Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 23, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
202701	4.9	警告 Network	マイクロソフト	-	複数の Microsoft Windows 製品におけるセキュアブート保護メカニズムを回避される脆弱性	CWE-Other その他	CVE-2016-3320	2016-08-15 16:58	2016-08-9	Show	GitHub Exploit DB Packet Storm

202702	9.1	緊急 Network	マイクロソフト	-	Microsoft Windows 10 の ActiveSyncProvider における認証情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2016-3312	2016-08-15 16:58	2016-08-9	Show	GitHub Exploit DB Packet Storm

202703	7.8	重要 Local	マイクロソフト	-	複数の Microsoft Windows 製品の Netlogon サービスにおける権限昇格の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2016-3300	2016-08-15 16:58	2016-08-9	Show	GitHub Exploit DB Packet Storm

202704	6.7	警告 Local	マイクロソフト	-	複数の Microsoft Windows 製品の Kerberos における認証を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2016-3237	2016-08-15 16:58	2016-08-9	Show	GitHub Exploit DB Packet Storm

202705	5.3	警告 Network	マイクロソフト	-	Microsoft Internet Explorer 9 から 11 および Microsoft Edge におけるファイルの存在を特定される脆弱性	CWE-200 情報漏えい	CVE-2016-3329	2016-08-15 16:55	2016-08-9	Show	GitHub Exploit DB Packet Storm

202706	5.3	警告 Network	マイクロソフト	-	Microsoft Internet Explorer 9 から 11 および Microsoft Edge における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2016-3327	2016-08-15 16:55	2016-08-9	Show	GitHub Exploit DB Packet Storm

202707	5.3	警告 Network	マイクロソフト	-	Microsoft Internet Explorer 9 から 11 および Microsoft Edge における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2016-3326	2016-08-15 16:55	2016-08-9	Show	GitHub Exploit DB Packet Storm

202708	7.5	重要 Network	マイクロソフト	-	Microsoft Internet Explorer 11 および Microsoft Edge における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2016-3322	2016-08-15 16:55	2016-08-9	Show	GitHub Exploit DB Packet Storm

202709	2.5	低 Local	マイクロソフト	-	Microsoft Internet Explorer 10 および 11 におけるファイルを列挙される脆弱性	CWE-200 情報漏えい	CVE-2016-3321	2016-08-15 16:55	2016-08-9	Show	GitHub Exploit DB Packet Storm

202710	7.5	重要 Network	マイクロソフト	-	Microsoft Internet Explorer 9 から 11 および Microsoft Edge における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2016-3293	2016-08-15 16:55	2016-08-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
346691	-	-	-	index2.php in Mambo 4.0.12 allows remote attackers to gain administrator access via a URL request where session_id is set to the MD5 hash of a session cookie.	NVD-CWE-Other	CVE-2003-1245	2017-07-11 10:29	2003-12-31	Show	GitHub Exploit DB Packet Storm

346692	-	active_php_bookmarks	active_php_bookmarks	add_bookmark.php in Active PHP Bookmarks (APB) 1.1.01 allows remote attackers to add arbitrary bookmarks as other users using a modified auth_user_id parameter.	NVD-CWE-Other	CVE-2003-1255	2017-07-11 10:29	2003-12-31	Show	GitHub Exploit DB Packet Storm

346693	-	nullsoft	winamp	Multiple buffer overflows in Winamp 3.0 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a .b4s file containing (1) a long playlist name or (2) a lo…	NVD-CWE-Other	CVE-2003-1272	2017-07-11 10:29	2003-12-31	Show	GitHub Exploit DB Packet Storm

346694	-	nullsoft	winamp	Winamp 3.0 allows remote attackers to cause a denial of service (crash) via a .b4s file with a playlist name that contains some non-English characters, e.g. Cyrillic characters.	NVD-CWE-Other	CVE-2003-1273	2017-07-11 10:29	2003-12-31	Show	GitHub Exploit DB Packet Storm

346695	-	nullsoft	winamp	Winamp 3.0 allows remote attackers to cause a denial of service (crash) via .b4s file with a file: argument to the Playstring parameter that contains MS-DOS device names such as aux.	NVD-CWE-Other	CVE-2003-1274	2017-07-11 10:29	2003-12-31	Show	GitHub Exploit DB Packet Storm

346696	-	-	-	Sambar Server before 6.0 beta 6 allows remote attackers to obtain sensitive information via direct requests to the default scripts (1) environ.pl and (2) testcgi.exe.	NVD-CWE-Other	CVE-2003-1284	2017-07-11 10:29	2003-12-31	Show	GitHub Exploit DB Packet Storm

346697	-	sambar	sambar_server	Multiple cross-site scripting (XSS) vulnerabilities in Sambar Server before 6.0 beta 6 allow remote attackers to inject arbitrary web script or HTML via the query string to (1) isapi/testisa.dll, (2)…	NVD-CWE-Other	CVE-2003-1285	2017-07-11 10:29	2003-12-31	Show	GitHub Exploit DB Packet Storm

346698	-	sambar	sambar_server	HTTP Proxy in Sambar Server before 6.0 beta 6, when security.ini lacks a 127.0.0.1 proxydeny entry, allows remote attackers to send proxy HTTP requests to the Sambar Server's administrative interface…	NVD-CWE-Other	CVE-2003-1286	2017-07-11 10:29	2003-12-31	Show	GitHub Exploit DB Packet Storm

346699	-	sambar	sambar_server	Sambar Server before 6.0 beta 3 allows attackers with physical access to execute arbitrary code via a request with an MS-DOS device name such as com1.pl, con.pl, or aux.pl, which causes Perl to read …	NVD-CWE-Other	CVE-2003-1287	2017-07-11 10:29	2003-12-31	Show	GitHub Exploit DB Packet Storm

346700	-	microsoft	windows_nt	The default setting for the Winlogon key entry ShutdownWithoutLogon in Windows NT allows users with physical access to shut down a Windows NT system without logging in.	NVD-CWE-Other	CVE-1999-0593	2017-07-11 10:29	1999-01-1	Show	GitHub Exploit DB Packet Storm