Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 20, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
208511	7.2	危険	マイクロソフト	-	複数の Microsoft Windows 製品における権限昇格の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2015-2524	2015-09-10 11:23	2015-09-8	Show	GitHub Exploit DB Packet Storm

208512	4.3	警告	rakutoネット	-	hitSuji (rktSNS2) におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2015-2986	2015-09-9 14:11	2015-09-3	Show	GitHub Exploit DB Packet Storm

208513	5	警告	ガイドパークドットコム	-	BBS X102 におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2015-2985	2015-09-9 14:11	2015-09-3	Show	GitHub Exploit DB Packet Storm

208514	4.3	警告	Free Document Management Software	-	OpenDocMan におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2015-5625	2015-09-9 14:11	2015-09-4	Show	GitHub Exploit DB Packet Storm

208515	6.8	警告	フリービット株式会社	-	ActiveX コントロール ELPhoneBtnV6 におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2015-5624	2015-09-9 14:11	2015-09-7	Show	GitHub Exploit DB Packet Storm

208516	6.8	警告	高橋直樹	-	NScripter におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2015-2991	2015-09-9 14:11	2015-09-2	Show	GitHub Exploit DB Packet Storm

208517	4	警告	株式会社ネオジャパン	-	desknet's NEO におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2015-2990	2015-09-9 14:11	2015-09-1	Show	GitHub Exploit DB Packet Storm

208518	5	警告	LEMON-S PHP	-	Twit掲示板におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2015-2989	2015-09-9 14:11	2015-09-1	Show	GitHub Exploit DB Packet Storm

208519	7.5	危険	FFmpeg	-	FFmpeg の libswscale/utils.c の sws_init_context 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2015-6824	2015-09-9 12:27	2015-07-16	Show	GitHub Exploit DB Packet Storm

208520	7.5	危険	FFmpeg	-	FFmpeg の libavcodec/alac.c の allocate_buffers 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2015-6823	2015-09-9 12:27	2015-07-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 20, 2026, 4:14 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
351751	-	delegate etl	delegate	The DNS implementation in DeleGate 8.10.2 and earlier allows remote attackers to cause a denial of service via a compressed DNS packet with a label length byte with an incorrect offset, which could t…	NVD-CWE-Other	CVE-2005-0036	2008-09-6 05:45	2005-12-31	Show	GitHub Exploit DB Packet Storm

351752	-	dnrd	dnrd	The DNS implementation of DNRD before 2.10 allows remote attackers to cause a denial of service via a compressed DNS packet with a label length byte with an incorrect offset, which could trigger an i…	NVD-CWE-Other	CVE-2005-0037	2008-09-6 05:45	2005-12-31	Show	GitHub Exploit DB Packet Storm

351753	-	dnrd	dnrd	This vulnerability is addressed in the following product release: dnrd, dnrd, 2.10	NVD-CWE-Other	CVE-2005-0037	2008-09-6 05:45	2005-12-31	Show	GitHub Exploit DB Packet Storm

351754	-	powerdns	powerdns	The DNS implementation of PowerDNS 2.9.16 and earlier allows remote attackers to cause a denial of service via a compressed DNS packet with a label length byte with an incorrect offset, which could t…	NVD-CWE-Other	CVE-2005-0038	2008-09-6 05:45	2005-12-31	Show	GitHub Exploit DB Packet Storm

351755	-	synaesthesia	synaesthesia	Synaesthesia 2.1 and earlier, and possibly other versions, when installed setuid root, does not drop privileges before processing configuration and mixer files, which allows local users to read arbit…	NVD-CWE-Other	CVE-2005-0070	2008-09-6 05:45	2005-05-2	Show	GitHub Exploit DB Packet Storm

351756	-	tcp	tcp	The original design of TCP does not check that the TCP sequence number in an ICMP error message is within the range of sequence numbers for data that has been sent but not acknowledged (aka "TCP sequ…	NVD-CWE-Other	CVE-2005-0065	2008-09-6 05:45	2005-05-2	Show	GitHub Exploit DB Packet Storm

351757	-	tcp	tcp	The original design of TCP does not check that the TCP Acknowledgement number in an ICMP error message generated by an intermediate router is within the range of possible values for data that has alr…	NVD-CWE-Other	CVE-2005-0066	2008-09-6 05:45	2004-12-22	Show	GitHub Exploit DB Packet Storm

351758	-	tcp	tcp	The original design of TCP does not require that port numbers be assigned randomly (aka "Port randomization"), which makes it easier for attackers to forge ICMP error messages for specific TCP connec…	NVD-CWE-Other	CVE-2005-0067	2008-09-6 05:45	2004-12-22	Show	GitHub Exploit DB Packet Storm

351759	-	tcp	tcp	The original design of ICMP does not require authentication for host-generated ICMP error messages, which makes it easier for attackers to forge ICMP error messages for specific TCP connections and c…	NVD-CWE-Other	CVE-2005-0068	2008-09-6 05:45	2004-12-22	Show	GitHub Exploit DB Packet Storm

351760	-	debian	sympa	Buffer overflow in queue.c in a support script for sympa 3.3.3, when running setuid, allows local users to execute arbitrary code.	NVD-CWE-Other	CVE-2005-0073	2008-09-6 05:45	2005-05-2	Show	GitHub Exploit DB Packet Storm