Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
203621 6.1 警告
Network
IBM - IBM iNotes におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2016-2938 2017-02-13 11:53 2016-11-2 Show GitHub Exploit DB Packet Storm
203622 3.7
Network
IBM - IBM BigFix Platform における重要な情報を取得される脆弱性 CWE-200
情報漏えい
CVE-2016-0297 2017-02-13 11:53 2016-11-7 Show GitHub Exploit DB Packet Storm
203623 3.3
Local
IBM - IBM BigFix Platform におけるログファイルに重要な情報を格納される脆弱性 CWE-532
ログファイルからの情報漏えい
CVE-2016-0296 2017-02-13 11:53 2016-11-7 Show GitHub Exploit DB Packet Storm
203624 5.4 警告
Network
IBM - IBM Campaign におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2016-0265 2017-02-13 11:52 2016-10-18 Show GitHub Exploit DB Packet Storm
203625 6.1 警告
Network
Atlassian - Atlassian JIRA の includes/decorators/global-translations.jsp におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2016-6285 2017-02-10 17:34 2016-09-27 Show GitHub Exploit DB Packet Storm
203626 5.5 警告
Local
libdwarf project - libdwarf の get_abbrev_array_info 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-787
境界外書き込み
CVE-2016-2050 2017-02-10 16:39 2016-01-19 Show GitHub Exploit DB Packet Storm
203627 9.8 緊急
Network
シスコシステムズ - Cisco TelePresence MCU ソフトウェアのカーネルのプロプライエタリデバイスドライバにおける任意のコードを実行される脆弱性 CWE-20
不適切な入力確認
CVE-2017-3792 2017-02-10 15:18 2017-01-25 Show GitHub Exploit DB Packet Storm
203628 10 緊急
Network
シスコシステムズ - Cisco Prime Home の Web ベースの GUI における認証を回避される脆弱性 CWE-287
不適切な認証
CVE-2017-3791 2017-02-10 15:18 2017-02-1 Show GitHub Exploit DB Packet Storm
203629 5.4 警告
Network
Apache Software Foundation - Guacamole のファイルブラウザにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2016-1566 2017-02-10 14:42 2016-02-1 Show GitHub Exploit DB Packet Storm
203630 7.8 重要
Local
シマンテック - Norton Download Manager における任意の DLL 読み込みに関する脆弱性 CWE-Other
その他
CVE-2016-6592 2017-02-10 14:02 2017-02-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
346151 - wtools wtools PHP remote file inclusion vulnerability in common.php in Thomas LETE WTools 0.0.1-ALPH allows remote attackers to execute arbitrary PHP code via a URL in the include_path parameter. NVD-CWE-Other
CVE-2006-4764 2018-10-18 06:39 2006-09-14 Show GitHub Exploit DB Packet Storm
346152 - netgear dg834gt NETGEAR DG834GT Wireless ADSL router running firmware 1.01.28 allows attackers to cause a denial of service (device hang) via a long string in the username field in the login window. NVD-CWE-Other
CVE-2006-4765 2018-10-18 06:39 2006-09-14 Show GitHub Exploit DB Packet Storm
346153 - stefan_ernst newsscript Directory traversal vulnerability in print.php in Stefan Ernst Newsscript (aka WM-News) 0.5 beta allows remote attackers to read arbitrary files via a .. (dot dot) in the ide parameter. NVD-CWE-Other
CVE-2006-4766 2018-10-18 06:39 2006-09-14 Show GitHub Exploit DB Packet Storm
346154 - jbc forumjbc Cross-site scripting (XSS) vulnerability in haut.php in ForumJBC 4 allows remote attackers to inject arbitrary web script or HTML via the nb_connecte parameter. NVD-CWE-Other
CVE-2006-4771 2018-10-18 06:39 2006-09-14 Show GitHub Exploit DB Packet Storm
346155 - hotplug_cms hotplug_cms HotPlug CMS stores sensitive information under the web root with insufficient access control, which allows remote attackers to read the admin password and database credentials via a direct request fo… NVD-CWE-Other
CVE-2006-4772 2018-10-18 06:39 2006-09-14 Show GitHub Exploit DB Packet Storm
346156 - cisco ios The VLAN Trunking Protocol (VTP) feature in Cisco IOS 12.1(19) allows remote attackers to cause a denial of service by sending a VTP version 1 summary frame with a VTP version field value of 2. CWE-399
 Resource Management Errors
CVE-2006-4774 2018-10-18 06:39 2006-09-14 Show GitHub Exploit DB Packet Storm
346157 - cisco ios
catos
The VLAN Trunking Protocol (VTP) feature in Cisco IOS 12.1(19) and CatOS allows remote attackers to cause a denial of service by sending a VTP update with a revision value of 0x7FFFFFFF, which is inc… CWE-399
 Resource Management Errors
CVE-2006-4775 2018-10-18 06:39 2006-09-14 Show GitHub Exploit DB Packet Storm
346158 - cisco ios Heap-based buffer overflow in the VLAN Trunking Protocol (VTP) feature in Cisco IOS 12.1(19) allows remote attackers to execute arbitrary code via a long VLAN name in a VTP type 2 summary advertiseme… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2006-4776 2018-10-18 06:39 2006-09-14 Show GitHub Exploit DB Packet Storm
346159 - microsoft ie Heap-based buffer overflow in the DirectAnimation Path Control (DirectAnimation.PathControl) COM object (daxctle.ocx) for Internet Explorer 6.0 SP1, on Chinese and possibly other Windows distribution… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2006-4777 2018-10-18 06:39 2006-09-14 Show GitHub Exploit DB Packet Storm
346160 - phpbbxs phpbb_xs PHP remote file inclusion vulnerability in includes/functions.php in phpBB XS 0.58 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the phpbb_root_path parameter. NVD-CWE-Other
CVE-2006-4780 2018-10-18 06:39 2006-09-14 Show GitHub Exploit DB Packet Storm