Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 4:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
204941 5.3 警告
Network
The phpMyAdmin Project - phpMyAdmin におけるファイルのシンボリックリンクをディスク上に作成される脆弱性 CWE-200
情報漏えい
CVE-2016-6613 2016-12-16 18:16 2016-07-12 Show GitHub Exploit DB Packet Storm
204942 4.3 警告
Network
The phpMyAdmin Project - phpMyAdmin のエクスポートメカニズムにおけるディスク上のフルパスを取得される脆弱性 CWE-200
情報漏えい
CVE-2016-6610 2016-12-16 18:16 2016-07-12 Show GitHub Exploit DB Packet Storm
204943 8.8 重要
Network
The phpMyAdmin Project - phpMyAdmin の配列エクスポート機能における任意の PHP コマンドを実行される脆弱性 CWE-77
コマンドインジェクション
CVE-2016-6609 2016-12-16 18:16 2016-07-12 Show GitHub Exploit DB Packet Storm
204944 7.1 重要
Network
PostgreSQL.org
Debian
- PostgreSQL におけるスーパーユーザ権限を取得される脆弱性 CWE-94
コード・インジェクション
CVE-2016-5424 2016-12-16 16:04 2016-08-11 Show GitHub Exploit DB Packet Storm
204945 8.3 重要
Network
PostgreSQL.org
Debian
- PostgreSQL におけるサービス運用妨害 (DoS) の脆弱性 CWE-476
NULL ポインタデリファレンス
CVE-2016-5423 2016-12-16 16:04 2016-08-11 Show GitHub Exploit DB Packet Storm
204946 7.5 重要
Network
GNU Project - GNU tar の safer_name_suffix 関数におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2016-6321 2016-12-16 16:03 2016-10-29 Show GitHub Exploit DB Packet Storm
204947 9.8 緊急
Network
Atlassian - Atlassian Crowd の LDAP ディレクトリコネクタにおける任意のコードを実行される脆弱性 CWE-20
不適切な入力確認
CVE-2016-6496 2016-12-16 16:03 2016-09-26 Show GitHub Exploit DB Packet Storm
204948 9.8 緊急
Network
アドビシステムズ - Adobe Flash Player における解放済みメモリ使用 (use-after-free) の脆弱性 CWE-416
解放済みメモリの使用
CVE-2016-7892 2016-12-16 14:07 2016-12-13 Show GitHub Exploit DB Packet Storm
204949 9.8 緊急
Network
アドビシステムズ - Adobe Flash Player の同一生成元ポリシーの実装におけるセキュリティを回避される脆弱性 CWE-254
セキュリティ機能
CVE-2016-7890 2016-12-16 13:58 2016-12-13 Show GitHub Exploit DB Packet Storm
204950 9.8 緊急
Network
アドビシステムズ - Adobe Flash Player の MovieClip クラスにおける任意のコードを実行される脆弱性 CWE-416
解放済みメモリの使用
CVE-2016-7881 2016-12-16 13:58 2016-12-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
347901 - redi rediplus REDIPlus program, REDI.exe, stores passwords and user names in cleartext in the StartLog.txt log file, which allows local users to gain access to other accounts. NVD-CWE-Other
CVE-2001-0415 2017-12-19 11:29 2001-06-27 Show GitHub Exploit DB Packet Storm
347902 - dcscripts dcforum
dcforum_2000
dcboard.cgi in DCForum 2000 1.0 allows remote attackers to execute arbitrary commands by uploading a Perl program to the server and using a .. (dot dot) in the AZ parameter to reference the program. NVD-CWE-Other
CVE-2001-0436 2017-12-19 11:29 2001-07-2 Show GitHub Exploit DB Packet Storm
347903 - dcscripts dcforum
dcforum_2000
upload_file.pl in DCForum 2000 1.0 allows remote attackers to upload arbitrary files without authentication by setting the az parameter to upload_file. NVD-CWE-Other
CVE-2001-0437 2017-12-19 11:29 2001-07-2 Show GitHub Exploit DB Packet Storm
347904 - debian
mandrakesoft
redhat
debian_linux
mandrake_linux
mandrake_linux_corporate_server
linux
Buffer overflow in (1) wrapping and (2) unwrapping functions of slrn news reader before 0.9.7.0 allows remote attackers to execute arbitrary commands via a long message header. NVD-CWE-Other
CVE-2001-0441 2017-12-19 11:29 2001-06-27 Show GitHub Exploit DB Packet Storm
347905 - transsoft broker_ftp_server Directory traversal vulnerability in Transsoft FTP Broker before 5.5 allows attackers to (1) delete arbitrary files via DELETE, or (2) list arbitrary directories via LIST, via a .. (dot dot) in the f… NVD-CWE-Other
CVE-2001-0450 2017-12-19 11:29 2001-06-27 Show GitHub Exploit DB Packet Storm
347906 - sentraweb indexu INDEXU 2.0 beta and earlier allows remote attackers to bypass authentication and gain privileges by setting the cookie_admin_authenticated cookie value to 1. NVD-CWE-Other
CVE-2001-0451 2017-12-19 11:29 2001-06-27 Show GitHub Exploit DB Packet Storm
347907 - whitsoft slimserve Directory traversal vulnerability in SlimServe HTTPd 1.1a allows remote attackers to read arbitrary files via a ... (modified dot dot) in the HTTP request. NVD-CWE-Other
CVE-2001-0454 2017-12-19 11:29 2001-06-27 Show GitHub Exploit DB Packet Storm
347908 - ralf_s._engelschall
debian
mandrakesoft
suse
eperl
debian_linux
mandrake_linux
suse_linux
Multiple buffer overflows in ePerl before 2.2.14-0.7 allow local and remote attackers to execute arbitrary commands. NVD-CWE-Other
CVE-2001-0458 2017-12-19 11:29 2001-06-27 Show GitHub Exploit DB Packet Storm
347909 - afterstep.org
rob_malda
afterstep
ascdc
Buffer overflows in ascdc Afterstep while running setuid allows local users to gain root privileges via a long (1) -d option, (2) -m option, or (3) -f option. NVD-CWE-Other
CVE-2001-0459 2017-12-19 11:29 2001-06-27 Show GitHub Exploit DB Packet Storm
347910 - baltimore_technologies websweeper Websweeper 4.0 does not limit the length of certain HTTP headers, which allows remote attackers to cause a denial of service (memory exhaustion) via an extremely large HTTP Referrer: header. NVD-CWE-Other
CVE-2001-0460 2017-12-19 11:29 2001-06-27 Show GitHub Exploit DB Packet Storm