Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 27, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
209021	6.5	警告 Network	Apache Software Foundation	-	Apache OpenMeetings の Import/Export System Backups 機能におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2016-0784	2016-04-18 17:36	2016-03-25	Show	GitHub Exploit DB Packet Storm

209022	7.5	重要 Network	Apache Software Foundation	-	Apache OpenMeetings の sendHashByUser 関数における任意のユーザのパスワードをリセットされる脆弱性	CWE-200 情報漏えい	CVE-2016-0783	2016-04-18 17:36	2016-03-25	Show	GitHub Exploit DB Packet Storm

209023	7.8	重要 Local	Apache Software Foundation	-	Apache LDAP Studio および Apache Directory Studio の CSV エクスポートにおける任意のコマンドを実行される脆弱性	CWE-Other その他	CVE-2015-5349	2016-04-18 17:36	2015-07-1	Show	GitHub Exploit DB Packet Storm

209024	6.2	警告 Local	openSUSE project SUSE	-	openSUSE および SUSE Linux Enterprise の MySQL Community Server パッケージおよび MariaDB パッケージにおけるデータベースの認証情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2015-5969	2016-04-18 17:22	2015-11-30	Show	GitHub Exploit DB Packet Storm

209025	7.5	重要 Network	Huawei	-	複数の Huawei Quidway スイッチ製品のソフトウェアにおけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2016-3678	2016-04-18 17:08	2016-03-30	Show	GitHub Exploit DB Packet Storm

209026	6.4	警告 Adjacent	Huawei	-	Huawei E3276s USB モデムのソフトウェアにおけるネットワークトラフィックを傍受される脆弱性	CWE-Other その他	CVE-2016-3676	2016-04-18 17:08	2016-03-30	Show	GitHub Exploit DB Packet Storm

209027	8.1	重要 Network	Huawei	-	Huawei Policy Center のソフトウェアにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2016-3675	2016-04-18 17:08	2016-03-25	Show	GitHub Exploit DB Packet Storm

209028	8.8	重要 Network	Huawei	-	Huawei Policy Center のソフトウェアにおける権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2016-2405	2016-04-18 17:08	2016-02-17	Show	GitHub Exploit DB Packet Storm

209029	5.5	警告 Local	Huawei	-	Huawei P8 スマートフォンのソフトウェアのグラフィックドライバにおけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2016-1496	2016-04-18 17:08	2016-01-13	Show	GitHub Exploit DB Packet Storm

209030	7.8	重要 Local	Huawei	-	Huawei Mate S スマートフォンのソフトウェアのグラフィックドライバにおける整数オーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2016-1495	2016-04-18 17:08	2016-02-3	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 27, 2026, 4:35 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
344591	-	nucleus_group	nucleus_cms	PHP remote file inclusion vulnerability in nucleus/libs/PLUGINADMIN.php in Nucleus 3.22 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the GLOBALS[DIR_LIBS] parameter.	NVD-CWE-Other	CVE-2006-2583	2018-10-19 01:40	2006-05-25	Show	GitHub Exploit DB Packet Storm

344592	-	skyebox	skyebox	Multiple cross-site scripting (XSS) vulnerabilities in post.php in SkyeBox 1.2.0 allow remote attackers to inject arbitrary web script or HTML via the (1) name or (2) message parameters. NOTE: the p…	NVD-CWE-Other	CVE-2006-2584	2018-10-19 01:40	2006-05-25	Show	GitHub Exploit DB Packet Storm

344593	-	even_balance	punkbuster	Buffer overflow in the WebTool HTTP server component in (1) PunkBuster before 1.229, as used by multiple products including (2) America's Army 1.228 and earlier, (3) Battlefield 1942 1.158 and earlie…	NVD-CWE-Other	CVE-2006-2587	2018-10-19 01:40	2006-05-25	Show	GitHub Exploit DB Packet Storm

344594	-	russcom_network	phpimages	Russcom PHPImages allows remote attackers to upload files of arbitrary types by uploading a file with a .gif extension. NOTE: due to lack of specific information about attack vectors do not depend o…	NVD-CWE-Other	CVE-2006-2588	2018-10-19 01:40	2006-05-25	Show	GitHub Exploit DB Packet Storm

344595	-	mybulletinboard	mybulletinboard	SQL injection vulnerability in rss.php in MyBB (aka MyBulletinBoard) 1.1.1 allows remote attackers to execute arbitrary SQL commands via the comma parameter. NOTE: it is not clear from the original …	NVD-CWE-Other	CVE-2006-2589	2018-10-19 01:40	2006-05-25	Show	GitHub Exploit DB Packet Storm

344596	-	dschat	dschat	Cross-site scripting (XSS) vulnerability in DSChat 1.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the chatbox, probably involving the ctext parameter to send.php.	NVD-CWE-Other	CVE-2006-2605	2018-10-19 01:40	2006-05-25	Show	GitHub Exploit DB Packet Storm

344597	-	chatty	chatty	Cross-site scripting (XSS) vulnerability in Chatty, possibly 1.0.2 and other versions, allows remote attackers to inject arbitrary web script or HTML via the username.	NVD-CWE-Other	CVE-2006-2606	2018-10-19 01:40	2006-05-25	Show	GitHub Exploit DB Packet Storm

344598	-	paul_vixie	vixie_cron	do_command.c in Vixie cron (vixie-cron) 4.1 does not check the return code of a setuid call, which might allow local users to gain root privileges if setuid fails in cases such as PAM failures or res…	NVD-CWE-Other	CVE-2006-2607	2018-10-19 01:40	2006-05-26	Show	GitHub Exploit DB Packet Storm

344599	-	artmedic_webdesign	artmedic_newsletter	artmedic newsletter 4.1 and possibly other versions, when register_globals is enabled, allows remote attackers to modify arbitrary files and execute arbitrary PHP code via the logfile parameter in a …	NVD-CWE-Other	CVE-2006-2608	2018-10-19 01:40	2006-05-26	Show	GitHub Exploit DB Packet Storm

344600	-	spiffyjr	phpraid	Cross-site scripting (XSS) vulnerability in view.php in phpRaid 2.9.5 allows remote attackers to inject arbitrary web script or HTML via the (1) URL query string and the (2) Sort parameter.	NVD-CWE-Other	CVE-2006-2610	2018-10-19 01:40	2006-05-26	Show	GitHub Exploit DB Packet Storm