Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
207161	7.2	危険	ヒューレット・パッカード・エンタープライズ	-	複数の HPE Network Switch のソフトウェアにおけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2015-6860	2016-01-19 16:19	2015-11-10	Show	GitHub Exploit DB Packet Storm

207162	10	危険	Colorscore project	-	Ruby 用 Colorscore gem の lib/colorscore/histogram.rb の Histogram クラスの初期化メソッドにおける任意のコードを実行される脆弱性	CWE-Other その他	CVE-2015-7541	2016-01-19 11:05	2015-09-29	Show	GitHub Exploit DB Packet Storm

207163	10	危険	アドバンテック株式会社	-	Advantech EKI-132x デバイスのファームウェアにおける認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2015-7938	2016-01-19 10:49	2015-12-10	Show	GitHub Exploit DB Packet Storm

207164	6.5	警告	アドバンテック株式会社	-	Advantech WebAccess における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2015-3947	2016-01-19 10:49	2015-05-12	Show	GitHub Exploit DB Packet Storm

207165	6.8	警告	アドバンテック株式会社	-	Advantech WebAccess におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2015-3946	2016-01-19 10:49	2015-05-12	Show	GitHub Exploit DB Packet Storm

207166	5	警告	アドバンテック株式会社	-	Advantech WebAccess における電子メールプロジェクトアカウントについての重要な平文情報を読まれる脆弱性	CWE-200 情報漏えい	CVE-2015-3943	2016-01-19 10:49	2015-05-12	Show	GitHub Exploit DB Packet Storm

207167	9.3	危険	Unitronics	-	Unitronics VisiLogic OPLC IDE におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2015-7939	2016-01-19 10:13	2015-11-12	Show	GitHub Exploit DB Packet Storm

207168	4.3	警告	AVM	-	AVM FRITZ!OS の Push-Service-Mails 機能におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2015-7242	2016-01-18 15:22	2015-07-13	Show	GitHub Exploit DB Packet Storm

207169	7.5	危険	Joomla!	-	Joomla! における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2015-8769	2016-01-18 15:03	2015-12-21	Show	GitHub Exploit DB Packet Storm

207170	5	警告	Python Software Foundation	-	Python 用 RSA パッケージの verify 関数における過度に小さな公開指数を持つ署名を偽造される脆弱性	CWE-20 不適切な入力確認	CVE-2016-1494	2016-01-18 14:57	2016-01-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
346341	-	phpoutsourcing	noahs_classifieds	Noah's Classifieds 1.3 and earlier allows remote attackers to obtain sensitive information via an invalid list parameter in the showdetails method to index.php, which reveals the path in an error mes…	NVD-CWE-Other	CVE-2006-1332	2017-07-20 10:30	2006-03-21	Show	GitHub Exploit DB Packet Storm

346342	-	gnome	screensaver	gnome screensaver before 2.14, when running on an X server with AllowDeactivateGrabs and AllowClosedownGrabs enabled, allows attackers with physical access to cause the screensaver to crash and acces…	NVD-CWE-Other	CVE-2006-1335	2017-07-20 10:30	2006-03-21	Show	GitHub Exploit DB Packet Storm

346343	-	gnome	screensaver	The vulnerability has reportedly been fixed in version 2.14.	NVD-CWE-Other	CVE-2006-1335	2017-07-20 10:30	2006-03-21	Show	GitHub Exploit DB Packet Storm

346344	-	mailenable	mailenable	Buffer overflow in the POP 3 (POP3) service in MailEnable Standard Edition before 1.93, Professional Edition before 1.73, and Enterprise Edition before 1.21 allows remote attackers to execute arbitra…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2006-1337	2017-07-20 10:30	2006-03-21	Show	GitHub Exploit DB Packet Storm

346345	-	mailenable	mailenable_enterprise mailenable_professional	Webmail in MailEnable Professional Edition before 1.73 and Enterprise Edition before 1.21 allows remote attackers to cause a denial of service (CPU consumption) via unspecified vectors involving "inc…	CWE-399 Resource Management Errors	CVE-2006-1338	2017-07-20 10:30	2006-03-21	Show	GitHub Exploit DB Packet Storm

346346	-	bea	weblogic_server	BEA WebLogic Server 6.1 SP7 and earlier allows remote attackers to read arbitrary files via unknown attack vectors related to a "default internal servlet" accessed through HTTP.	NVD-CWE-Other	CVE-2006-1351	2017-07-20 10:30	2006-03-22	Show	GitHub Exploit DB Packet Storm

346347	-	bea	weblogic_server	BEA WebLogic Server and WebLogic Express 8.1 SP4 and earlier, 7.0 SP6 and earlier, and WebLogic Server 6.1 SP7 and earlier allow remote attackers to cause a denial of service (memory exhaustion) via …	NVD-CWE-Other	CVE-2006-1352	2017-07-20 10:30	2006-03-22	Show	GitHub Exploit DB Packet Storm

346348	-	andrew_hsu	libvc rolo	Stack-based buffer overflow in the count_vcards function in LibVC 3, as used in Rolo, allows user-assisted attackers to execute arbitrary code via a vCard file (e.g. contacts.vcf) containing a long l…	NVD-CWE-Other	CVE-2006-1356	2017-07-20 10:30	2006-03-22	Show	GitHub Exploit DB Packet Storm

346349	-	oswiki	oswiki	Cross-site scripting (XSS) vulnerability in OSWiki before 0.3.1 allows remote attackers to inject arbitrary web script or HTML via the username field to (1) list.rhtml or (2) show.rhtml.	NVD-CWE-Other	CVE-2006-1361	2017-07-20 10:30	2006-03-23	Show	GitHub Exploit DB Packet Storm

346350	-	oswiki	oswiki	This vulnerability is addressed in the following product release: OSWiki, OSWiki, 0.3.1	NVD-CWE-Other	CVE-2006-1361	2017-07-20 10:30	2006-03-23	Show	GitHub Exploit DB Packet Storm