Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 27, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
202151	5.9	警告 Network	Psi+ Dev Team	-	Psi+ の複数の XMPP クライアントの "XEP-0280: Message Carbons" の実装における連絡先を含むユーザになりすまされる脆弱性	CWE-20 CWE-346	CVE-2017-5593	2017-03-8 15:04	2017-01-25	Show	GitHub Exploit DB Packet Storm

202152	5.9	警告 Network	profanity	-	profanity の複数の XMPP クライアントの "XEP-0280: Message Carbons" の実装における連絡先を含むユーザになりすまされる脆弱性	CWE-20 CWE-346	CVE-2017-5592	2017-03-8 15:04	2017-01-24	Show	GitHub Exploit DB Packet Storm

202153	5.9	警告 Network	SleekXMPP project Slixmpp project	-	SleekXMPP および Slixmpp の複数の XMPP クライアントの "XEP-0280: Message Carbons" の実装における連絡先を含むユーザになりすまされる脆弱性	CWE-20 CWE-346	CVE-2017-5591	2017-03-8 15:04	2017-01-28	Show	GitHub Exploit DB Packet Storm

202154	5.9	警告 Network	Georg Lukas	-	yaxim および Bruno の複数の XMPP クライアントの "XEP-0280: Message Carbons" の実装における連絡先を含むユーザになりすまされる脆弱性	CWE-20 CWE-346	CVE-2017-5589	2017-03-8 15:04	2017-01-30	Show	GitHub Exploit DB Packet Storm

202155	6.1	警告 Network	Schneider Electric	-	Schneider Electric homeLYnk Controller におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2017-5157	2017-03-8 15:03	2017-01-18	Show	GitHub Exploit DB Packet Storm

202156	9.8	緊急 Network	Schneider Electric	-	Schneider Electric PowerLogic PM8ECC におけるデバイスへのアクセスを許容される脆弱性	CWE-798 ハードコードされた認証情報の使用	CVE-2016-5818	2017-03-8 15:03	2016-10-18	Show	GitHub Exploit DB Packet Storm

202157	7.5	重要 Network	Mobile App Native project	-	WordPress 用 Mobile App Native プラグインにおけるリモートでファイルをアップロードされる脆弱性	CWE-254 セキュリティ機能	CVE-2017-6104	2017-03-8 14:30	2017-02-27	Show	GitHub Exploit DB Packet Storm

202158	6.1	警告 Network	AnyVar project	-	WordPress 用 AnyVar プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2017-6103	2017-03-8 14:30	2017-02-21	Show	GitHub Exploit DB Packet Storm

202159	6.1	警告 Network	Blair Jordan	-	WordPress 用 Rockhoist Badges プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2017-6102	2017-03-8 14:30	2017-02-20	Show	GitHub Exploit DB Packet Storm

202160	7.8	重要 Local	IBM	-	IBM AIX における root 権限を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2016-8972	2017-03-8 14:20	2016-12-15	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 28, 2026, 4:01 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
343981	-	sgi debian mandrakesoft microsoft redhat suse	irix debian_linux mandrake_linux windows_98 windows_98se windows_xp enterprise_linux enterprise_linux_desktop linux linux_advanced_workstation suse_linux	IGMP 1 and 2	NVD-CWE-Other	CVE-2002-2185	2018-10-20 00:29	2002-12-31	Show	GitHub Exploit DB Packet Storm

343982	-	extended_interior_gateway_routing_protocol cisco	extended_interior_gateway_routing_protocol ios	Extended Interior Gateway Routing Protocol (EIGRP), as implemented in Cisco IOS 11.3 through 12.2 and other products, allows remote attackers to cause a denial of service (flood) by sending a large n…	NVD-CWE-Other	CVE-2002-2208	2018-10-20 00:29	2002-12-31	Show	GitHub Exploit DB Packet Storm

343983	-	isc	bind	BIND 4 and BIND 8, when resolving recursive DNS queries for arbitrary hosts, allows remote attackers to conduct DNS cache poisoning via a birthday attack that uses a large number of open queries for …	NVD-CWE-Other	CVE-2002-2211	2018-10-20 00:29	2002-12-31	Show	GitHub Exploit DB Packet Storm

343984	-	oracle	database_server	Multiple unspecified vulnerabilities in Oracle Database 9.2.0.6 and 10.1.0.4 have unknown impact and attack vectors, aka Oracle Vuln# (1) DB04 for Web Distributed Authoring and Versioning (DAV) and (…	NVD-CWE-Other	CVE-2006-3700	2018-10-19 01:49	2006-07-21	Show	GitHub Exploit DB Packet Storm

343985	-	oracle	database_server	Unspecified vulnerability in the Dictionary component in Oracle Database 8.1.7.4, 9.0.1.5, and 9.2.0.6 has unknown impact and attack vectors, aka Oracle Vuln# DB05.	NVD-CWE-noinfo	CVE-2006-3701	2018-10-19 01:49	2006-07-21	Show	GitHub Exploit DB Packet Storm

343986	-	oracle	database_server	Multiple unspecified vulnerabilities in Oracle Database 8.1.7.4, 9.0.1.5, 9.2.0.7, 10.1.0.5, and 10.2.0.2 have unknown impact and attack vectors, aka Oracle Vuln# (1) DB06 in Export; (2) DB08, (3) DB…	NVD-CWE-noinfo	CVE-2006-3702	2018-10-19 01:49	2006-07-21	Show	GitHub Exploit DB Packet Storm

343987	-	oracle	database_server	Unspecified vulnerability in InterMedia for Oracle Database 9.0.1.5, 9.2.0.6, and 10.1.0.4 has unknown impact and attack vectors, aka oracle Vuln# DB07.	NVD-CWE-noinfo	CVE-2006-3703	2018-10-19 01:49	2006-07-21	Show	GitHub Exploit DB Packet Storm

343988	-	oracle	database_server	Unspecified vulnerability in the Oracle ODBC Driver for Oracle Database 10.1.0.4 has unknown impact and attack vectors, aka Oracle Vuln# 10.1.0.4.	NVD-CWE-Other	CVE-2006-3704	2018-10-19 01:49	2006-07-21	Show	GitHub Exploit DB Packet Storm

343989	-	oracle	database_server	Multiple unspecified vulnerabilities in Oracle Database 10.1.0.5 have unknown impact and attack vectors, aka Oracle Vuln# (1) DB21 for Statistics and (2) DB22 for Upgrade & Downgrade. NOTE: as of 20…	NVD-CWE-noinfo	CVE-2006-3705	2018-10-19 01:49	2006-07-21	Show	GitHub Exploit DB Packet Storm

343990	-	oracle	application_server	Unspecified vulnerability in OC4J for Oracle Application Server 9.0.2.3 has unknown impact and attack vectors, aka Oracle Vuln# AS01.	NVD-CWE-noinfo	CVE-2006-3706	2018-10-19 01:49	2006-07-21	Show	GitHub Exploit DB Packet Storm