Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 21, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
205281	7	重要 Local	Google	-	複数の Nexus デバイス上で稼動する Android の Qualcomm buspm ドライバにおける権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2016-2442	2016-09-6 14:56	2016-05-2	Show	GitHub Exploit DB Packet Storm

205282	7	重要 Local	Google	-	複数の Nexus デバイス上で稼動する Android の Qualcomm buspm ドライバにおける権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2016-2441	2016-09-6 14:56	2016-05-2	Show	GitHub Exploit DB Packet Storm

205283	4.9	警告 Network	MariaDB Corporation Ab. オラクル	-	Oracle MySQL の MySQL Server における Server: InnoDB に関する脆弱性	CWE-noinfo 情報不足	CVE-2016-3459	2016-09-6 13:49	2016-07-19	Show	GitHub Exploit DB Packet Storm

205284	7.5	重要 Network	SUSE openSUSE project Linux Fedora Project レッドハット	-	Linux Kernel の net/rds/recv.c の rds_inc_info_copy 関数におけるカーネルスタックメモリから重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2016-5244	2016-09-6 10:42	2016-06-2	Show	GitHub Exploit DB Packet Storm

205285	7.8	重要 Local	Debian Linux	-	s390 プラットフォーム上で稼動する Linux Kernel のフォークの実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2016-2143	2016-09-6 09:59	2016-02-15	Show	GitHub Exploit DB Packet Storm

205286	5.5	警告 Local	Linux	-	Linux Kernel の security/integrity/evm/evm_main.c の evm_verify_hmac 関数における MAC 値を偽造される脆弱性	CWE-Other その他	CVE-2016-2085	2016-09-6 09:45	2016-02-12	Show	GitHub Exploit DB Packet Storm

205287	9.8	緊急 Network	Expat アップル Mozilla Foundation openSUSE project Canonical Debian SUSE	-	Expat におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2016-0718	2016-09-5 18:21	2016-05-18	Show	GitHub Exploit DB Packet Storm

205288	9.8	緊急 Network	Open vSwitch レッドハット	-	Open vSwitch の ovs-vswitchd の lib/flow.c におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2016-2074	2016-09-5 18:17	2016-03-28	Show	GitHub Exploit DB Packet Storm

205289	7.5	危険	Google HarfBuzz project	-	Google Chrome で使用される HarfBuzz におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2016-2052	2016-09-5 18:17	2016-01-20	Show	GitHub Exploit DB Packet Storm

205290	6.8	警告	Mozilla Foundation	-	Mozilla Firefox のブラウザエンジンにおけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2016-1953	2016-09-5 18:17	2016-03-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 21, 2026, 4:01 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
349511	-	lucidcms	lucidcms	LucidCMS 2.0.0 RC4 allows remote attackers to obtain sensitive information via a direct request to /lucid_phplib/translator.php, which reveals the path in an error message.	NVD-CWE-Other	CVE-2006-1635	2017-07-20 10:30	2006-04-6	Show	GitHub Exploit DB Packet Storm

349512	-	interact	interact	Cross-site scripting (XSS) vulnerability in Interact 2.1.1 allows remote attackers to inject arbitrary web script or HTML via (1) the search_terms parameter to (a) search.php, and (2) the first_name,…	NVD-CWE-Other	CVE-2006-1642	2017-07-20 10:30	2006-04-6	Show	GitHub Exploit DB Packet Storm

349513	-	interact	interact	SQL injection vulnerability in login.php in Interact 2.1.1 allows remote attackers to execute arbitrary SQL commands via the user_name parameter. NOTE: the provenance of this information is unknown;…	NVD-CWE-Other	CVE-2006-1643	2017-07-20 10:30	2006-04-6	Show	GitHub Exploit DB Packet Storm

349514	-	interact	interact	login.php in Interact 2.1.1 generates different responses depending on whether or not a username is valid, which allows remote attackers to determine valid usernames. NOTE: the provenance of this in…	NVD-CWE-Other	CVE-2006-1644	2017-07-20 10:30	2006-04-6	Show	GitHub Exploit DB Packet Storm

349515	-	sk_soft	skforum	Multiple cross-site scripting (XSS) vulnerabilities in SKForum 1.5 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) areaID parameter in area.View.action, (2) time…	NVD-CWE-Other	CVE-2006-1661	2017-07-20 10:30	2006-04-7	Show	GitHub Exploit DB Packet Storm

349516	-	jelsoft	vbug_tracker	Cross-site scripting (XSS) vulnerability in vbugs.php in Dark_Wizard vBug Tracker 3.5.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the sortorder parameter.	NVD-CWE-Other	CVE-2006-1673	2017-07-20 10:30	2006-04-7	Show	GitHub Exploit DB Packet Storm

349517	-	phpmyadmin	phpmyadmin	Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin before 2.8.0.3 allow remote attackers to inject arbitrary web script or HTML via unknown vectors in unspecified scripts in the themes…	NVD-CWE-Other	CVE-2006-1678	2017-07-20 10:30	2006-04-11	Show	GitHub Exploit DB Packet Storm

349518	-	talentsoft	web\+_shop	Cross-site scripting (XSS) vulnerability in webplus.exe in TalentSoft Web+Shop 5.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the deptname parameter, possibly invo…	NVD-CWE-Other	CVE-2006-1682	2017-07-20 10:30	2006-04-11	Show	GitHub Exploit DB Packet Storm

349519	-	apt	apt-webshop-system	Multiple SQL injection vulnerabilities in modules.php in APT-webshop-system 4.0 PRO, 3.0 BASIC, and 3.0 LIGHT allow remote attackers to execute arbitrary SQL commands via the (1) group, (2) seite, an…	NVD-CWE-Other	CVE-2006-1685	2017-07-20 10:30	2006-04-11	Show	GitHub Exploit DB Packet Storm

349520	-	manic_web	mwnewsletter	Cross-site scripting (XSS) vulnerability in subscribe.php in MWNewsletter 1.0.0b allows remote attackers to inject arbitrary web script or HTML via the user_name parameter.	NVD-CWE-Other	CVE-2006-1690	2017-07-20 10:30	2006-04-11	Show	GitHub Exploit DB Packet Storm