Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 11, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
207151 7.5 危険 FFmpeg - FFmpeg の libavcodec/sanm.c の destroy_buffers 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2015-6822 2015-09-9 12:27 2015-07-13 Show GitHub Exploit DB Packet Storm
207152 7.5 危険 FFmpeg - FFmpeg の libavcodec/mpegvideo.c の ff_mpv_common_init 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2015-6821 2015-09-9 12:27 2015-07-10 Show GitHub Exploit DB Packet Storm
207153 7.5 危険 FFmpeg - FFmpeg の libavcodec/aacsbr.c の ff_sbr_apply 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2015-6820 2015-09-9 12:27 2015-07-1 Show GitHub Exploit DB Packet Storm
207154 7.5 危険 FFmpeg - FFmpeg の libavcodec/mjpegdec.c の ff_mjpeg_decode_frame 関数における整数アンダーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2015-6819 2015-09-9 12:27 2015-06-30 Show GitHub Exploit DB Packet Storm
207155 7.5 危険 FFmpeg - FFmpeg の libavcodec/pngdec.c の decode_ihdr_chunk 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2015-6818 2015-09-9 12:27 2015-06-30 Show GitHub Exploit DB Packet Storm
207156 5 警告 シスコシステムズ - Cisco TelePresence IX5000 における平文の HTTPS トラフィックを取得される脆弱性 CWE-200
情報漏えい 		CVE-2015-6276 2015-09-9 12:03 2015-09-3 Show GitHub Exploit DB Packet Storm
207157 5 警告 GeddyJS - Node.js 用 Geddy の lib/app/index.js におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2015-5688 2015-09-7 18:36 2015-07-28 Show GitHub Exploit DB Packet Storm
207158 3.5 注意 Invision Power Services, Inc - Invision Power Services IPS Community Suite におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2015-6810 2015-09-7 18:35 2015-08-5 Show GitHub Exploit DB Packet Storm
207159 4.3 警告 OctoberCMS - October CMS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2015-5612 2015-09-7 18:26 2015-07-21 Show GitHub Exploit DB Packet Storm
207160 7.8 危険 Invision Power Services, Inc - Invision Power Services IPS Community Suite におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2015-6812 2015-09-7 18:24 2015-08-5 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
349381 - sukria
debian 		backup_manager
debian_linux 		Backup Manager (backup-manager) before 0.5.8 creates backup files with world-readable default permissions, which allows local users to obtain sensitive information. NVD-CWE-Other
CVE-2005-1855 2008-09-6 05:50 2005-08-30 Show GitHub Exploit DB Packet Storm
349382 - - - The CD-burning feature in backup-manager 0.5.8 and earlier uses a fixed filename in a world-writable directory for logging, which allows local users to overwrite files via a symlink attack. NVD-CWE-Other
CVE-2005-1856 2008-09-6 05:50 2005-08-30 Show GitHub Exploit DB Packet Storm
349383 - fuse fuse FUSE 2.x before 2.3.0 does not properly clear previously used memory from unfilled pages when the filesystem returns a short byte count to a read request, which may allow local users to obtain sensit… NVD-CWE-Other
CVE-2005-1858 2008-09-6 05:50 2005-06-3 Show GitHub Exploit DB Packet Storm
349384 - vincent_hor calendarix_advanced PHP remote file inclusion vulnerability in cal_admintop.php in Calendarix Advanced 1.5 allows remote attackers to execute arbitrary PHP code via the calpath parameter. NVD-CWE-Other
CVE-2005-1864 2008-09-6 05:50 2005-06-9 Show GitHub Exploit DB Packet Storm
349385 - vincent_hor calendarix_advanced Cross-site scripting (XSS) vulnerability in calendar.php in Calendarix Advanced 1.5 allows remote attackers to inject arbitrary web script or HTML via the year parameter. NVD-CWE-Other
CVE-2005-1866 2008-09-6 05:50 2005-05-31 Show GitHub Exploit DB Packet Storm
349386 - lpanel lpanel Cross-site scripting (XSS) vulnerability in view_ticket.php in Lpanel 1.59 and earlier allows remote attackers to inject arbitrary web script or HTML and obtain sensitive information via the pid para… NVD-CWE-Other
CVE-2005-1877 2008-09-6 05:50 2005-06-6 Show GitHub Exploit DB Packet Storm
349387 - giptables giptables_firewall GIPTables Firewall 1.1 and earlier allows local users to overwrite arbitrary files via a symlink attack on the temp.ip.addresses temporary file. NVD-CWE-Other
CVE-2005-1878 2008-09-6 05:50 2005-06-9 Show GitHub Exploit DB Packet Storm
349388 - yapig yapig PHP remote file inclusion vulnerability in last_gallery.php in YaPiG 0.93u and 0.94u allows remote attackers to execute arbitrary PHP code via the YAPIG_PATH parameter. NVD-CWE-Other
CVE-2005-1882 2008-09-6 05:50 2005-06-9 Show GitHub Exploit DB Packet Storm
349389 - yapig yapig global.php in YaPiG 0.92b allows remote attackers to include arbitrary local files via the BASE_DIR parameter. NVD-CWE-Other
CVE-2005-1883 2008-09-6 05:50 2005-06-9 Show GitHub Exploit DB Packet Storm
349390 - yapig yapig Directory traversal vulnerability in the (1) rmdir or (2) mkdir commands in upload.php in YaPiG 0.92b, 0.93u and 0.94u allows remote attackers to create or delete arbitrary directories via a .. (dot … NVD-CWE-Other
CVE-2005-1884 2008-09-6 05:50 2005-06-9 Show GitHub Exploit DB Packet Storm