Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
202341 7.5 重要
Network
libass project
openSUSE project
Fedora Project
- libass の libass/ass_shaper.c の check_allocations 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題
CVE-2016-7972 2017-03-23 16:34 2016-10-5 Show GitHub Exploit DB Packet Storm
202342 7.5 重要
Network
libass project
Fedora Project
- libass の libass/ass_blur.c の calc_coeff 関数におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2016-7970 2017-03-23 16:34 2016-10-5 Show GitHub Exploit DB Packet Storm
202343 7.5 重要
Network
libass project
openSUSE project
Fedora Project
- libass の ass_render.c の wrap_lines_smart 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-125
境界外読み取り
CVE-2016-7969 2017-03-23 16:34 2016-10-5 Show GitHub Exploit DB Packet Storm
202344 5.5 警告
Local
ImageMagick - ImageMagick の coders/tiff.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-476
NULL ポインタデリファレンス
CVE-2016-9559 2017-03-23 16:23 2016-11-10 Show GitHub Exploit DB Packet Storm
202345 5.5 警告
Local
openSUSE project
ImageMagick
- ImageMagick の coders/mat.c の CalcMinMax 関数におけるヒープベースのバッファオーバーフローの脆弱性 CWE-125
境界外読み取り
CVE-2016-10070 2017-03-23 16:23 2016-02-20 Show GitHub Exploit DB Packet Storm
202346 5.5 警告
Local
ImageMagick - ImageMagick の coders/viff.c の ReadVIFFImage 関数におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2016-10066 2017-03-23 16:23 2016-11-21 Show GitHub Exploit DB Packet Storm
202347 7.8 重要
Local
openSUSE project
ImageMagick
- ImageMagick の coders/viff.c の ReadVIFFImage 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-284
不適切なアクセス制御
CVE-2016-10065 2017-03-23 16:23 2016-02-15 Show GitHub Exploit DB Packet Storm
202348 5.5 警告
Local
ImageMagick - ImageMagick の coders/tiff.c の ReadGROUP4Image 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認
CVE-2016-10061 2017-03-23 16:23 2016-06-4 Show GitHub Exploit DB Packet Storm
202349 9.8 緊急
Network
TigerVNC - TigerVNC の ModifiablePixelBuffer::fillRect 関数におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2017-5581 2017-03-23 15:51 2017-01-18 Show GitHub Exploit DB Packet Storm
202350 9.8 緊急
Network
エマソン - Emerson Liebert SiteScan Web における XML 外部エンティティの脆弱性 CWE-611
XML 外部エンティティ参照の不適切な制限
CVE-2016-8348 2017-03-23 15:38 2016-11-29 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
345551 - tugzip tugzip Multiple directory traversal vulnerabilities in Christian Kindahl TUGZip 3.4.0.0, 3.3.0.0, and 3.1.0.2 allow user-assisted attackers to create files in arbitrary directories via a .. (dot dot) in an … NVD-CWE-Other
CVE-2006-1715 2018-10-19 01:34 2006-04-12 Show GitHub Exploit DB Packet Storm
345552 - mybulletinboard mybulletinboard Cross-site scripting (XSS) vulnerability in inc/functions_post.php in MyBB (aka MyBulletinBoard) 1.10 allows remote attackers to inject arbitrary web script or HTML via a JavaScript event in a BBCode… NVD-CWE-Other
CVE-2006-1716 2018-10-19 01:34 2006-04-12 Show GitHub Exploit DB Packet Storm
345553 - mybulletinboard mybulletinboard Successful exploitation requires that unauthenticated users are allowed to post new threads (not the default setting). NVD-CWE-Other
CVE-2006-1716 2018-10-19 01:34 2006-04-12 Show GitHub Exploit DB Packet Storm
345554 - mybulletinboard mybulletinboard Cross-site scripting (XSS) vulnerability in newthread.php in MyBB (aka MyBulletinBoard) 1.10, when configured to permit new threads by unregistered users, allows remote attackers to inject arbitrary … NVD-CWE-Other
CVE-2006-1717 2018-10-19 01:34 2006-04-12 Show GitHub Exploit DB Packet Storm
345555 - mybulletinboard mybulletinboard Successful exploitation requires that unauthenticated users are allowed to post new threads (not the default setting). NVD-CWE-Other
CVE-2006-1717 2018-10-19 01:34 2006-04-12 Show GitHub Exploit DB Packet Storm
345556 - clever_copy clever_copy Magus Perde Clever Copy 3.0 and earlier stores sensitive information under the web root with insufficient access control, which allows remote attackers to view the database username and password via … NVD-CWE-Other
CVE-2006-1718 2018-10-19 01:34 2006-04-12 Show GitHub Exploit DB Packet Storm
345557 - microsoft ie Internet Explorer 6 allows remote attackers to cause a denial of service (application crash) via any scrollbar Cascading Style Sheets (CSS) property. NVD-CWE-Other
CVE-2006-1719 2018-10-19 01:34 2006-04-12 Show GitHub Exploit DB Packet Storm
345558 - arabless saphplesson Cross-site scripting (XSS) vulnerability in search.php in SaphpLesson 3.0 allows remote attackers to inject arbitrary web script or HTML via the Word parameter. NOTE: it is possible that this issue … NVD-CWE-Other
CVE-2006-1720 2018-10-19 01:34 2006-04-12 Show GitHub Exploit DB Packet Storm
345559 - cyrus sasl digestmd5.c in the CMU Cyrus Simple Authentication and Security Layer (SASL) library 2.1.18, and possibly other versions before 2.1.21, allows remote unauthenticated attackers to cause a denial of se… CWE-20
 Improper Input Validation 
CVE-2006-1721 2018-10-19 01:34 2006-04-12 Show GitHub Exploit DB Packet Storm
345560 - mozilla firefox
seamonkey
thunderbird
Unspecified vulnerability in Firefox and Thunderbird before 1.5.0.2, and SeaMonkey before 1.0.1, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via u… NVD-CWE-Other
CVE-2006-1723 2018-10-19 01:34 2006-04-14 Show GitHub Exploit DB Packet Storm