Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 11, 2026, 6:13 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
204931	9.8	緊急 Network	Google	-	Android のメディアサーバの ih264d デコーダにおける任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2016-3820	2016-08-9 16:55	2016-08-1	Show	GitHub Exploit DB Packet Storm

204932	9.8	緊急 Network	Google	-	Android のメディアサーバの libstagefright の codecs/on2/h264dec/source/h264bsd_dpb.c における整数オーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2016-3819	2016-08-9 16:55	2016-08-1	Show	GitHub Exploit DB Packet Storm

204933	7.8	重要 Local	Google	-	複数の Nexus デバイス上で稼動する Android の Qualcomm GPU ドライバにおける権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2016-2504	2016-08-9 16:55	2016-08-1	Show	GitHub Exploit DB Packet Storm

204934	7.5	重要 Network	SAP	-	SAP HANA DB におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2016-6148	2016-08-9 16:49	2016-01-12	Show	GitHub Exploit DB Packet Storm

204935	8.1	重要 Network	SAP	-	SAP HANA の SQL インターフェースにおける認証を回避される脆弱性	CWE-Other その他	CVE-2016-6144	2016-08-9 16:49	2016-01-25	Show	GitHub Exploit DB Packet Storm

204936	9.8	緊急 Network	SAP	-	SAP TREX の不特定のインターフェースにおける SIDadm 権限で任意の OS コマンドを実行される脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2016-6147	2016-08-9 16:22	2016-02-10	Show	GitHub Exploit DB Packet Storm

204937	9.8	緊急 Network	SAP	-	SAP TREX における任意のファイルに書き込まれる脆弱性	CWE-Other その他	CVE-2016-6140	2016-08-9 16:22	2016-07-20	Show	GitHub Exploit DB Packet Storm

204938	9.8	緊急 Network	SAP	-	SAP TREX における任意のファイルを読まれる脆弱性	CWE-noinfo 情報不足	CVE-2016-6139	2016-08-9 16:22	2016-07-20	Show	GitHub Exploit DB Packet Storm

204939	9.8	緊急 Network	SAP	-	SAP TREX におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2016-6138	2016-08-9 16:22	2016-07-20	Show	GitHub Exploit DB Packet Storm

204940	6.8	警告 Network	IBM	-	IBM FileNet Workplace におけるオープンリダイレクトの脆弱性	CWE-Other その他	CVE-2016-5878	2016-08-9 15:08	2016-07-29	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 11, 2026, 5:13 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
349931	-	ubertec	help_center_live	Cross-site scripting (XSS) vulnerability in the Search module in UberTec Help Center Live (HCL) allows remote attackers to inject arbitrary web script or HTML via the find parameter to index.php.	NVD-CWE-Other	CVE-2004-2603	2017-07-11 10:32	2004-12-31	Show	GitHub Exploit DB Packet Storm

349932	-	phproxy	phproxy	Cross-site scripting (XSS) vulnerability in index.php in PHProxy allows remote attackers to inject arbitrary web script or HTML via the error parameter.	NVD-CWE-Other	CVE-2004-2604	2017-07-11 10:32	2004-12-31	Show	GitHub Exploit DB Packet Storm

349933	-	astats	astats	aStats 1.6.5 allows local users to overwrite arbitrary files via a symlink attack on (1) the aStats-Graphic-Signature-Generation file and (2) certain PNG image files.	NVD-CWE-Other	CVE-2004-2605	2017-07-11 10:32	2004-12-31	Show	GitHub Exploit DB Packet Storm

349934	-	linksys	befsr41_v3 wrt54g	The Web interface in Linksys WRT54G 2.02.7 and BEFSR41 version 3, with the firewall disabled, allows remote attackers to attempt to login to an administration web page, even when the configuration sp…	NVD-CWE-Other	CVE-2004-2606	2017-07-11 10:32	2004-12-31	Show	GitHub Exploit DB Packet Storm

349935	-	opentools	attachment_mod	Directory traversal vulnerability in the Attachment module 2.3.10 and earlier for phpBB allows remote attackers to read arbitrary files via a .. (dot dot) in the filename.	NVD-CWE-Other	CVE-2004-1399	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm

349936	-	active_server_corner	asp_calendar	The control panel in ASP Calendar does not require authentication to access, which allows remote attackers to gain unauthorized access via a direct request to main.asp.	NVD-CWE-Other	CVE-2004-1400	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm

349937	-	asp-rider	asp-rider	SQL injection vulnerability in verify.asp in Asp-rider allows remote attackers to execute arbitrary SQL statements and bypass authentication via the username parameter.	NVD-CWE-Other	CVE-2004-1401	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm

349938	-	iwebnegar	iwebnegar	SQL injection vulnerability in iWebNegar allows remote attackers to execute arbitrary SQL commands via (1) the string parameter for index.php, (2) comments.php, or (3) the administrator login page.	NVD-CWE-Other	CVE-2004-1402	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm

349939	-	sir	gnuboard	PHP remote file inclusion vulnerability in index.php in GNUBoard 3.39 and earlier allows remote attackers to execute arbitrary PHP code by modifying the doc parameter to reference a URL on a remote w…	NVD-CWE-Other	CVE-2004-1403	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm

349940	-	opentools	attachment_mod	Attachment Mod 2.3.10 module for phpBB, when used with Apache mod_mime, does not properly handle files with multiple file extensions, such as .php.rar, which allows remote attackers to upload and exe…	NVD-CWE-Other	CVE-2004-1404	2017-07-11 10:31	2004-12-31	Show	GitHub Exploit DB Packet Storm