Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 4, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
204051	6.1	警告 Network	Accela, Inc.	-	Accela Civic Platform Citizen Access portal の AttachmentsList.aspx におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-5660	2016-07-20 17:24	2016-07-13	Show	GitHub Exploit DB Packet Storm

204052	9.8	緊急 Network	Debian レッドハット	-	libvirt における認証を回避される脆弱性	CWE-Other その他	CVE-2016-5008	2016-07-20 16:52	2016-06-30	Show	GitHub Exploit DB Packet Storm

204053	4.9	警告 Network	フォーティネット	-	Fortinet FortiWeb におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2016-5092	2016-07-20 15:56	2016-05-26	Show	GitHub Exploit DB Packet Storm

204054	8.8	重要 Network	フォーティネット	-	Fortinet FortiWeb におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2016-4066	2016-07-20 15:56	2016-06-23	Show	GitHub Exploit DB Packet Storm

204055	4.3	警告 Physics	シトリックス・システムズ	-	Citrix Worx Home for iOS および XenMobile MDX Toolkit for iOS におけるアプリケーション内の Apple Touch ID 認証を回避される脆弱性	CWE-Other その他	CVE-2016-5109	2016-07-20 15:50	2016-06-22	Show	GitHub Exploit DB Packet Storm

204056	8.4	重要 Local	KDE project openSUSE project	-	KDE Frameworks の kinit における他のユーザの X11 Cookie を取得される脆弱性	CWE-200 情報漏えい	CVE-2016-3100	2016-07-20 15:42	2016-06-21	Show	GitHub Exploit DB Packet Storm

204057	8.1	重要 Network	ブルーコートシステムズ	-	Blue Coat PacketShaper S-Series の HTTPS サーバにおける重要な認証情報およびその他の情報を取得される脆弱性	CWE-310 暗号の問題	CVE-2016-5774	2016-07-20 15:34	2016-06-24	Show	GitHub Exploit DB Packet Storm

204058	6.5	警告 Network	レッドハット	-	Ceph の mon/Monitor.cc の handle_command 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2016-5009	2016-07-20 15:24	2016-07-5	Show	GitHub Exploit DB Packet Storm

204059	5.5	警告 Local	SUSE Fedora Project GraphicsMagick	-	GraphicsMagick の coders/gif.c の DecodeImage 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2015-8808	2016-07-20 14:52	2015-02-2	Show	GitHub Exploit DB Packet Storm

204060	5.4	警告 Network	Huawei	-	Huawei Public Cloud Solution のボリュームバックアップサービスモジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-5850	2016-07-20 14:48	2016-06-29	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
347651	-	glen_campbell	siteframe	PHP remote file inclusion vulnerability in siteframe.php for Broadpool Siteframe allows remote attackers to execute arbitrary code via a URL in the LOCAL_PATH parameter.	CWE-94 Code Injection	CVE-2005-1965	2017-07-11 10:32	2005-06-16	Show	GitHub Exploit DB Packet Storm

347652	-	finjan_software	surfingate	Finjan SurfinGate 7.0SP2 and SP3 allows remote attackers to download blocked files via hex-encoded characters in a filename, as demonstrated using "%2e".	NVD-CWE-Other	CVE-2005-1994	2017-07-11 10:32	2005-06-14	Show	GitHub Exploit DB Packet Storm

347653	-	bitrix	bitrix_site_manager	Bitrix Site Manager 4.0.x allows remote attackers to obtain sensitive information via direct request to (1) subscr_form.php or (2) dbquery_error.php, which reveals the path in an error message.	NVD-CWE-Other	CVE-2005-1995	2017-07-11 10:32	2005-06-15	Show	GitHub Exploit DB Packet Storm

347654	-	bitrix	bitrix_site_manager	PHP remote file inclusion vulnerability in start.php in Bitrix Site Manager 4.0.x allows remote attackers to execute arbitrary PHP code via the _SERVER[DOCUMENT_ROOT] parameter.	CWE-94 Code Injection	CVE-2005-1996	2017-07-11 10:32	2005-06-15	Show	GitHub Exploit DB Packet Storm

347655	-	hauri	virobot_linux_server	Buffer overflow in addschup in HAURI ViRobot 2.0, and possibly other products, allows remote attackers to execute arbitrary code via a long ViRobot_ID cookie (HTTP_COOKIE).	NVD-CWE-Other	CVE-2005-2041	2017-07-11 10:32	2005-06-15	Show	GitHub Exploit DB Packet Storm

347656	-	tor	tor	Unknown vulnerability in Tor before 0.1.0.10 allows remote attackers to read arbitrary memory and possibly key information from the exit server's process space.	NVD-CWE-Other	CVE-2005-2050	2017-07-11 10:32	2005-06-28	Show	GitHub Exploit DB Packet Storm

347657	-	digium	asterisk	Stack-based buffer overflow in the function that parses commands in Asterisk 1.0.7, when the 'write = command' option is enabled, allows remote attackers to execute arbitrary code via a command that …	NVD-CWE-Other	CVE-2005-2081	2017-07-11 10:32	2005-07-5	Show	GitHub Exploit DB Packet Storm

347658	-	truenorth_software	ia_emailserver	Format string vulnerability in IMAP4 in IA eMailServer Corporate Edition 5.2.2 build 1051 allows remote attackers to cause a denial of service (application crash) via a LIST command with format strin…	NVD-CWE-Other	CVE-2005-2083	2017-07-11 10:32	2005-07-5	Show	GitHub Exploit DB Packet Storm

347659	-	ibm	websphere_application_server	IBM WebSphere 5.1 and WebSphere 5.0 allows remote attackers to poison the web cache, bypass web application firewall protection, and conduct XSS attacks via an HTTP request with both a "Transfer-Enco…	NVD-CWE-Other	CVE-2005-2091	2017-07-11 10:32	2005-07-5	Show	GitHub Exploit DB Packet Storm

347660	-	bea	weblogic_server	BEA Systems WebLogic 8.1 SP1 allows remote attackers to poison the web cache, bypass web application firewall protection, and conduct XSS attacks via an HTTP request with both a "Transfer-Encoding: c…	NVD-CWE-Other	CVE-2005-2092	2017-07-11 10:32	2005-07-5	Show	GitHub Exploit DB Packet Storm