Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 6, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
206011 4.3 警告
Network 		Atlassian - Atlassian Confluence における設定ファイルを読まれる脆弱性 CWE-200
情報漏えい 		CVE-2015-8399 2016-04-18 14:52 2015-11-19 Show GitHub Exploit DB Packet Storm
206012 8.8 重要
Network 		Debian
OAR project		 - OAR の oarsh スクリプトにおける重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-1235 2016-04-18 14:52 2016-03-31 Show GitHub Exploit DB Packet Storm
206013 5.3 警告
Network 		Google
レッドハット		 - Kubernetes における任意の pod ログが読まれる脆弱性 CWE-200
情報漏えい 		CVE-2015-7528 2016-04-18 14:47 2015-12-3 Show GitHub Exploit DB Packet Storm
206014 6.1 警告
Network 		フォーティネット - FortiOS の Web ユーザインターフェースにおけるユーザを任意の Web サイトにリダイレクトされる脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-3978 2016-04-18 14:45 2016-03-16 Show GitHub Exploit DB Packet Storm
206015 9.8 緊急
Network 		アドビシステムズ
Google		 - Adobe Flash Player における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2016-1021 2016-04-15 18:17 2016-04-7 Show GitHub Exploit DB Packet Storm
206016 9.8 緊急
Network 		アドビシステムズ
Google		 - Adobe Flash Player における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2016-1020 2016-04-15 18:17 2016-04-7 Show GitHub Exploit DB Packet Storm
206017 8.8 重要
Network 		マイクロソフト
アドビシステムズ
Google		 - Adobe Flash Player におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2016-1018 2016-04-15 18:17 2016-04-7 Show GitHub Exploit DB Packet Storm
206018 8.8 重要
Network 		マイクロソフト
アドビシステムズ
Google		 - Adobe Flash Player の LoadVars.decode 関数における任意のコードを実行される脆弱性 CWE-Other
その他 		CVE-2016-1017 2016-04-15 18:17 2016-04-7 Show GitHub Exploit DB Packet Storm
206019 8.8 重要
Network 		マイクロソフト
アドビシステムズ
Google		 - Adobe Flash Player の Transform オブジェクトの実装における任意のコードを実行される脆弱性 CWE-Other
その他 		CVE-2016-1016 2016-04-15 18:17 2016-04-7 Show GitHub Exploit DB Packet Storm
206020 7.8 重要
Local 		マイクロソフト
アドビシステムズ
Google		 - Adobe Flash Player における権限を取得される脆弱性 CWE-Other
その他 		CVE-2016-1014 2016-04-15 18:17 2016-04-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 6, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
349071 - tiki tikiwiki_cms\/groupware Multiple cross-site scripting (XSS) vulnerabilities in Tiki CMS/Groupware (TikiWiki) 1.8.1 and earlier allow remote attackers to inject arbitrary web script or HTML via via the (1) theme parameter to… CWE-79
Cross-site Scripting 		CVE-2004-1924 2017-07-11 10:31 2004-04-11 Show GitHub Exploit DB Packet Storm
349072 - tiki tikiwiki_cms\/groupware Multiple SQL injection vulnerabilities in Tiki CMS/Groupware (TikiWiki) 1.8.1 and earlier allow remote attackers to execute arbitrary SQL commands via the sort_mode parameter in (1) tiki-usermenu.php… CWE-89
SQL Injection 		CVE-2004-1925 2017-07-11 10:31 2004-04-12 Show GitHub Exploit DB Packet Storm
349073 - tiki tikiwiki_cms\/groupware The image upload feature in Tiki CMS/Groupware (TikiWiki) 1.8.1 and earlier allows remote attackers to upload and possibly execute arbitrary files via the img/wiki_up URL. CWE-20
 Improper Input Validation  		CVE-2004-1928 2017-07-11 10:31 2004-04-12 Show GitHub Exploit DB Packet Storm
349074 - francisco_burzi php-nuke SQL injection vulnerability in the bblogin function in functions.php in PHP-Nuke 6.x through 7.2 allows remote attackers to bypass authentication and gain access by injecting base64-encoded SQL code … NVD-CWE-Other
CVE-2004-1929 2017-07-11 10:31 2004-04-13 Show GitHub Exploit DB Packet Storm
349075 - francisco_burzi php-nuke Cross-site scripting (XSS) vulnerability in the cookiedecode function in mainfile.php for PHP-Nuke 6.x through 7.2, when themes are used, allows remote attackers to inject arbitrary web script or HTM… NVD-CWE-Other
CVE-2004-1930 2017-07-11 10:31 2004-04-12 Show GitHub Exploit DB Packet Storm
349076 - francisco_burzi php-nuke SQL injection vulnerability in (1) auth.php and (2) admin.php in PHP-Nuke 6.x through 7.2 allows remote attackers to execute arbitrary SQL code and create an administrator account via base64-encoded … NVD-CWE-Other
CVE-2004-1932 2017-07-11 10:31 2004-04-12 Show GitHub Exploit DB Packet Storm
349077 - - - Citadel/UX 5.00 through 6.14 installs the database directory and files with world-read permissions, which could allow local users to bypass access controls and read unauthorized messages. NVD-CWE-Other
CVE-2004-1933 2017-07-11 10:31 2004-04-12 Show GitHub Exploit DB Packet Storm
349078 - isesam gemitel PHP remote file inclusion vulnerability in affich.php in Gemitel 3.50 allows remote attackers to execute arbitrary PHP code via the base parameter. NVD-CWE-Other
CVE-2004-1934 2017-07-11 10:31 2004-04-15 Show GitHub Exploit DB Packet Storm
349079 - sct_corporation campus_pipeline Cross-site scripting (XSS) vulnerability in SCT Campus Pipeline allows remote attackers to inject arbitrary web script or HTML via onload, onmouseover, and other Javascript events in an e-mail attach… NVD-CWE-Other
CVE-2004-1935 2017-07-11 10:31 2004-04-15 Show GitHub Exploit DB Packet Storm
349080 - zonelabs zonealarm ZoneAlarm Pro 4.5.538.001 and possibly other versions allows remote attackers to bypass e-mail protection via attachments whose names contain certain non-English characters. NVD-CWE-Other
CVE-2004-1936 2017-07-11 10:31 2004-04-14 Show GitHub Exploit DB Packet Storm