Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 16, 2026, 10:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
204541 7.8 重要
Local 		シスコシステムズ - Cisco IOS および IOS XE の iox におけるゲスト OS 上で任意の IOx Linux コマンドを実行される脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2016-6414 2016-09-28 11:41 2016-09-21 Show GitHub Exploit DB Packet Storm
204542 7.8 重要
Local 		シスコシステムズ - Cisco Application Policy Infrastructure Controller デバイスのインストールプロシージャにおける root アクセス権を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-6413 2016-09-28 11:41 2016-09-21 Show GitHub Exploit DB Packet Storm
204543 6.5 警告
Network 		シスコシステムズ - Cisco IOS および IOS XE の Cisco Application-hosting Framework コンポーネントにおける任意のダウンロードを誘発される脆弱性 CWE-20
不適切な入力確認 		CVE-2016-6412 2016-09-28 11:41 2016-09-21 Show GitHub Exploit DB Packet Storm
204544 7.5 重要
Network 		シスコシステムズ - Cisco Prime Home における任意のファイルを読まれる脆弱性 CWE-Other
その他 		CVE-2016-6408 2016-09-28 11:41 2016-09-21 Show GitHub Exploit DB Packet Storm
204545 9.8 緊急
Network 		シスコシステムズ - Cisco E メール セキュリティ アプライアンスデバイス上で稼動する IronPort AsyncOS における root アクセス権を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-6406 2016-09-28 11:41 2016-09-22 Show GitHub Exploit DB Packet Storm
204546 9.8 緊急
Network 		シスコシステムズ - Cisco Cloud Services Platform 2100 における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2016-6374 2016-09-28 11:41 2016-09-21 Show GitHub Exploit DB Packet Storm
204547 7.2 重要
Network 		シスコシステムズ - Cisco Cloud Services Platform 2100 の Web ベースの GUI における root 権限で任意の OS コマンドを実行される脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2016-6373 2016-09-28 11:41 2016-09-21 Show GitHub Exploit DB Packet Storm
204548 6.5 警告
Network 		シスコシステムズ - Cisco IOS および IOS XE のゾーンベースファイアウォール機能におけるリソースへのアクセス制限を回避される脆弱性 CWE-20
不適切な入力確認 		CVE-2014-2146 2016-09-28 11:41 2014-02-25 Show GitHub Exploit DB Packet Storm
204549 7.8 重要
Local 		Lenovo - 複数の Lenovo デバイスの BIOS におけるセキュアブートの保護メカニズムを回避される脆弱性 CWE-Other
その他 		CVE-2016-5247 2016-09-28 11:10 2016-08-25 Show GitHub Exploit DB Packet Storm
204550 7.4 重要
Network 		Mozilla Foundation - Mozilla Firefox におけるアドオンの更新を偽装される脆弱性 CWE-20
不適切な入力確認 		CVE-2016-5284 2016-09-27 17:51 2016-09-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
347711 - hummingbird connectivity Inetd32 Administration Tool of Hummingbird Connectivity 7.1 and 9.0 allows local users to execute arbitrary code by changing the program for handling incoming connections. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2004-2729 2017-07-29 10:29 2004-12-31 Show GitHub Exploit DB Packet Storm
347712 - microsoft psexec
psgetsid
psinfo
pskill
pslist
psloglist
pspasswd
psservice
psshutdown
pssuspend
sysinternals_pstools 		Sysinternals PsTools before 2.05, including (1) PsExec before 1.54, (2) PsGetsid before 1.41, (3) PsInfo before 1.61, (4) PsKill before 1.03, (5) PsList before 1.26, (6) PsLoglist before 2.51, (7) Ps… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2004-2730 2017-07-29 10:29 2004-12-31 Show GitHub Exploit DB Packet Storm
347713 - netbilling netbilling nbmember.cgi in Netbilling 2.0 allows remote attackers to obtain sensitive information via the cmd=test option, which can be leveraged to determine the access key. CWE-78
OS Command  		CVE-2004-2732 2017-07-29 10:29 2004-12-31 Show GitHub Exploit DB Packet Storm
347714 - webwiz web_wiz_forums Web Wiz Forums 7.7a uses invalid logic to determine user privileges, which allows remote attackers to (1) block arbitrary IP addresses via pop_up_ip_blocking.asp or (2) modify topics via pop_up_topic… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2004-2733 2017-07-29 10:29 2004-12-31 Show GitHub Exploit DB Packet Storm
347715 - novell netware webadmin-apache.conf in Novell Web Manager of Novell NetWare 6.5 uses an uppercase Alias tag with an inconsistent lowercase directory tag for a volume, which allows remote attackers to bypass access … CWE-287
Improper Authentication 		CVE-2004-2734 2017-07-29 10:29 2004-12-31 Show GitHub Exploit DB Packet Storm
347716 - fredric_fredricson p4db Cross-site scripting (XSS) vulnerability in P4DB 2.01 and earlier allows remote attackers to inject arbitrary web script or HTML via (1) SET_PREFERENCES parameter in SetPreferences.cgi; (2) BRANCH pa… CWE-79
Cross-site Scripting 		CVE-2004-2735 2017-07-29 10:29 2004-12-31 Show GitHub Exploit DB Packet Storm
347717 - polar_software helpdesk Polar HelpDesk 3.0 allows remote attackers to bypass authentication by setting the UserId and UserType values in a cookie. CWE-287
Improper Authentication 		CVE-2004-2736 2017-07-29 10:29 2004-12-31 Show GitHub Exploit DB Packet Storm
347718 - netsupport dna_helpdesk SQL injection vulnerability in problist.asp in NetSupport DNA HelpDesk 1.01 allows remote attackers to execute arbitrary SQL commands via the where parameter. CWE-89
SQL Injection 		CVE-2004-2737 2017-07-29 10:29 2004-12-31 Show GitHub Exploit DB Packet Storm
347719 - zeroboard zeroboard Cross-site scripting (XSS) vulnerability in check_user_id.php in ZeroBoard 4.1pl4 and earlier allows remote attackers to inject arbitrary web script or HTML via the user_id parameter. CWE-79
Cross-site Scripting 		CVE-2004-2738 2017-07-29 10:29 2004-12-31 Show GitHub Exploit DB Packet Storm
347720 - phprojekt phprojekt The setup routine (setup.php) in PHProjekt 4.2.1 and earlier allows remote attackers to modify system configuration via unknown attack vectors. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2004-2739 2017-07-29 10:29 2004-12-31 Show GitHub Exploit DB Packet Storm