Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 10, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
204871 9.8 緊急
Network 		Schneider Electric - Schneider Electric Pelco Digital Sentry ビデオ管理システムのファームウェアにおけるアクセス権を取得される脆弱性 CWE-Other
その他 		CVE-2016-4520 2016-07-25 11:31 2016-06-1 Show GitHub Exploit DB Packet Storm
204872 9.8 緊急
Physics 		ヒューレット・パッカード・エンタープライズ - 複数の HPE IMC 製品における任意のコマンドを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2016-4372 2016-07-25 11:14 2016-07-11 Show GitHub Exploit DB Packet Storm
204873 7.6 重要
Network 		HarfBuzz project - HarfBuzz の hb-ot-layout-gpos-table.hh におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2015-8947 2016-07-25 11:12 2015-10-13 Show GitHub Exploit DB Packet Storm
204874 2.5
Local 		Google - Android OS の電話帳アプリにおけるアクセス制限不備の脆弱性 CWE-264
認可・権限・アクセス制御 		- 2016-07-22 14:04 2016-07-22 Show GitHub Exploit DB Packet Storm
204875 8.1 重要
Network 		Tollgrade Communications, Inc. - Tollgrade LightHouse Sensor Management System における管理者権限の認証要求を回避される脆弱性 CWE-Other
その他 		CVE-2016-5807 2016-07-21 18:15 2016-07-12 Show GitHub Exploit DB Packet Storm
204876 5.3 警告
Network 		Tollgrade Communications, Inc. - Tollgrade LightHouse Sensor Management System におけるアカウント名を列挙される脆弱性 CWE-200
情報漏えい 		CVE-2016-5797 2016-07-21 18:15 2016-07-12 Show GitHub Exploit DB Packet Storm
204877 7.5 重要
Network 		Tollgrade Communications, Inc. - Tollgrade LightHouse Sensor Management System における認証を回避される脆弱性 CWE-noinfo
情報不足 		CVE-2016-5790 2016-07-21 18:15 2016-07-12 Show GitHub Exploit DB Packet Storm
204878 9.8 緊急
Network 		Objective Systems - Objective Systems ASN1C で生成したソースコードにバッファオーバーフローの脆弱性 CWE-Other
CWE-Other
CVE-2016-5080 2016-07-21 17:21 2016-07-19 Show GitHub Exploit DB Packet Storm
204879 5.3 警告
Network 		シスコシステムズ - Cisco IOS および IOS XE におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2016-1459 2016-07-21 15:44 2016-07-15 Show GitHub Exploit DB Packet Storm
204880 7.8 重要
Local 		シスコシステムズ - Cisco IOS XR の CLI における特権付きコンテキスト内で任意の OS コマンドを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-1456 2016-07-21 15:44 2016-07-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 10, 2026, 5 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
350021 - francisco_burzi php-nuke SQL injection vulnerability in the bblogin function in functions.php in PHP-Nuke 6.x through 7.2 allows remote attackers to bypass authentication and gain access by injecting base64-encoded SQL code … NVD-CWE-Other
CVE-2004-1929 2017-07-11 10:31 2004-04-13 Show GitHub Exploit DB Packet Storm
350022 - francisco_burzi php-nuke Cross-site scripting (XSS) vulnerability in the cookiedecode function in mainfile.php for PHP-Nuke 6.x through 7.2, when themes are used, allows remote attackers to inject arbitrary web script or HTM… NVD-CWE-Other
CVE-2004-1930 2017-07-11 10:31 2004-04-12 Show GitHub Exploit DB Packet Storm
350023 - francisco_burzi php-nuke SQL injection vulnerability in (1) auth.php and (2) admin.php in PHP-Nuke 6.x through 7.2 allows remote attackers to execute arbitrary SQL code and create an administrator account via base64-encoded … NVD-CWE-Other
CVE-2004-1932 2017-07-11 10:31 2004-04-12 Show GitHub Exploit DB Packet Storm
350024 - - - Citadel/UX 5.00 through 6.14 installs the database directory and files with world-read permissions, which could allow local users to bypass access controls and read unauthorized messages. NVD-CWE-Other
CVE-2004-1933 2017-07-11 10:31 2004-04-12 Show GitHub Exploit DB Packet Storm
350025 - isesam gemitel PHP remote file inclusion vulnerability in affich.php in Gemitel 3.50 allows remote attackers to execute arbitrary PHP code via the base parameter. NVD-CWE-Other
CVE-2004-1934 2017-07-11 10:31 2004-04-15 Show GitHub Exploit DB Packet Storm
350026 - sct_corporation campus_pipeline Cross-site scripting (XSS) vulnerability in SCT Campus Pipeline allows remote attackers to inject arbitrary web script or HTML via onload, onmouseover, and other Javascript events in an e-mail attach… NVD-CWE-Other
CVE-2004-1935 2017-07-11 10:31 2004-04-15 Show GitHub Exploit DB Packet Storm
350027 - zonelabs zonealarm ZoneAlarm Pro 4.5.538.001 and possibly other versions allows remote attackers to bypass e-mail protection via attachments whose names contain certain non-English characters. NVD-CWE-Other
CVE-2004-1936 2017-07-11 10:31 2004-04-14 Show GitHub Exploit DB Packet Storm
350028 - nuked-klan nuked-klan Multiple directory traversal vulnerabilities in Nuked-KlaN 1.4b and 1.5b allow remote attackers to read or include arbitrary files via .. sequences in (1) the user_langue parameter to index.php or (2… NVD-CWE-Other
CVE-2004-1937 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
350029 - phorum phorum SQL injection vulnerability in userlogin.php in Phorum 3.4.7 allows remote attackers to execute arbitrary SQL commands via doubly hex-encoded characters such as "%2527", which is translated to "'", a… NVD-CWE-Other
CVE-2004-1938 2017-07-11 10:31 2004-04-19 Show GitHub Exploit DB Packet Storm
350030 - rhinosoft zaep_antispam Cross-site scripting (XSS) vulnerability in Zaep AntiSpam 2.0 allows remote attackers to inject arbitrary web script or HTML via double encoded slashes (%252F) in the key parameter. NVD-CWE-Other
CVE-2004-1939 2017-07-11 10:31 2004-04-14 Show GitHub Exploit DB Packet Storm