Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
204771 3.5 注意 MySQL AB
openSUSE project
Canonical
Debian
MariaDB Corporation Ab.
オラクル
レッドハット
- Oracle MySQL の MySQL Server および MariaDB における UDF に関する脆弱性 CWE-noinfo
情報不足
CVE-2016-0608 2016-12-27 10:52 2016-01-19 Show GitHub Exploit DB Packet Storm
204772 3.5 注意 MySQL AB
openSUSE project
Canonical
Debian
MariaDB Corporation Ab.
オラクル
レッドハット
- Oracle MySQL の MySQL Server および MariaDB における Encryption に関する脆弱性 CWE-noinfo
情報不足
CVE-2016-0606 2016-12-27 10:52 2016-01-19 Show GitHub Exploit DB Packet Storm
204773 3.5 注意 MySQL AB
openSUSE project
Canonical
Debian
MariaDB Corporation Ab.
オラクル
レッドハット
- Oracle MySQL の MySQL Server および MariaDB における InnoDB に関する脆弱性 CWE-noinfo
情報不足
CVE-2016-0600 2016-12-27 10:52 2016-01-19 Show GitHub Exploit DB Packet Storm
204774 7.6 重要
Network
オラクル - Oracle Fusion Middleware の Oracle Platform Security for Java における Audit Reports に関する脆弱性 CWE-Other
その他
CVE-2016-8281 2016-12-27 10:23 2016-10-18 Show GitHub Exploit DB Packet Storm
204775 7.6 重要
Network
オラクル - Oracle Fusion Middleware の Oracle Platform Security for Java における Audit Schema に関する脆弱性 CWE-Other
その他
CVE-2016-5536 2016-12-27 10:22 2016-10-18 Show GitHub Exploit DB Packet Storm
204776 8.1 重要
Network
The PHP Group
日本電気
ヒューレット・パッカード・エンタープライズ
Fedora Project
オラクル
- PHP における任意のプロキシサーバにアプリケーションのアウトバウンド HTTP トラフィックをリダイレクトされる脆弱性 CWE-Other
CWE-Other
CVE-2016-5385 2016-12-27 10:18 2016-07-18 Show GitHub Exploit DB Packet Storm
204777 3.5 注意 MySQL AB
openSUSE project
Canonical
Debian
MariaDB Corporation Ab.
オラクル
レッドハット
- Oracle MySQL の MySQL Server および MariaDB における DML に関する脆弱性 CWE-noinfo
情報不足
CVE-2016-0598 2016-12-27 10:14 2016-01-19 Show GitHub Exploit DB Packet Storm
204778 9.8 緊急
Network
The PHP Group
openSUSE project
Fedora Project
- PHP の ext/exif/exif.c の exif_process_IFD_in_JPEG 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー
CVE-2016-4543 2016-12-27 10:02 2016-04-28 Show GitHub Exploit DB Packet Storm
204779 4 警告 MySQL AB
openSUSE project
Canonical
Debian
MariaDB Corporation Ab.
オラクル
レッドハット
- Oracle MySQL の MySQL Server および MariaDB における Optimizer に関する脆弱性 CWE-noinfo
情報不足
CVE-2016-0597 2016-12-27 09:49 2016-01-19 Show GitHub Exploit DB Packet Storm
204780 4 警告 MySQL AB
openSUSE project
Canonical
Debian
MariaDB Corporation Ab.
オラクル
レッドハット
- Oracle MySQL の MySQL Server および MariaDB における DML に関する脆弱性 CWE-noinfo
情報不足
CVE-2016-0596 2016-12-27 09:49 2016-01-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
351721 - warpspeed 4nforum SQL injection vulnerability in modules.php in 4nNukeWare 4nForum 0.91 allows remote attackers to execute arbitrary SQL commands via the tid parameter. CWE-89
SQL Injection
CVE-2006-2760 2017-07-20 10:31 2006-06-2 Show GitHub Exploit DB Packet Storm
351722 - hitachi hitsenser3 SQL injection vulnerability in Hitachi HITSENSER3 HITSENSER3/PRP, HITSENSER3/PUP, HITSENSER3/STP, and HITSENSER3/EUP allows remote attackers to execute arbitrary SQL commands via unknown attack vecto… NVD-CWE-Other
CVE-2006-2761 2017-07-20 10:31 2006-06-2 Show GitHub Exploit DB Packet Storm
351723 - xander_ladage guestbookxl Cross-site scripting (XSS) vulnerability in GuestbookXL 1.3 allows remote attackers to inject arbitrary web script or HTML via a javascript URI in an IMG tag in a comment field to (1) guestwrite.php … NVD-CWE-Other
CVE-2006-2764 2017-07-20 10:31 2006-06-2 Show GitHub Exploit DB Packet Storm
351724 - interlink_advantage interlink_advantage Cross-site scripting (XSS) vulnerability in news_information.php in Interlink Advantage allows remote attackers to inject arbitrary web script or HTML via the flag parameter. NVD-CWE-Other
CVE-2006-2765 2017-07-20 10:31 2006-06-2 Show GitHub Exploit DB Packet Storm
351725 - hogstorps hogstorp_guestbook admin/radera/tabort.asp in Hogstorps hogstorp guestbook 2.0 does not verify user credentials, which allows remote attackers to delete arbitrary posts via a modified delID parameter. NVD-CWE-Other
CVE-2006-2771 2017-07-20 10:31 2006-06-2 Show GitHub Exploit DB Packet Storm
351726 - hogstorps hogstorp_guestbook Cross-site scripting (XSS) vulnerability in add.asp in Hogstorps hogstorp guestbook 2.0 allows remote attackers to inject arbitrary web script or HTML via the (1) name, (2) email, and (3) headline pa… NVD-CWE-Other
CVE-2006-2772 2017-07-20 10:31 2006-06-2 Show GitHub Exploit DB Packet Storm
351727 - hogstorps hogstorp_guestbook admin/redigera/redigera2.asp in Hogstorps hogstorp Guestbook 2.0 does not verify user credentials, which allows remote attackers to edit arbitrary posts via unspecified vectors. NOTE: the provenance… NVD-CWE-Other
CVE-2006-2773 2017-07-20 10:31 2006-06-2 Show GitHub Exploit DB Packet Storm
351728 - sun storage_automated_diagnostic_environment A package component in Sun Storage Automated Diagnostic Environment (StorADE) 2.4 uses world-writable permissions for certain critical files and directories, which allows local users to gain privileg… NVD-CWE-Other
CVE-2006-2790 2017-07-20 10:31 2006-06-3 Show GitHub Exploit DB Packet Storm
351729 - sun storage_automated_diagnostic_environment This vulnerability is addressed in the following product release: Sun, Storage Automated Diagnostic Environment, 2.4 (for Solaris 8, 9 and 10) with patch 117654-60 or later. NVD-CWE-Other
CVE-2006-2790 2017-07-20 10:31 2006-06-3 Show GitHub Exploit DB Packet Storm
351730 - new-place captivate Cross-site scripting (XSS) vulnerability in gallery.php in Captivate 1.0 allows remote attackers to inject arbitrary web script or HTML via the page parameter, which is reflected in an error message. CWE-79
Cross-site Scripting
CVE-2006-2796 2017-07-20 10:31 2006-06-3 Show GitHub Exploit DB Packet Storm