Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 7, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
205851 2.7
Network 		dotCMS - dotCMS の dotTailLogServlet におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2016-3972 2016-04-25 10:12 2016-04-11 Show GitHub Exploit DB Packet Storm
205852 5.4 警告
Network 		dotCMS - dotCMS の lucene_search.jsp におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-3971 2016-04-25 10:12 2016-04-11 Show GitHub Exploit DB Packet Storm
205853 7.5 重要
Network 		Fedora Project
Libreswan Project		 - Libreswan におけるにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
CWE-310
CVE-2016-3071 2016-04-25 10:08 2016-04-4 Show GitHub Exploit DB Packet Storm
205854 7.8 重要
Local 		Panda Security - Windows 用 Panda Security for Business 製品で使用される Panda Endpoint Administration Agent におけるシステム権限を取得される脆弱性 CWE-Other
その他 		CVE-2016-3943 2016-04-25 10:03 2016-04-5 Show GitHub Exploit DB Packet Storm
205855 7.8 重要
Local 		Panda Security - Panda Security URL Filtering におけるシステム権限を取得される脆弱性 CWE-Other
その他 		CVE-2015-7378 2016-04-25 10:03 2015-09-28 Show GitHub Exploit DB Packet Storm
205856 6.5 警告
Network 		Huawei - Huawei AR3200 ルータのソフトウェアにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2016-3950 2016-04-22 18:55 2016-04-6 Show GitHub Exploit DB Packet Storm
205857 7.5 重要
Network 		SAP - SAP NetWeaver JAVA AS のエンキューサーバにおけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2016-4015 2016-04-22 18:13 2016-04-14 Show GitHub Exploit DB Packet Storm
205858 8.6 重要
Network 		SAP - SAP NetWeaver JAVA AS の UDDI コンポーネントにおける XML 外部エンティティの脆弱性 CWE-Other
その他 		CVE-2016-4014 2016-04-22 18:13 2016-04-14 Show GitHub Exploit DB Packet Storm
205859 9.8 緊急
Network 		Google - Android のメディアサーバの media/libmedia/IOMX.cpp におけるプロセスメモリから重要な情報を取得される脆弱性 CWE-119
バッファエラー 		CVE-2016-2418 2016-04-22 17:40 2016-04-4 Show GitHub Exploit DB Packet Storm
205860 6.5 警告
Local 		Google - Android の Qualcomm Power Management カーネルドライバにおける権限を取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2016-2411 2016-04-22 17:40 2016-04-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 7, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
351121 - phpmyfaq phpmyfaq PhpMyFaq 1.5.1 allows remote attackers to obtain sensitive information via a LANGCODE parameter that does not exist, which reveals the path in an error message. NVD-CWE-Other
CVE-2005-3050 2016-10-18 12:32 2005-09-24 Show GitHub Exploit DB Packet Storm
351122 - - - SQL injection vulnerability in module/down.inc.php in jportal 2.3.1 allows remote attackers to execute arbitrary SQL commands via the search field to download.php. NVD-CWE-Other
CVE-2005-3052 2016-10-18 12:32 2005-09-24 Show GitHub Exploit DB Packet Storm
351123 - powerarchiver powerarchiver_2002
powerarchiver_2003
powerarchiver_2004
powerarchiver_2006 		Multiple stack-based buffer overflows in PowerArchiver 8.10 through 9.5 Beta 4 and Beta 5 allow remote attackers to execute arbitrary code via a long filename in a (1) ACE or (2) ARJ archive. NVD-CWE-Other
CVE-2005-3061 2016-10-18 12:32 2005-09-28 Show GitHub Exploit DB Packet Storm
351124 - alstrasoft e-friends PHP remote file inclusion vulnerability in index.php in AlstraSoft E-Friends 4.0 allows remote attackers to execute arbitrary PHP code via the mode parameter. NVD-CWE-Other
CVE-2005-3062 2016-10-18 12:32 2005-09-28 Show GitHub Exploit DB Packet Storm
351125 - unu_networks mailgust SQL injection vulnerability in MailGust 1.9 allows remote attackers to execute arbitrary SQL commands via the email field on the password reminder page. NVD-CWE-Other
CVE-2005-3063 2016-10-18 12:32 2005-09-28 Show GitHub Exploit DB Packet Storm
351126 - cmsmadesimple cms_made_simple Cross-site scripting (XSS) vulnerability in index.php in CMS Made Simple 0.10 allows remote attackers to inject arbitrary web script or HTML via the page parameter. NVD-CWE-Other
CVE-2005-3083 2016-10-18 12:32 2005-09-28 Show GitHub Exploit DB Packet Storm
351127 - mantis mantis Cross-site scripting (XSS) vulnerability in bug_actiongroup_page.php in Mantis 0.19.0a1 through 1.0.0a3 allows remote attackers to inject arbitrary web script or HTML via the summary of the bug, whic… NVD-CWE-Other
CVE-2005-3090 2016-10-18 12:32 2005-09-29 Show GitHub Exploit DB Packet Storm
351128 - image-line_software fl_studio Heap-based buffer overflow in Image-Line Software FL Studio 5.0.1 allows remote attackers to execute arbitrary code via a .flp file that contains a long path to a (1) .mid or (2) .wav file. NVD-CWE-Other
CVE-2005-3092 2016-10-18 12:32 2005-09-29 Show GitHub Exploit DB Packet Storm
351129 - nateon nateon_messenger The ActiveX control for NateOn Messenger (NateonDownloadManager.ocx) allows remote attackers to download and execute arbitrary programs by setting the arguments to the GotNate.Excute method. NVD-CWE-Other
CVE-2005-3113 2016-10-18 12:32 2005-09-30 Show GitHub Exploit DB Packet Storm
351130 - nateon nateon_messenger Buffer overflow in the ActiveX control for NateOn Messenger (NateonDownloadManager.ocx) allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long thi… NVD-CWE-Other
CVE-2005-3114 2016-10-18 12:32 2005-09-30 Show GitHub Exploit DB Packet Storm