Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 4:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
205371 8.8 重要
Network
Percona
MariaDB Corporation Ab.
オラクル
- Oracle MySQL およびその他のデータベースにおける任意の構成を作成される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2016-6662 2016-11-22 16:02 2016-08-10 Show GitHub Exploit DB Packet Storm
205372 6.5 警告 ヒューレット・パッカード
Debian
Canonical
Apache Software Foundation
オラクル
- Apache Tomcat の Session Persistence の実装における SecurityManager の制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2016-0714 2016-11-22 16:02 2016-01-5 Show GitHub Exploit DB Packet Storm
205373 5 警告 Novell
Bouncy Castle
オラクル
- Bouncy Castle Java ライブラリにおける秘密鍵を取得される脆弱性 CWE-200
CWE-310
CVE-2015-7940 2016-11-22 16:02 2015-11-4 Show GitHub Exploit DB Packet Storm
205374 9.8 緊急
Network
Apache Software Foundation
オラクル
- Apache Groovy の runtime/MethodClosure.java の MethodClosure クラスにおける任意のコードを実行される脆弱性 CWE-Other
その他
CVE-2015-3253 2016-11-22 16:01 2015-07-16 Show GitHub Exploit DB Packet Storm
205375 4 警告 OpenSSL Project - OpenSSL における Change Cipher Spec メッセージの処理に脆弱性 CWE-Other
その他
CVE-2014-0224 2016-11-22 16:00 2014-06-6 Show GitHub Exploit DB Packet Storm
205376 4.3 警告 IBM
Apache Software Foundation
オラクル
- Apache Tomcat における任意のファイルを読まれる脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2014-0119 2016-11-22 16:00 2014-05-21 Show GitHub Exploit DB Packet Storm
205377 4.3 警告 日立
IBM
Apache Software Foundation
オラクル
- Apache Tomcat の java/org/apache/tomcat/util/buf/Ascii.java における整数オーバーフローの脆弱性 CWE-189
数値処理の問題
CVE-2014-0099 2016-11-22 16:00 2014-03-27 Show GitHub Exploit DB Packet Storm
205378 4.3 警告 日立
IBM
Apache Software Foundation
オラクル
- Apache Tomcat のデフォルトサーブレットにおけるセキュリティマネージャの制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2014-0096 2016-11-22 16:00 2014-03-27 Show GitHub Exploit DB Packet Storm
205379 5 警告 日立
IBM
Apache Software Foundation
オラクル
- Apache Tomcat の java/org/apache/coyote/http11/filters/ChunkedInputFilter.java における整数オーバーフローの脆弱性 CWE-189
数値処理の問題
CVE-2014-0075 2016-11-22 16:00 2014-03-27 Show GitHub Exploit DB Packet Storm
205380 5 警告 Apache Software Foundation
オラクル
- Apache Commons FileUpload におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認
CVE-2014-0050 2016-11-22 16:00 2014-02-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
351871 - leif_m._wright web_blog Leif M. Wright's Blog 3.5 does not make a password comparison when authenticating an administrator via a cookie, which allows remote attackers to bypass login authentication, probably by setting the … NVD-CWE-Other
CVE-2006-0844 2017-07-20 10:30 2006-02-22 Show GitHub Exploit DB Packet Storm
351872 - leif_m._wright web_blog Leif M. Wright's Blog 3.5 allows remote authenticated users with administrative privileges to execute arbitrary programs, including shell commands, by configuring the sendmail path to a malicious pat… NVD-CWE-Other
CVE-2006-0845 2017-07-20 10:30 2006-02-22 Show GitHub Exploit DB Packet Storm
351873 - leif_m._wright web_blog Multiple cross-site scripting (XSS) vulnerabilities in Leif M. Wright's Blog 3.5 allow remote attackers to inject arbitrary web script or HTML via the (1) Referer and (2) User-Agent HTTP headers, whi… NVD-CWE-Other
CVE-2006-0846 2017-07-20 10:30 2006-02-22 Show GitHub Exploit DB Packet Storm
351874 - cherrypy cherrypy Directory traversal vulnerability in the staticfilter component in CherryPy before 2.1.1 allows remote attackers to read arbitrary files via ".." sequences in unspecified vectors. NVD-CWE-Other
CVE-2006-0847 2017-07-20 10:30 2006-02-22 Show GitHub Exploit DB Packet Storm
351875 - apple mac_os_x
mac_os_x_server
The "Open 'safe' files after downloading" option in Safari on Apple Mac OS X allows remote user-assisted attackers to execute arbitrary commands by tricking a user into downloading a __MACOSX folder … CWE-16
Configuration
CVE-2006-0848 2017-07-20 10:30 2006-02-23 Show GitHub Exploit DB Packet Storm
351876 - ilch.de ilchclan SQL injection vulnerability in include/includes/user/login.php in ilchClan before 1.05g allows remote attackers to execute arbitrary SQL commands via the login_name parameter. NOTE: the provenance o… NVD-CWE-Other
CVE-2006-0850 2017-07-20 10:30 2006-02-23 Show GitHub Exploit DB Packet Storm
351877 - intensive_point iuser_ecommerce PHP remote file inclusion vulnerability in common.php in Intensive Point iUser Ecommerce allows remote attackers to include arbitrary files via a URL in the include_path variable, which is not initia… CWE-94
Code Injection
CVE-2006-0854 2017-07-20 10:30 2006-02-23 Show GitHub Exploit DB Packet Storm
351878 - coppermine coppermine_photo_gallery Directory traversal vulnerability in init.inc.php in Coppermine Photo Gallery 1.4.3 and earlier allows remote attackers to include arbitrary files via a .. (dot dot) sequence and trailing NULL (%00) … NVD-CWE-Other
CVE-2006-0872 2017-07-20 10:30 2006-02-24 Show GitHub Exploit DB Packet Storm
351879 - coppermine coppermine_photo_gallery Absolute path traversal vulnerability in docs/showdocs.php in Coppermine Photo Gallery 1.4.3 and earlier allows remote attackers to include arbitrary files via the f parameter, and possibly remote fi… NVD-CWE-Other
CVE-2006-0873 2017-07-20 10:30 2006-02-24 Show GitHub Exploit DB Packet Storm
351880 - openbsd
freebsd
openssh
freebsd
OpenSSH on FreeBSD 5.3 and 5.4, when used with OpenPAM, does not properly handle when a forked child process terminates during PAM authentication, which allows remote attackers to cause a denial of s… CWE-399
 Resource Management Errors
CVE-2006-0883 2017-07-20 10:30 2006-03-7 Show GitHub Exploit DB Packet Storm