Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 18, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
203581	6.5	警告 Local	Xen プロジェクトレッドハット	-	libvirt および Xen の qemu の実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2014-3672	2016-05-27 16:58	2014-05-14	Show	GitHub Exploit DB Packet Storm

203582	6.1	警告 Network	Lenovo	-	Android 上で稼動する Lenovo SHAREit におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-4783	2016-05-27 16:41	2016-05-19	Show	GitHub Exploit DB Packet Storm

203583	8.8	重要 Network	Lenovo	-	Android 上で稼動する Lenovo SHAREit における脆弱性	CWE-20 不適切な入力確認	CVE-2016-4782	2016-05-27 16:41	2016-05-19	Show	GitHub Exploit DB Packet Storm

203584	7.5	重要 Network	Quagga openSUSE project	-	Quagga の bgpd/bgp_dump.c の bgp_dump_routes_func 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2016-4049	2016-05-27 16:06	2016-01-25	Show	GitHub Exploit DB Packet Storm

203585	7.5	重要 Network	openSUSE project Fedora Project The Go Project	-	Go の crypto/dsa/dsa.go の Verify 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2016-3959	2016-05-27 15:54	2016-04-6	Show	GitHub Exploit DB Packet Storm

203586	7.8	重要 Local	The Go Project	-	Windows 上で稼動する Go における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2016-3958	2016-05-27 15:54	2016-04-2	Show	GitHub Exploit DB Packet Storm

203587	7.4	重要 Network	トレンドマイクロ	-	Apple iOS 用 Trend Micro Mobile Security におけるモバイルアプリケーションのログインサーバになりすまされる脆弱性	CWE-200 情報漏えい	CVE-2016-3664	2016-05-27 15:03	2016-04-22	Show	GitHub Exploit DB Packet Storm

203588	6.3	警告 Network	エヌ・ティ・ティ・ブロードバンドプラットフォーム株式会社	-	Japan Connected-free Wi-Fi におけるアクセス制限不備の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2015-5629	2016-05-27 12:12	2015-09-11	Show	GitHub Exploit DB Packet Storm

203589	7.5	重要 Adjacent	Huawei	-	複数の Huawei デバイス製品のソフトウェアの Smart DNS 機能におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2016-4577	2016-05-27 11:23	2016-05-11	Show	GitHub Exploit DB Packet Storm

203590	9.8	緊急 Network	Huawei	-	複数の Huawei デバイス製品のソフトウェアの Application Specific Packet Filtering 機能におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2016-4576	2016-05-27 11:23	2016-05-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
348031	-	-	-	Unspecified vulnerability in PeopleTools in Oracle PeopleSoft Enterprise 8.42 up to 8.45.17 has unknown impact and attack vectors, as identified by Oracle Vuln# PSE01.	NVD-CWE-Other	CVE-2005-3461	2016-04-30 10:59	2005-11-2	Show	GitHub Exploit DB Packet Storm

348032	-	geodesicsolutions	geoauctions_premier geoclassifieds_basic	SQL injection vulnerability in index.php in GeodesicSolutions (1) GeoAuctions Premier 2.0.3 and (2) GeoClassifieds Basic 2.0.3 allows remote attackers to execute arbitrary SQL commands via the b para…	CWE-89 SQL Injection	CVE-2006-3823	2015-09-2 01:59	2006-07-25	Show	GitHub Exploit DB Packet Storm

348033	-	geodesicsolutions	geoauctions_premier geoclassifieds_basic	Successful exploitation requires that the 'accumulative feedback' feature is turned on.	CWE-89 SQL Injection	CVE-2006-3823	2015-09-2 01:59	2006-07-25	Show	GitHub Exploit DB Packet Storm

348034	-	roundcube	webmail	Roundcube 0.3.1 and earlier does not request that the web browser avoid DNS prefetching of domain names contained in e-mail messages, which makes it easier for remote attackers to determine the netwo…	CWE-200 Information Exposure	CVE-2010-0464	2015-08-25 01:43	2010-01-30	Show	GitHub Exploit DB Packet Storm

348035	-	ez	ez_publish	eZ publish 3.5 before 3.5.7, 3.6 before 3.6.5, 3.7 before 3.7.3, and 3.8 before 20051128 allows remote authenticated users to cause a denial of service (Apache httpd segmentation fault) via a request…	CWE-399 Resource Management Errors	CVE-2005-4857	2015-07-29 00:04	2005-12-31	Show	GitHub Exploit DB Packet Storm

348036	-	ez	ez_publish	The admin interface in eZ publish 3.5 before 3.5.7, 3.6 before 3.6.5, 3.7 before 3.7.3, and 3.8 before 20051110 does not properly handle authorization errors, which allows remote attackers to obtain …	CWE-19 Data Processing Errors	CVE-2005-4856	2015-07-29 00:03	2005-12-31	Show	GitHub Exploit DB Packet Storm

348037	-	ez	ez_publish	eZ publish 3.5 through 3.7 before 20050830 does not use a folder's read permissions to restrict notifications, which allows remote authenticated users to obtain sensitive information about changes to…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2005-4854	2015-07-28 23:55	2005-12-31	Show	GitHub Exploit DB Packet Storm

348038	-	ez	ez_publish	The default configuration of the forum package in eZ publish 3.5 before 3.5.5, 3.6 before 3.6.2, 3.7 before 3.7.0rc2, and 3.8 before 20050818 does not restrict edit permissions to a posting's owner, …	CWE-264 Permissions, Privileges, and Access Controls	CVE-2005-4853	2015-07-28 23:41	2005-12-31	Show	GitHub Exploit DB Packet Storm

348039	-	ez	ez_publish	Vendor has fixed this vulnerability in an upgrade starting at 3.5.5: http://ez.no/download/ez_publish	CWE-264 Permissions, Privileges, and Access Controls	CVE-2005-4853	2015-07-28 23:41	2005-12-31	Show	GitHub Exploit DB Packet Storm

348040	-	mp3info	mp3info	Buffer overflow in MP3Info 0.8.4 allows attackers to execute arbitrary code via a long command line argument. NOTE: if mp3info is not installed setuid or setgid in any reasonable context, then this …	NVD-CWE-Other	CVE-2006-2465	2014-05-31 11:22	2006-05-19	Show	GitHub Exploit DB Packet Storm