Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 28, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
204501	7.5	重要 Network	Moxa Inc.	-	Moxa Secure Router EDR-G903 デバイスにおける設定およびログファイルを読まれる脆弱性	CWE-200 情報漏えい	CVE-2016-0875	2016-06-1 13:56	2016-05-17	Show	GitHub Exploit DB Packet Storm

204502	7.5	重要 Network		-	HPE Service Manager における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2016-2025	2016-06-1 11:51	2016-05-24	Show	GitHub Exploit DB Packet Storm

204503	9.8	緊急 Network		-	HPE Release Control のサーバにおける任意のコマンドを実行される脆弱性	CWE-Other その他	CVE-2016-1999	2016-06-1 11:51	2016-03-28	Show	GitHub Exploit DB Packet Storm

204504	7	重要 Local	Google	-	Android One デバイス上で稼動する Android の MediaTek Wi-Fi ドライバにおける権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2016-2456	2016-05-31 18:05	2016-05-2	Show	GitHub Exploit DB Packet Storm

204505	8.8	重要 Network	Tollgrade Communications, Inc.	-	Tollgrade SmartGrid LightHouse Sensor Management System Software EMS におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2016-0863	2016-05-31 18:00	2016-02-9	Show	GitHub Exploit DB Packet Storm

204506	7.2	危険	Linux	-	Linux Kernel の fs/pipe.c の pipe_read および pipe_write の実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2015-1805	2016-05-31 17:54	2015-03-17	Show	GitHub Exploit DB Packet Storm

204507	5.4	警告 Network	株式会社ロックオン	-	EC-CUBE におけるアクセス制限不備の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2016-1200	2016-05-31 17:38	2016-04-26	Show	GitHub Exploit DB Packet Storm

204508	5.3	警告 Network	株式会社ロックオン	-	EC-CUBE におけるアクセス制限不備の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2016-1199	2016-05-31 17:38	2016-04-26	Show	GitHub Exploit DB Packet Storm

204509	4.3	警告 Network	株式会社ロックオン	-	EC-CUBE におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2016-1201	2016-05-31 17:37	2016-04-26	Show	GitHub Exploit DB Packet Storm

204510	4.3	警告 Network	Google	-	Google Chrome の拡張サブシステムにおける同一生成元ポリシーを回避される脆弱性	CWE-200 CWE-Other	CVE-2016-1658	2016-05-31 17:30	2016-04-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
351551	-	wsn_knowledge_base	wsn_knowledge_base	Multiple SQL injection vulnerabilities in WSN Knowledge Base 1.2.0 and earler allow remote attackers to execute arbitrary SQL commands via the (1) catid, (2) perpage, (3) ascdesc, and (4) orderlinks …	NVD-CWE-Other	CVE-2005-3939	2008-10-3 13:41	2005-12-1	Show	GitHub Exploit DB Packet Storm

351552	-	phpalbum.net	phpalbum	Directory traversal vulnerability in main.php in PHPAlbum 0.2.3 and earlier allows remote attackers to read arbitrary files via the (1) cmd and (2) var1 parameters.	NVD-CWE-Other	CVE-2005-3948	2008-10-3 13:41	2005-12-1	Show	GitHub Exploit DB Packet Storm

351553	-	bedeng_psp	bedeng_psp	SQL injection vulnerability in Bedeng PSP 1.1 allows remote attackers to execute arbitrary SQL commands via the cwhere parameter to (1) index.php and (2) download.php, or (3) ckode parameter to baca.…	NVD-CWE-Other	CVE-2005-3953	2008-10-3 13:41	2005-12-1	Show	GitHub Exploit DB Packet Storm

351554	-	dmanews	dmanews	Multiple SQL injection vulnerabilities in index.php in DMANews 0.904 and 0.910 allow remote attackers to execute arbitrary SQL commands via the (1) id parameter in a comments action and the (2) sorto…	NVD-CWE-Other	CVE-2005-3956	2008-10-3 13:41	2005-12-1	Show	GitHub Exploit DB Packet Storm

351555	-	iisprotect	iisprotect	iisPROTECT 2.1 and 2.2 allows remote attackers to bypass authentication via an HTTP request containing URL-encoded characters.	NVD-CWE-Other	CVE-2003-0317	2008-10-3 13:20	2003-12-31	Show	GitHub Exploit DB Packet Storm

351556	-	phpnettoolpack	phpnettoolpack	PHPNetToolpack 0.1 relies on its environment's PATH to find and execute the traceroute program, which could allow local users to gain privileges by inserting a Trojan horse program into the search pa…	NVD-CWE-Other	CVE-2002-0470	2008-09-24 13:13	2002-08-12	Show	GitHub Exploit DB Packet Storm

351557	-	phpnettoolpack	phpnettoolpack	PHPNetToolpack 0.1 allows remote attackers to execute arbitrary code via shell metacharacters in the a_query variable.	NVD-CWE-Other	CVE-2002-0471	2008-09-24 13:13	2002-08-12	Show	GitHub Exploit DB Packet Storm

351558	-	sun	solaris_answerbook2	The administration interface for the dwhttpd web server in Solaris AnswerBook2 allows interface users to remotely execute commands via shell metacharacters.	NVD-CWE-Other	CVE-2000-0697	2008-09-24 13:07	2000-10-20	Show	GitHub Exploit DB Packet Storm

351559	-	-	-	Adaptive Website Framework (AWF) 2.10 and earlier allows remote attackers to obtain the full path of the application via an invalid mode parameter to community.html, which leaks the path in an error …	NVD-CWE-Other	CVE-2005-4373	2008-09-20 13:43	2005-12-20	Show	GitHub Exploit DB Packet Storm

351560	-	libertas_solutions	libertas_enterprise_cms	Cross-site scripting (XSS) vulnerability in search/index.php in Libertas Enterprise CMS 3.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the page_search parameter.	NVD-CWE-Other	CVE-2005-4399	2008-09-20 13:43	2005-12-20	Show	GitHub Exploit DB Packet Storm