Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 20, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
203771	7.5	危険	アップル PNG Development Group 日立オラクル	-	libpng の png_set_PLTE および png_get_PLTE 関数におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2015-8126	2016-05-31 12:02	2015-11-12	Show	GitHub Exploit DB Packet Storm

203772	7.5	重要 Network	Debian Canonical オラクル rpcbind project	-	rpcbind の rpcb_svc_com.c の xprt_set_caller におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2015-7236	2016-05-31 11:52	2015-09-23	Show	GitHub Exploit DB Packet Storm

203773	6.5	警告 Network	kernel.org オラクル	-	Linux-PAM の pam_unix モジュールの _unix_run_helper_binary 関数におけるユーザ名を列挙される脆弱性	CWE-200 情報漏えい	CVE-2015-3238	2016-05-31 11:52	2015-06-15	Show	GitHub Exploit DB Packet Storm

203774	7.5	重要 Network	Apache Software Foundation オラクル	-	Apache ActiveMQ の broker/TransportConnection.java の processControlCommand 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-3576	2016-05-31 11:50	2014-08-14	Show	GitHub Exploit DB Packet Storm

203775	7.5	重要 Network	インテルオラクル	-	IPMI の仕様におけるパスワードハッシュを取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2013-4786	2016-05-31 11:49	2013-07-8	Show	GitHub Exploit DB Packet Storm

203776	5.3	警告 Network	Mort Bay Consulting オラクル	-	Jetty におけるサービス運用妨害 (CPU 資源の消費) の脆弱性	CWE-310 暗号の問題	CVE-2011-4461	2016-05-31 11:48	2011-12-30	Show	GitHub Exploit DB Packet Storm

203777	4.3	警告	OpenSSL Project オラクル	-	OpenSSL の ssl/s3_clnt.c におけるサービス運用妨害 (DoS) の脆弱性	CWE-362 競合状態	CVE-2015-3196	2016-05-31 11:02	2015-12-3	Show	GitHub Exploit DB Packet Storm

203778	5	警告	OpenSSL Project オラクル	-	OpenSSL の ssl/s3_clnt.c の ssl3_get_key_exchange 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-189 数値処理の問題	CVE-2015-1794	2016-05-31 11:02	2015-12-3	Show	GitHub Exploit DB Packet Storm

203779	9.8	緊急 Network	SolarWinds	-	DameWare Mini Remote Control にスタックバッファオーバーフローの脆弱性	CWE-119 CWE-Other	CVE-2016-2345	2016-05-30 16:43	2016-03-17	Show	GitHub Exploit DB Packet Storm

203780	6.5	警告 Network	シスコシステムズ	-	Cisco Adaptive Security Appliance ソフトウェアの XML パーサにおけるサービス運用妨害 (DoS) の脆弱性	CWE-119 CWE-399	CVE-2016-1385	2016-05-30 16:11	2016-05-17	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 20, 2026, 4:14 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
351141	-	emefa	emefa_guestbook	Cross-site scripting (XSS) vulnerability in sign.asp in Emefa Guestbook 1.2 allows remote attackers to inject arbitrary web script or HTML via the (1) name, (2) location, and (3) email parameters.	NVD-CWE-Other	CVE-2005-2650	2008-09-6 05:52	2005-08-23	Show	GitHub Exploit DB Packet Storm

351142	-	maildrop	maildrop	lockmail in maildrop before 1.5.3 does not drop privileges before executing commands, which allows local users to gain privileges via command line arguments.	NVD-CWE-Other	CVE-2005-2655	2008-09-6 05:52	2005-08-31	Show	GitHub Exploit DB Packet Storm

351143	-	polygen	polygen	Polygen before 1.0.6 generates precompiled grammar objects with world-writable permissions, which allows local users to cause a denial of service (disk consumption) and possibly perform other unautho…	NVD-CWE-Other	CVE-2005-2656	2008-09-6 05:52	2005-09-7	Show	GitHub Exploit DB Packet Storm

351144	-	softwolves_software	turquoise_superstat	Buffer overflow in utility.cpp in Turquoise SuperStat (turqstat) 2.2.4 and earlier might allow remote NNTP servers to execute arbitrary code via a date with a long month.	NVD-CWE-Other	CVE-2005-2658	2008-09-6 05:52	2005-09-16	Show	GitHub Exploit DB Packet Storm

351145	-	apachetop	apachetop	apachetop 0.12.5 and earlier, when running in debug mode, allows local users to create or append to arbitrary files via a symlink attack on atop.debug.	NVD-CWE-Other	CVE-2005-2660	2008-09-6 05:52	2005-10-1	Show	GitHub Exploit DB Packet Storm

351146	-	hauri	livecall virobot_advanced_server virobot_expert virobot_linux_server	Directory traversal vulnerability in HAURI Anti-Virus products including ViRobot Expert 4.0, Advanced Server, Linux Server 2.0, and LiveCall allows remote attackers to overwrite arbitrary files via "…	NVD-CWE-Other	CVE-2005-2670	2008-09-6 05:52	2005-08-23	Show	GitHub Exploit DB Packet Storm

351147	-	woltlab	burning_board	SQL injection vulnerability in modcp.php in WoltLab Burning Board 2.2.2 and 2.3.3 allows remote authenticated attackers to execute arbitrary SQL commands via the (1) x or (2) y parameters.	NVD-CWE-Other	CVE-2005-2673	2008-09-6 05:52	2005-08-23	Show	GitHub Exploit DB Packet Storm

351148	-	coppermine	coppermine_photo_gallery	Cross-site scripting (XSS) vulnerability in displayimage.php in Coppermine Photo Gallery before 1.3.4 allows remote attackers to inject arbitrary web script or HTML via EXIF data.	NVD-CWE-Other	CVE-2005-2676	2008-09-6 05:52	2005-08-23	Show	GitHub Exploit DB Packet Storm

351149	-	acnews	acnews	ACNews stores the database in a file under the web document root with a db.inc extension and insufficient access control, which allows remote attackers to obtain sensitive information such as the ful…	NVD-CWE-Other	CVE-2005-2677	2008-09-6 05:52	2005-08-23	Show	GitHub Exploit DB Packet Storm

351150	-	sysinternals	process_explorer	Buffer overflow in Sysinternals Process Explorer 9.23, and other versions before 9.25, allows local users to execute arbitrary code via a long CompanyName field in the VersionInfo information in a ru…	NVD-CWE-Other	CVE-2005-2679	2008-09-6 05:52	2005-08-23	Show	GitHub Exploit DB Packet Storm