Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 19, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
204361 6.1 警告
Network 		Benjamin Sterling - WordPress 用 photoxhibit プラグインにおける反射型クロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-1000144 2016-10-19 16:54 2016-02-9 Show GitHub Exploit DB Packet Storm
204362 6.1 警告
Network 		Benjamin Sterling - WordPress 用 photoxhibit プラグインにおける反射型クロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-1000143 2016-10-19 16:54 2016-02-9 Show GitHub Exploit DB Packet Storm
204363 6.1 警告
Network 		parsi-font project - WordPress 用 parsi-font プラグインにおける反射型クロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-1000142 2016-10-19 16:54 2016-02-9 Show GitHub Exploit DB Packet Storm
204364 6.1 警告
Network 		Page Layout Builder project - WordPress 用 page-layout-builder プラグインにおける反射型クロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-1000141 2016-10-19 16:54 2016-02-9 Show GitHub Exploit DB Packet Storm
204365 6.1 警告
Network 		new-year-firework project - WordPress 用 new-year-firework プラグインにおける反射型クロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-1000140 2016-10-19 16:54 2016-02-9 Show GitHub Exploit DB Packet Storm
204366 6.1 警告
Network 		Katz Web Services, Inc. - WordPress 用 Infusionsoft Gravity Forms プラグインにおける反射型クロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-1000139 2016-10-19 16:54 2016-02-9 Show GitHub Exploit DB Packet Storm
204367 6.1 警告
Network 		indexisto project - WordPress 用 indexisto プラグインにおける反射型クロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-1000138 2016-10-19 16:54 2016-02-9 Show GitHub Exploit DB Packet Storm
204368 6.1 警告
Network 		Hero Plugins - WordPress 用 Hero Maps Pro プラグインにおける反射型クロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-1000137 2016-10-19 16:54 2016-02-9 Show GitHub Exploit DB Packet Storm
204369 6.1 警告
Network 		heat-trackr project - WordPress 用 heat-trackr プラグインにおける反射型クロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-1000136 2016-10-19 16:52 2016-02-9 Show GitHub Exploit DB Packet Storm
204370 6.1 警告
Network 		HDW Tube project - WordPress 用 HDW Tube プラグインにおける反射型クロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-1000135 2016-10-19 16:52 2016-02-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 20, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
347021 - mozilla bugzilla Bugzilla 2.10 allows remote attackers to access sensitive information, including the database username and password, via an HTTP request for the globals.pl file, which is normally returned by the web… NVD-CWE-Other
CVE-2001-0330 2017-10-10 10:29 2001-06-27 Show GitHub Exploit DB Packet Storm
347022 - sgi irix Buffer overflow in Embedded Support Partner (ESP) daemon (rpc.espd) in IRIX 6.5.8 and earlier allows remote attackers to execute arbitrary commands. NVD-CWE-Other
CVE-2001-0331 2017-10-10 10:29 2001-06-27 Show GitHub Exploit DB Packet Storm
347023 - ssh ssh2 SSH Communications Security sshd 2.4 for Windows allows remote attackers to create a denial of service via a large number of simultaneous connections. NVD-CWE-Other
CVE-2001-0364 2017-10-10 10:29 2001-06-27 Show GitHub Exploit DB Packet Storm
347024 - qualcomm eudora Eudora before 5.1 allows a remote attacker to execute arbitrary code, when the 'Use Microsoft Viewer' and 'allow executables in HTML content' options are enabled, via an HTML email message containing… NVD-CWE-Other
CVE-2001-0365 2017-10-10 10:29 2001-06-27 Show GitHub Exploit DB Packet Storm
347025 - sap sap_r_3_web_application_server_demo
saposcol 		saposcol in SAP R/3 Web Application Server Demo before 1.5 trusts the PATH environmental variable to find and execute the expand program, which allows local users to obtain root access by modifying t… NVD-CWE-Other
CVE-2001-0366 2017-10-10 10:29 2001-06-27 Show GitHub Exploit DB Packet Storm
347026 - free_peers bearshare Directory traversal vulnerability in BearShare 2.2.2 and earlier allows a remote attacker to read certain files via a URL containing a series of . characters, a variation of the .. (dot dot) attack. NVD-CWE-Other
CVE-2001-0368 2017-10-10 10:29 2001-06-27 Show GitHub Exploit DB Packet Storm
347027 - freebsd freebsd Race condition in the UFS and EXT2FS file systems in FreeBSD 4.2 and earlier, and possibly other operating systems, makes deleted data available to user processes before it is zeroed out, which allow… NVD-CWE-Other
CVE-2001-0371 2017-10-10 10:29 2001-06-18 Show GitHub Exploit DB Packet Storm
347028 - microsoft windows_2000
windows_nt 		The default configuration of the Dr. Watson program in Windows NT and Windows 2000 generates user.dmp crash dump files with world-readable permissions, which could allow a local user to gain access t… NVD-CWE-Other
CVE-2001-0373 2017-10-10 10:29 2001-06-18 Show GitHub Exploit DB Packet Storm
347029 - cisco pix_firewall_515
pix_firewall_520 		Cisco PIX Firewall 515 and 520 with 5.1.4 OS running aaa authentication to a TACACS+ server allows remote attackers to cause a denial of service via a large number of authentication requests. NVD-CWE-Other
CVE-2001-0375 2017-10-10 10:29 2001-06-18 Show GitHub Exploit DB Packet Storm
347030 - infradig inframail Infradig Inframail prior to 3.98a allows a remote attacker to create a denial of service via a malformed POST request which includes a space followed by a large string. NVD-CWE-Other
CVE-2001-0377 2017-10-10 10:29 2001-06-18 Show GitHub Exploit DB Packet Storm