Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 21, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
202761	4.8	警告 Network	Apache Software Foundation	-	Apache Archiva におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-5005	2016-08-1 17:45	2016-07-11	Show	GitHub Exploit DB Packet Storm

202762	8.8	重要 Network	Apache Software Foundation	-	Apache Archiva におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2016-4469	2016-08-1 17:45	2016-07-11	Show	GitHub Exploit DB Packet Storm

202763	6.5	警告 Adjacent	シスコシステムズ	-	Cisco Videoscape Session Resource Manager におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2016-1467	2016-08-1 16:55	2016-07-27	Show	GitHub Exploit DB Packet Storm

202764	6.5	警告 Adjacent	シスコシステムズ	-	Cisco Nexus 1000v Application Virtual Switch デバイスにおけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2016-1465	2016-08-1 16:55	2016-07-27	Show	GitHub Exploit DB Packet Storm

202765	7.5	重要 Network	シスコシステムズ	-	Cisco FireSIGHT システムソフトウェアにおける Snort ルールを回避される脆弱性	CWE-20 不適切な入力確認	CVE-2016-1463	2016-08-1 16:55	2016-07-27	Show	GitHub Exploit DB Packet Storm

202766	6.1	警告 Network	シスコシステムズ	-	Cisco Prime Service Catalog の Web ベースの管理インターフェースにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-1462	2016-08-1 16:55	2016-07-27	Show	GitHub Exploit DB Packet Storm

202767	6.5	警告 Adjacent	シスコシステムズ	-	Cisco Wireless LAN Controller デバイスにおけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2016-1460	2016-08-1 16:55	2016-07-27	Show	GitHub Exploit DB Packet Storm

202768	8.8	重要 Network	シスコシステムズ	-	Cisco Unified Computing System Performance Manager の Web フレームワークにおける任意のコマンドを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2016-1374	2016-08-1 16:55	2016-07-20	Show	GitHub Exploit DB Packet Storm

202769	6.2	警告 Local	Debian openSUSE project cronic project	-	cronic における任意のファイルに書き込まれる脆弱性	CWE-Other その他	CVE-2016-3992	2016-08-1 16:28	2016-04-11	Show	GitHub Exploit DB Packet Storm

202770	7.5	重要 Network	シーメンス	-	Siemens SIMATIC WinCC における任意の WinCC ステーションファイルを読まれる脆弱性	CWE-200 情報漏えい	CVE-2016-5744	2016-08-1 16:10	2016-07-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 21, 2026, 4:10 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
346791	-	viewcvs	viewcvs	Cross-site scripting vulnerability in viewcvs.cgi for ViewCVS 0.9.2 allows remote attackers to inject script and steal cookies via the (1) cvsroot or (2) sortby parameters.	NVD-CWE-Other	CVE-2002-0771	2016-11-19 11:59	2002-08-12	Show	GitHub Exploit DB Packet Storm

346792	-	microsoft	internet_explorer	The Microsoft Active Movie ActiveX Control in Internet Explorer 5 does not restrict which file types can be downloaded, which allows an attacker to download any type of file to a user's system by enc…	CWE-20 Improper Input Validation	CVE-2000-0400	2016-11-8 03:25	2000-05-13	Show	GitHub Exploit DB Packet Storm

346793	-	siteatschool	siteatschool	PHP remote file inclusion vulnerability in Site@School (S@S) 2.4.03 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the cmsdir parameter to starnet/modules/include/incl…	NVD-CWE-Other	CVE-2006-4921	2016-10-18 12:41	2006-09-21	Show	GitHub Exploit DB Packet Storm

346794	-	hotplug_cms	hotplug_cms	SQL injection vulnerability in administration/includes/login/auth.php in HotPlug CMS 1.0 allows remote attackers to execute arbitrary SQL commands and bypass authentication via the (1) username and (…	NVD-CWE-Other	CVE-2006-3190	2016-10-18 12:40	2006-06-23	Show	GitHub Exploit DB Packet Storm

346795	-	banex	banex	Multiple SQL injection vulnerabilities in Banex PHP MySQL Banner Exchange 2.21 allow remote attackers to execute arbitrary SQL commands via the (1) site_name parameter to (a) signup.php, and the (2) …	NVD-CWE-Other	CVE-2006-3963	2016-10-18 12:40	2006-08-2	Show	GitHub Exploit DB Packet Storm

346796	-	banex	banex	PHP remote file inclusion vulnerability in members.php in Banex PHP MySQL Banner Exchange 2.21 allows remote attackers to execute arbitrary PHP code via a URL in the cfg_root parameter.	NVD-CWE-Other	CVE-2006-3964	2016-10-18 12:40	2006-08-2	Show	GitHub Exploit DB Packet Storm

346797	-	banex	banex	Banex PHP MySQL Banner Exchange 2.21 stores lib.inc under the web document root with insufficient access control, which allows remote attackers to obtain sensitive information such as database userna…	NVD-CWE-Other	CVE-2006-3965	2016-10-18 12:40	2006-08-2	Show	GitHub Exploit DB Packet Storm

346798	-	linux	linux_kernel	The __group_complete_signal function in the RCU signal handling (signal.c) in Linux kernel 2.6.16, and possibly other versions, has unknown impact and attack vectors related to improper use of BUG_ON.	NVD-CWE-Other	CVE-2006-1523	2016-10-18 12:39	2006-04-13	Show	GitHub Exploit DB Packet Storm

346799	-	alt-n	mdaemon	Buffer overflow in Alt-N MDaemon, possibly 9.0.1 and earlier, allows remote attackers to execute arbitrary code via a long A0001 argument that begins with a '"' (double quote).	NVD-CWE-Other	CVE-2006-2646	2016-10-18 12:39	2006-05-30	Show	GitHub Exploit DB Packet Storm

346800	-	open-xchange	open-xchange	Cross-site scripting (XSS) vulnerability in webmail in Open-Xchange 0.8.1-6 and earlier, with "Inline HTML" enabled, allows remote attackers to inject arbitrary web script or HTML via e-mail attachme…	NVD-CWE-Other	CVE-2006-0091	2016-10-18 12:38	2006-01-5	Show	GitHub Exploit DB Packet Storm