Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 18, 2026, 4:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
211201	5	警告	アップルサン・マイクロシステムズ日立 IBM オラクル	-	複数の Oracle Java 製品における JAXP に関する脆弱性	CWE-noinfo 情報不足	CVE-2013-5825	2015-04-22 17:32	2013-10-15	Show	GitHub Exploit DB Packet Storm

211202	4.3	警告	IBM Apache Software Foundation アップルサイバートラスト株式会社富士通 NetBSD ヒューレット・パッカードターボリナックスレッドハット FreeBSD オラクル Google 日立 OpenBSD	-	Apache Portable Runtime ライブラリなどの製品で使用される apr_fnmatch.c および fnmatch.c におけるサービス運用妨害 (CPU とメモリ消費) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-0419	2015-04-22 16:23	2011-03-10	Show	GitHub Exploit DB Packet Storm

211203	5.8	警告	日立 Apache Software Foundation	-	Apache Axis の getCN 関数における SSL サーバになりすまされる脆弱性	CWE-Other その他	CVE-2014-3596	2015-04-22 15:11	2014-08-19	Show	GitHub Exploit DB Packet Storm

211204	5	警告	DELL EMC (旧 EMC Corporation) 日立	-	EMC RSA BSAFE-C Toolkits の Dual_EC_DRBG の実装における TLS セッションから平文を取得される脆弱性	CWE-310 暗号の問題	CVE-2014-4192	2015-04-22 14:45	2014-04-7	Show	GitHub Exploit DB Packet Storm

211205	4.6	警告	Linux	-	Linux Kernel の net/rds/sysctl.c におけるカーネルメモリから重要な情報を取得される脆弱性	CWE-Other その他	CVE-2015-2042	2015-04-22 12:07	2015-02-5	Show	GitHub Exploit DB Packet Storm

211206	4.6	警告	Linux	-	Linux Kernel の net/llc/sysctl_net_llc.c におけるカーネルメモリから重要な情報を取得される脆弱性	CWE-Other その他	CVE-2015-2041	2015-04-22 12:07	2015-01-25	Show	GitHub Exploit DB Packet Storm

211207	4.3	警告	シスコシステムズ	-	Cisco Unified MeetingPlace の管理 Web インターフェースにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2015-0703	2015-04-22 11:52	2015-04-20	Show	GitHub Exploit DB Packet Storm

211208	9	危険	シスコシステムズ	-	Cisco Unified MeetingPlace の Custom Prompts のアップロードの実装における任意のコードを実行される脆弱性	CWE-Other その他	CVE-2015-0702	2015-04-22 11:51	2015-04-20	Show	GitHub Exploit DB Packet Storm

211209	6.8	警告	SearchBlox Software	-	SearchBlox におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2015-0970	2015-04-22 11:31	2015-04-14	Show	GitHub Exploit DB Packet Storm

211210	5	警告	SearchBlox Software	-	SearchBlox における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2015-0969	2015-04-22 11:31	2015-04-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
346501	-	adaptive_technology_resource_centre	atutor	config.inc.php in ATutor 1.5.1, and possibly earlier versions, uses an incomplete blacklist to check for dangerous file extensions, which allows authenticated administrators or educators to execute a…	NVD-CWE-Other	CVE-2005-2955	2016-10-18 12:31	2005-09-17	Show	GitHub Exploit DB Packet Storm

346502	-	adaptive_technology_resource_centre	atutor	ATutor 1.5.1, and possibly earlier versions, stores temporary chat logs under the web document root with insufficient access control and predictable filenames, which allows remote attackers to obtain…	NVD-CWE-Other	CVE-2005-2956	2016-10-18 12:31	2005-09-17	Show	GitHub Exploit DB Packet Storm

346503	-	avira	desktop	Stack-based buffer overflow in AVIRA Desktop for Windows 1.00.00.68 with AVPACK32.DLL 6.31.0.3, when archive scanning is enabled, allows remote attackers to execute arbitrary code via a long filename…	NVD-CWE-Other	CVE-2005-2957	2016-10-18 12:31	2005-09-17	Show	GitHub Exploit DB Packet Storm

346504	-	compaq	compaqhttpserver	Cross-site scripting (XSS) vulnerability in CompaqHTTPServer 2.1 allows remote attackers to inject arbitrary web script or HTML via the URL, which is not properly quoted in the resulting 404 error pa…	NVD-CWE-Other	CVE-2005-2982	2016-10-18 12:31	2005-09-20	Show	GitHub Exploit DB Packet Storm

346505	-	oracle	reports	SQL injection vulnerability in Oracle Reports that use Lexical References allows remote attackers to execute arbitrary SQL commands via the values in the parameter form that appears when the paramfor…	CWE-89 SQL Injection	CVE-2005-2983	2016-10-18 12:31	2005-09-20	Show	GitHub Exploit DB Packet Storm

346506	-	symantec	norton_antivirus	Symantec AntiVirus Corporate Edition 9.0.1.x and 9.0.4.x, and possibly other versions, when obtaining updates from an internal LiveUpdate server, stores sensitive information in cleartext in the Log.…	NVD-CWE-Other	CVE-2005-2766	2016-10-18 12:30	2005-09-2	Show	GitHub Exploit DB Packet Storm

346507	-	mybulletinboard	mybulletinboard	SQL injection vulnerability in member.php in MyBulletinBoard (MyBB) allows remote attackers to execute arbitrary SQL statements via the fid parameter.	NVD-CWE-Other	CVE-2005-2778	2016-10-18 12:30	2005-09-3	Show	GitHub Exploit DB Packet Storm

346508	-	-	-	The iTAN Online-Banking Security System allows remote attackers to obtain TAN numbers via a man-in-the-middle (MITM) attack while the transaction is taking place, which facilitates a "phishing" attac…	NVD-CWE-Other	CVE-2005-2779	2016-10-18 12:30	2005-09-3	Show	GitHub Exploit DB Packet Storm

346509	-	neocrome	land_down_under	Cross-site scripting (XSS) vulnerability in Land Down Under (LDU) allows remote attackers to inject arbitrary web script or HTML via a signature.	NVD-CWE-Other	CVE-2005-2780	2016-10-18 12:30	2005-09-3	Show	GitHub Exploit DB Packet Storm

346510	-	cosmoshop	cosmoshop	Directory traversal vulnerability in bestmail_edit.cgi in cosmoshop 8.10.78 and earlier allows remote administrators to read arbitrary files via ".." sequences in the file parameter.	NVD-CWE-Other	CVE-2005-2786	2016-10-18 12:30	2005-09-3	Show	GitHub Exploit DB Packet Storm