Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 20, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
203841	7.5	重要 Network	Linux	-	Linux Kernel の net/llc/af_llc.c の llc_cmsg_rcv 関数における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2016-4485	2016-05-26 15:22	2016-05-18	Show	GitHub Exploit DB Packet Storm

203842	6.1	警告 Network	株式会社シロハチ	-	株式会社シロハチ製の複数の EC-CUBE 用フリーエリア追加プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-1205	2016-05-25 17:48	2016-04-26	Show	GitHub Exploit DB Packet Storm

203843	6.1	警告 Network	John Dyer WordPress.org	-	WordPress で使用される MediaElement.js の flash/FlashMediaElement.as におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-4567	2016-05-25 16:57	2016-05-5	Show	GitHub Exploit DB Packet Storm

203844	6.1	警告 Network	WordPress.org Moxiecode Systems	-	WordPress で使用される Plupload の plupload.flash.swf におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-4566	2016-05-25 16:57	2016-05-15	Show	GitHub Exploit DB Packet Storm

203845	8.6	重要 Network	WordPress.org	-	WordPress の wp-includes/http.php の wp_http_validate_url 関数におけるサーバサイドのリクエストフォージェリ攻撃を実行される脆弱性	CWE-Other その他	CVE-2016-2222	2016-05-25 16:57	2016-02-2	Show	GitHub Exploit DB Packet Storm

203846	7.4	重要 Network	WordPress.org	-	WordPress の wp-includes/pluggable.php の wp_validate_redirect 関数におけるオープンリダイレクトの脆弱性	CWE-Other その他	CVE-2016-2221	2016-05-25 16:57	2016-02-2	Show	GitHub Exploit DB Packet Storm

203847	6.1	警告 Network	WordPress.org	-	WordPress の wp-includes/class-wp-theme.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-1564	2016-05-25 16:57	2016-01-6	Show	GitHub Exploit DB Packet Storm

203848	6.1	警告 Network	WordPress.org	-	WordPress の wp-includes/wp-db.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2015-8834	2016-05-25 16:57	2015-05-6	Show	GitHub Exploit DB Packet Storm

203849	5.4	警告 Network	WordPress.org	-	WordPress のユーザリストのテーブルにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2015-7989	2016-05-25 16:57	2015-09-15	Show	GitHub Exploit DB Packet Storm

203850	4.3	警告 Network	WordPress.org	-	WordPress の XMLRPC サブシステムの wp-includes/class-wp-xmlrpc-server.php の mw_editPost 関数におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2015-5715	2016-05-25 16:57	2015-09-15	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 20, 2026, 4:14 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
348541	-	hyper_estraier	hyper_estraier	This vulnerability is addressed in the following product release: Hyper Estraier, Hyper Estraier, 1.3.3	NVD-CWE-Other	CVE-2006-3671	2011-03-8 11:39	2006-07-19	Show	GitHub Exploit DB Packet Storm

348542	-	hp	openvms	Unspecified vulnerability in [SYSEXE]SMPUTIL.EXE in HP OpenVMS 7.3-2 allows local users and "remote users" to cause a denial of service (crash).	NVD-CWE-Other	CVE-2006-3686	2011-03-8 11:39	2006-07-21	Show	GitHub Exploit DB Packet Storm

348543	-	citrix	metaframe metaframe_presentation_server presentation_server	Citrix MetaFrame up to XP 1.0 Feature 1, except when running on Windows Server 2003, installs a registry key with an insecure ACL, which allows remote authenticated users to gain privileges.	NVD-CWE-Other	CVE-2006-3779	2011-03-8 11:39	2006-07-24	Show	GitHub Exploit DB Packet Storm

348544	-	krusader	krusader	Krusader 1.50-beta1 up to 1.70.0 stores passwords for remote connections in cleartext in the bookmark file (krbookmarks.xml), which allows attackers to steal passwords by obtaining the file.	NVD-CWE-Other	CVE-2006-3816	2011-03-8 11:39	2006-07-25	Show	GitHub Exploit DB Packet Storm

348545	-	geodesicsolutions	geoauctions_enterprise	SQL injection vulnerability in index.php in GeodesicSolutions GeoAuctions Enterprise 1.0.6 allows remote attackers to execute arbitrary SQL commands via the d parameter.	NVD-CWE-Other	CVE-2006-3822	2011-03-8 11:39	2006-07-25	Show	GitHub Exploit DB Packet Storm

348546	-	geodesicsolutions	geoauctions_enterprise	Successful exploitation requires that the 'accumulative feedback' feature is turned on.	NVD-CWE-Other	CVE-2006-3822	2011-03-8 11:39	2006-07-25	Show	GitHub Exploit DB Packet Storm

348547	-	phpfaber	topsites	Cross-site scripting (XSS) vulnerability in index.php in phpFaber TopSites 2.0.9 allows remote attackers to inject arbitrary web script or HTML via the i_cat parameter. NOTE: the provenance of this …	NVD-CWE-Other	CVE-2006-3902	2011-03-8 11:39	2006-07-28	Show	GitHub Exploit DB Packet Storm

348548	-	intel	2200bg_proset_wireless 2915abg_proset_wireless	Unspecified vulnerability in the Centrino (1) w22n50.sys, (2) w22n51.sys, (3) w29n50.sys, and (4) w29n51.sys Microsoft Windows drivers for Intel 2200BG and 2915ABG PRO/Wireless Network Connection bef…	NVD-CWE-Other	CVE-2006-3992	2011-03-8 11:39	2006-08-5	Show	GitHub Exploit DB Packet Storm

348549	-	intel	2200bg_proset_wireless 2915abg_proset_wireless	Affected versions are only vulnerable with driver version 9.0.4.16 This vulnerability is addressed in the following product releases: Intel, 2200BG PROSet/Wireless, 10.5 Intel, 2915ABG PROSet/Wire…	NVD-CWE-Other	CVE-2006-3992	2011-03-8 11:39	2006-08-5	Show	GitHub Exploit DB Packet Storm

348550	-	ibm	websphere_application_server	Unspecified vulnerability in IBM WebSphere Application Server before 6.0.2.11 has unknown impact and attack vectors because the "UserNameToken cache was improperly used."	NVD-CWE-noinfo	CVE-2006-3232	2011-03-8 11:38	2006-06-27	Show	GitHub Exploit DB Packet Storm