Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 27, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
210091 3.5 注意 IBM - IBM WebSphere Application Server におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2015-7417 2016-01-27 13:44 2015-09-29 Show GitHub Exploit DB Packet Storm
210092 4.6 警告 eCryptfs.org - ecryptfs-utils の mount.ecryptfs_private.c における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-1572 2016-01-26 18:06 2016-01-21 Show GitHub Exploit DB Packet Storm
210093 5 警告 シスコシステムズ - Cisco Web セキュリティ アプライアンスデバイスのソフトウェア上で稼動するプロキシエンジンにおけるプロキシの制限を回避される脆弱性 CWE-Other
その他 		CVE-2016-1296 2016-01-26 16:35 2016-01-19 Show GitHub Exploit DB Packet Storm
210094 4.3 警告 NetApp - NetApp Data ONTAP における重要なボリューム情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2015-7886 2016-01-26 16:35 2015-10-22 Show GitHub Exploit DB Packet Storm
210095 4.3 警告 JasPer Project - JasPer の jpc_pi_nextcprl 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2016-1867 2016-01-26 16:31 2016-01-13 Show GitHub Exploit DB Packet Storm
210096 5 警告 OpenBSD - OpenSSH の packet.c の ssh_packet_read_poll2 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2016-1907 2016-01-26 15:57 2016-01-14 Show GitHub Exploit DB Packet Storm
210097 7.8 危険 F5 Networks - 複数の F5 製品のラストホップのカーネルモジュールにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2015-5516 2016-01-26 15:43 2015-07-13 Show GitHub Exploit DB Packet Storm
210098 7.5 危険 The PHP Group - PHP の ext/standard/exec.c における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2016-1904 2016-01-26 15:25 2016-01-7 Show GitHub Exploit DB Packet Storm
210099 10 危険 The PHP Group - PHP の Zend/zend_execute_API.c の zend_throw_or_error 関数におけるフォーマットストリングの脆弱性 CWE-134
書式文字列の問題 		CVE-2015-8617 2016-01-26 15:25 2015-12-17 Show GitHub Exploit DB Packet Storm
210100 7.5 危険 The PHP Group - PHP の ext/intl/collator/collator_sort.c の Collator::sortWithSortKeys 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2015-8616 2016-01-26 15:25 2015-12-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 27, 2026, 4:35 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
344551 - frontrange iheat The ActiveX version of FrontRange iHEAT allows remote authenticated users to run arbitrary programs or access arbitrary files on the host machine by uploading a file with an extension that is not ass… NVD-CWE-Other
CVE-2006-2511 2018-10-19 01:40 2006-05-23 Show GitHub Exploit DB Packet Storm
344552 - hiox_india guest_book Cross-site scripting (XSS) vulnerability in index.php in Hiox Guestbook 3.1 allows remote attackers to inject arbitrary web script or HTML via the input forms for signing the guestbook. NVD-CWE-Other
CVE-2006-2515 2018-10-19 01:40 2006-05-23 Show GitHub Exploit DB Packet Storm
344553 - xoops xoops mainfile.php in XOOPS 2.0.13.2 and earlier, when register_globals is enabled, allows remote attackers to overwrite variables such as $xoopsOption['nocommon'] and conduct directory traversal attacks o… CWE-22
Path Traversal 		CVE-2006-2516 2018-10-19 01:40 2006-05-23 Show GitHub Exploit DB Packet Storm
344554 - xoops xoops Successful exploitation requires that "register_globals" is enabled, and that "magic_quotes_gpc" is disabled. CWE-22
Path Traversal 		CVE-2006-2516 2018-10-19 01:40 2006-05-23 Show GitHub Exploit DB Packet Storm
344555 - phpwcms phpwcms Cross-site scripting (XSS) vulnerability in phpwcms 1.2.5-DEV allows remote attackers to inject arbitrary web script or HTML via the BL[be_cnt_plainhtml] parameter to include/inc_tmpl/content/cnt6.in… NVD-CWE-Other
CVE-2006-2518 2018-10-19 01:40 2006-05-23 Show GitHub Exploit DB Packet Storm
344556 - phpwcms phpwcms Directory traversal vulnerability in include/inc_ext/spaw/spaw_control.class.php in phpwcms 1.2.5-DEV allows remote attackers to include arbitrary local files via .. (dot dot) sequences in the spaw_r… NVD-CWE-Other
CVE-2006-2519 2018-10-19 01:40 2006-05-23 Show GitHub Exploit DB Packet Storm
344557 - bitberry_software bitzipper Directory traversal vulnerability in BitZipper 4.1.2 SR-1 and earlier allows remote attackers to create files in arbitrary directories via a .. (dot dot) in the filename of a file that is stored in … NVD-CWE-Other
CVE-2006-2520 2018-10-19 01:40 2006-05-23 Show GitHub Exploit DB Packet Storm
344558 - power_place php_easy_galerie PHP remote file inclusion vulnerability in index.php in PHP Easy Galerie 1.1 allows remote attackers to execute arbitrary PHP code via a URL in the includepath parameter. NVD-CWE-Other
CVE-2006-2526 2018-10-19 01:40 2006-05-23 Show GitHub Exploit DB Packet Storm
344559 - smartisoft phpbazar Admin/admin.php in phpBazar 2.1.0 and earlier allows remote attackers to bypass the authentication process and gain unauthorized access to the administrative section by setting the action parameter t… NVD-CWE-Other
CVE-2006-2527 2018-10-19 01:40 2006-05-23 Show GitHub Exploit DB Packet Storm
344560 - snitz_communications avatar_mod avatar_upload.asp in Avatar MOD 1.3 for Snitz Forums 3.4, and possibly other versions, allows remote attackers to bypass file type checks and upload arbitrary files via a null byte in the file name, … CWE-264
Permissions, Privileges, and Access Controls 		CVE-2006-2530 2018-10-19 01:40 2006-05-23 Show GitHub Exploit DB Packet Storm