Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 22, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
206241 9.8 緊急
Network 		SAP - SAP TREX の不特定のインターフェースにおける SIDadm 権限で任意の OS コマンドを実行される脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2016-6147 2016-08-9 16:22 2016-02-10 Show GitHub Exploit DB Packet Storm
206242 9.8 緊急
Network 		SAP - SAP TREX における任意のファイルに書き込まれる脆弱性 CWE-Other
その他 		CVE-2016-6140 2016-08-9 16:22 2016-07-20 Show GitHub Exploit DB Packet Storm
206243 9.8 緊急
Network 		SAP - SAP TREX における任意のファイルを読まれる脆弱性 CWE-noinfo
情報不足 		CVE-2016-6139 2016-08-9 16:22 2016-07-20 Show GitHub Exploit DB Packet Storm
206244 9.8 緊急
Network 		SAP - SAP TREX におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2016-6138 2016-08-9 16:22 2016-07-20 Show GitHub Exploit DB Packet Storm
206245 6.8 警告
Network 		IBM - IBM FileNet Workplace におけるオープンリダイレクトの脆弱性 CWE-Other
その他 		CVE-2016-5878 2016-08-9 15:08 2016-07-29 Show GitHub Exploit DB Packet Storm
206246 5.4 警告
Network 		IBM - IBM FileNet Workplace におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-3054 2016-08-9 15:08 2016-07-22 Show GitHub Exploit DB Packet Storm
206247 8.8 重要
Network 		IBM - IBM Security QRadar SIEM における root 権限で任意の OS コマンドを実行される脆弱性 CWE-Other
その他 		CVE-2016-2875 2016-08-9 15:08 2016-07-29 Show GitHub Exploit DB Packet Storm
206248 3.7
Network 		IBM - IBM AIX および VIOS の mustendd ドライバにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2016-0281 2016-08-9 15:08 2016-07-28 Show GitHub Exploit DB Packet Storm
206249 6.5 警告
Network 		レッドハット - マルチテナント環境の Red Hat OpenShift Enterprise で使用される Kubernetes の API サーバにおける重要なプロジェクトおよびユーザ情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2016-5392 2016-08-9 12:39 2016-07-14 Show GitHub Exploit DB Packet Storm
206250 6.1 警告
Network 		レッドハット - Red Hat Satellite の spacewalk-java におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-3097 2016-08-9 12:39 2016-07-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 22, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
347471 - alexandre_amaral xoops_celepar Multiple cross-site scripting (XSS) vulnerabilities in the Qas (aka Quas) module for XOOPS Celepar allow remote attackers to inject arbitrary web script or HTML via (1) the cod_categoria parameter to… CWE-79
Cross-site Scripting 		CVE-2009-4713 2017-09-19 10:30 2010-03-16 Show GitHub Exploit DB Packet Storm
347472 - andrews-web aw-bannerad Multiple SQL injection vulnerabilities in Admin/index.asp in Andrews-Web (A-W) BannerAd 1.0 allow remote attackers to execute arbitrary SQL commands via the (1) User and (2) Password parameters. NOTE… CWE-89
SQL Injection 		CVE-2009-4721 2017-09-19 10:30 2010-03-19 Show GitHub Exploit DB Packet Storm
347473 - limny limny SQL injection vulnerability in the CheckLogin function in includes/functions.php in Limny 1.01, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the us… CWE-89
SQL Injection 		CVE-2009-4722 2017-09-19 10:30 2010-03-19 Show GitHub Exploit DB Packet Storm
347474 - netpet netpet_cms Directory traversal vulnerability in confirm.php in Netpet CMS 1.9 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the language parameter. CWE-22
Path Traversal 		CVE-2009-4723 2017-09-19 10:30 2010-03-19 Show GitHub Exploit DB Packet Storm
347475 - paymentprocessorscript ppscript SQL injection vulnerability in shop.htm in PaymentProcessorScript.net PPScript allows remote attackers to execute arbitrary SQL commands via the cid parameter. CWE-89
SQL Injection 		CVE-2009-4724 2017-09-19 10:30 2010-03-19 Show GitHub Exploit DB Packet Storm
347476 - arabportal arab_portal Directory traversal vulnerability in modules/aljazeera/admin/setup.php in Arab Portal 2.2 and earlier, when register_globals is enabled and magic_quotes_gpc is disabled, allows remote attackers to in… CWE-22
Path Traversal 		CVE-2009-4725 2017-09-19 10:30 2010-03-19 Show GitHub Exploit DB Packet Storm
347477 - olivier_michaud_pierre-yves quickdev4php Directory traversal vulnerability in download.php in Quickdev 4 PHP allows remote attackers to read arbitrary files via a .. (dot dot) in the file parameter. CWE-22
Path Traversal 		CVE-2009-4726 2017-09-19 10:30 2010-03-19 Show GitHub Exploit DB Packet Storm
347478 - junglescripts ajax_short_url_script SQL injection vulnerability in x/login in JungleScripts Ajax Short Url Script allows remote attackers to execute arbitrary SQL commands via the username parameter. CWE-89
SQL Injection 		CVE-2009-4727 2017-09-19 10:30 2010-03-19 Show GitHub Exploit DB Packet Storm
347479 - questions_answered questions_answered SQL injection vulnerability in the administrative interface in Questions Answered 1.3 allows remote attackers to execute arbitrary SQL commands via the username parameter. NOTE: some of these detail… CWE-89
SQL Injection 		CVE-2009-4728 2017-09-19 10:30 2010-03-19 Show GitHub Exploit DB Packet Storm
347480 - x10media adult_script Multiple cross-site scripting (XSS) vulnerabilities in x10 Adult Media Script 1.7 allow remote attackers to inject arbitrary web script or HTML via the (1) pic_id parameter to includes/video_ad.php, … CWE-79
Cross-site Scripting 		CVE-2009-4729 2017-09-19 10:30 2010-03-19 Show GitHub Exploit DB Packet Storm