869 2016-11-8 16:46 2016-10-25 Show GitHub Exploit DB Packet Storm
201858 7.5 重要
Network 		シスコシステムズ - Data Processing Card 2 を伴う Cisco ASR 5000 シリーズルータの StarOS における加入者セッションの一部を切断される脆弱性 CWE-399
リソース管理の問題 		CVE-2016-6455 2016-11-8 14:13 2016-11-2 Show GitHub Exploit DB Packet Storm
201859 6.5 警告
Network 		シスコシステムズ - Cisco Hosted Collaboration Mediation Fulfillment の Web インターフェースにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2016-6454 2016-11-8 14:13 2016-10-26 Show GitHub Exploit DB Packet Storm
201860 7.3 重要
Network 		シスコシステムズ - Cisco Identity Services Engine の Web フレームワークのコードにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2016-6453 2016-11-8 14:13 2016-10-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
345521 - mambo mambo_gallery_manager PHP remote file inclusion vulnerability in about.mgm.php in Mambo Gallery Manager (MGM) 0.95r2 and earlier for Mambo 4.5 allows remote attackers to execute arbitrary PHP code via a URL in the mosConf… NVD-CWE-Other
CVE-2006-3981 2017-07-20 10:32 2006-08-5 Show GitHub Exploit DB Packet Storm
345522 - drupal drupal Cross-site scripting (XSS) vulnerability in user.module in Drupal 4.6 before 4.6.9, and 4.7 before 4.7.3, allows remote attackers to inject arbitrary web script or HTML via the msg parameter. NOTE: … NVD-CWE-Other
CVE-2006-4002 2017-07-20 10:32 2006-08-8 Show GitHub Exploit DB Packet Storm
345523 - drupal drupal This vulnerability is addressed in the following product releases: Drupal, Drupal, 4.6.9 Drupal, Drupal, 4.7.3 NVD-CWE-Other
CVE-2006-4002 2017-07-20 10:32 2006-08-8 Show GitHub Exploit DB Packet Storm
345524 - bomberclone bomberclone BomberClone 0.11.6 and earlier allows remote attackers to cause a denial of service (daemon crash) via (1) a certain malformed PKGF_ackreq packet, which triggers a crash in the rscache_add() function… NVD-CWE-Other
CVE-2006-4005 2017-07-20 10:32 2006-08-8 Show GitHub Exploit DB Packet Storm
345525 - bomberclone bomberclone The do_gameinfo function in BomberClone 0.11.6 and earlier, and possibly other functions, does not reset the packet data size, which causes the send_pkg function (packets.c) to use this data size whe… CWE-200
Information Exposure 		CVE-2006-4006 2017-07-20 10:32 2006-08-8 Show GitHub Exploit DB Packet Storm
345526 - symantec brightmail_antispam Multiple directory traversal vulnerabilities in Symantec Brightmail AntiSpam (SBAS) before 6.0.4, when the Control Center is allowed to connect from any computer, allow remote attackers to read and o… CWE-22
Path Traversal 		CVE-2006-4013 2017-07-20 10:32 2006-08-8 Show GitHub Exploit DB Packet Storm
345527 - cisco callmanager_express Unspecified vulnerability in Cisco IOS CallManager Express (CME) allows remote attackers to gain sensitive information (user names) from the Session Initiation Protocol (SIP) user directory via certa… NVD-CWE-Other
CVE-2006-4032 2017-07-20 10:32 2006-08-10 Show GitHub Exploit DB Packet Storm
345528 - cisco callmanager_express Cisco's recommended best practice of implementing the VoIP infrastructure and data devices on separate VLANs would prevent malicious users from launching such attacks against the VoIP network. NVD-CWE-Other
CVE-2006-4032 2017-07-20 10:32 2006-08-10 Show GitHub Exploit DB Packet Storm
345529 - counterchaos counterchaos SQL injection vulnerability in counterchaos.php in CounterChaos 0.48c and earlier allows remote attackers to execute arbitrary SQL commands via the Referer HTTP header. NVD-CWE-Other
CVE-2006-4035 2017-07-20 10:32 2006-08-10 Show GitHub Exploit DB Packet Storm
345530 - pike pike SQL injection vulnerability in Pike before 7.6.86, when using a Postgres database server, allows remote attackers to execute arbitrary SQL commands via unspecified attack vectors. NVD-CWE-Other
CVE-2006-4041 2017-07-20 10:32 2006-08-10 Show GitHub Exploit DB Packet Storm