Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 31, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
206601 7.5 危険 The PHP Group - PHP の ext/intl/collator/collator_sort.c の Collator::sortWithSortKeys 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2015-8616 2016-01-26 15:25 2015-12-17 Show GitHub Exploit DB Packet Storm
206602 7.5 危険 The PHP Group - PHP の ext/soap/soap.c の SoapClient __call メソッドにおける任意のコードを実行される脆弱性 CWE-Other
その他 		CVE-2015-6836 2016-01-26 15:25 2015-09-3 Show GitHub Exploit DB Packet Storm
206603 5 警告 The PHP Group - PHP の PharData クラスにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2015-6833 2016-01-26 15:25 2015-08-6 Show GitHub Exploit DB Packet Storm
206604 7.5 危険 The PHP Group - PHP の ext/spl/spl_array.c の SPL アンシリアライズの実装における任意のコードを実行される脆弱性 CWE-Other
その他 		CVE-2015-6832 2016-01-26 15:25 2015-08-6 Show GitHub Exploit DB Packet Storm
206605 7.5 危険 The PHP Group - PHP の SPL における任意のコードを実行される脆弱性 CWE-Other
その他 		CVE-2015-6831 2016-01-26 15:25 2015-08-6 Show GitHub Exploit DB Packet Storm
206606 7.5 危険 The PHP Group - PHP の ext/standard/string.c の php_str_replace_in_subject 関数における任意のコードを実行される脆弱性 CWE-Other
その他 		CVE-2015-6527 2016-01-26 15:25 2015-12-3 Show GitHub Exploit DB Packet Storm
206607 7.5 危険 The PHP Group - PHP の ext/phar/phar.c の phar_fix_filepath 関数におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2015-5590 2016-01-26 15:25 2015-07-9 Show GitHub Exploit DB Packet Storm
206608 5.5 警告 OpenStack - OpenStack Orchestration API の template-validate コマンドにおけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2015-5295 2016-01-26 14:48 2015-09-16 Show GitHub Exploit DB Packet Storm
206609 7.5 危険 Jason A. Donenfeld - cgit の authenticate_post 関数における整数オーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2016-1901 2016-01-26 14:33 2016-01-14 Show GitHub Exploit DB Packet Storm
206610 4.3 警告 Jason A. Donenfeld - cgit の ui-shared.c の cgit_print_http_headers 関数における CRLF インジェクションの脆弱性 CWE-Other
その他 		CVE-2016-1900 2016-01-26 14:33 2016-01-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
347411 - postnuke_software_foundation postcalendar SQL injection vulnerability in PostCalendar 4.0.0 allows remote attackers to execute arbitrary SQL commands via search queries. NVD-CWE-Other
CVE-2004-1787 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
347412 - zyxel zywall10 Cross-site scripting (XSS) vulnerability in the web management interface in ZyWALL 10 4.07 allows remote attackers to inject arbitrary web script or HTML via the rpAuth_1 page. NVD-CWE-Other
CVE-2004-1789 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
347413 - edimax full_rate_adsl_router Cross-site scripting (XSS) vulnerability in the web management interface in Edimax AR-6004 ADSL Routers allows remote attackers to inject arbitrary web script or HTML via the URL. NVD-CWE-Other
CVE-2004-1790 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
347414 - yatsoft switch_off swnet.dll in YaSoft Switch Off 2.3 and earlier allows remote attackers to cause a denial of service (infinite loop) via a long packet with two CRLF sequences to the service management port (TCP 8000). NVD-CWE-Other
CVE-2004-1792 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
347415 - yatsoft switch_off Stack-based buffer overflow in swnet.dll in YaSoft Switch Off 2.3 and earlier allows remote authenticated users to execute arbitrary code via a long message parameter in a SendMsg action to action.ht… NVD-CWE-Other
CVE-2004-1793 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
347416 - vcard4j vcard4j Cross-site scripting (XSS) vulnerability in the VCard4J Toolkit allows remote attackers to inject arbitrary web script or HTML via the NICKNAME tag in a vCard. NVD-CWE-Other
CVE-2004-1794 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
347417 - hotnews hotnews PHP remote file inclusion vulnerability in HotNews 0.7.2 and earlier allows remote attackers to execute arbitrary PHP code via the (1) config[header] parameter to hotnews-engine.inc.php3 or (2) confi… NVD-CWE-Other
CVE-2004-1796 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
347418 - - - Cross-site scripting (XSS) vulnerability in search.php for FreznoShop 1.3.0 RC1 and earlier allows remote attackers to inject arbitrary web script or HTML via the search parameter. NVD-CWE-Other
CVE-2004-1797 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
347419 - - - Unknown vulnerability in Sysbotz SimpleData 4.0.1 and possibly earlier versions allows remote attackers to gain access via a crafted URL and a certain cookie. NVD-CWE-Other
CVE-2004-1800 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm
347420 - pwebserver pwebserver_web_server Directory traversal vulnerability in PWebServer 0.3.3 allows remote attackers to read arbitrary files via a .. (dot dot) in the URL. NVD-CWE-Other
CVE-2004-1801 2017-07-11 10:31 2004-12-31 Show GitHub Exploit DB Packet Storm