Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 1, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
222501	4	警告	andrew godwin	-	Andrew Godwin ByteHoard の index.php における絶対パストラバーサルの脆弱性	-	CVE-2006-2633	2013-12-26 15:44	2006-05-30	Show	GitHub Exploit DB Packet Storm

222502	5.1	警告	artmedic webdesign	-	artmedic newsletter における任意のファイルを変更される脆弱性	-	CVE-2006-2609	2013-12-26 15:44	2006-05-26	Show	GitHub Exploit DB Packet Storm

222503	5.1	警告	artmedic webdesign	-	artmedic newsletter における任意のファイルを変更される脆弱性	-	CVE-2006-2608	2013-12-26 15:44	2006-05-26	Show	GitHub Exploit DB Packet Storm

222504	5.1	警告	eSyndiCat	-	eSyndicat Directory の admin/cron.php における任意のファイルをインクルードされる脆弱性	-	CVE-2006-2578	2013-12-26 15:44	2006-05-24	Show	GitHub Exploit DB Packet Storm

222505	5	警告	AlstraSoft	-	Alstrasoft Article Manager Pro における重要な情報を取得される脆弱性	-	CVE-2006-2566	2013-12-26 15:44	2006-05-24	Show	GitHub Exploit DB Packet Storm

222506	5	警告	Snitz	-	Snitz Forums 用 Avatar MOD の avatar_upload.asp におけるファイルタイプのチェックを回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2006-2530	2013-12-26 15:44	2006-05-22	Show	GitHub Exploit DB Packet Storm

222507	7.5	危険	smartisoft	-	phpBazar の Admin/admin.php における認証を回避される脆弱性	-	CVE-2006-2527	2013-12-26 15:44	2006-05-22	Show	GitHub Exploit DB Packet Storm

222508	5	警告	Bitrix	-	Bitrix Site Manager におけるユーザを他の Web サイトへリダイレクトされる脆弱性	-	CVE-2006-2478	2013-12-26 15:44	2006-05-19	Show	GitHub Exploit DB Packet Storm

222509	5	警告	Bitrix	-	Bitrix Site Manager における重要な情報を取得される脆弱性	-	CVE-2006-2476	2013-12-26 15:44	2006-05-19	Show	GitHub Exploit DB Packet Storm

222510	6.4	警告	duware	-	DUware DUbanner の add.asp における任意のコードを実行される脆弱性	-	CVE-2006-2428	2013-12-26 15:44	2006-05-17	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
272841	8.8	HIGH Network	microsoft	windows_server_2012 windows_8.1 windows_server_2008 windows_7 windows_rt_8.1 windows_10	Microsoft Windows Server 2008 R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 allow remote attackers to execute arbitrary code via crafted media co…	CWE-20 Improper Input Validation	CVE-2016-0098	2024-11-21 11:41	2016-03-9	Show	GitHub Exploit DB Packet Storm

272842	7.8	HIGH Local	microsoft	windows_server_2012 windows_10 windows_8.1 windows_server_2008 windows_7 windows_rt_8.1 windows_vista	The kernel-mode driver in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 al…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-0096	2024-11-21 11:41	2016-03-9	Show	GitHub Exploit DB Packet Storm

272843	7.8	HIGH Local	microsoft	windows_server_2012 windows_10 windows_8.1 windows_server_2008 windows_7 windows_rt_8.1 windows_vista	The kernel-mode driver in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 al…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-0095	2024-11-21 11:41	2016-03-9	Show	GitHub Exploit DB Packet Storm

272844	7.8	HIGH Local	microsoft	windows_server_2012 windows_10 windows_8.1 windows_server_2008 windows_7 windows_rt_8.1 windows_vista	OLE in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 allows remote attacke…	CWE-20 Improper Input Validation	CVE-2016-0092	2024-11-21 11:41	2016-03-9	Show	GitHub Exploit DB Packet Storm

272845	7.8	HIGH Local	microsoft	windows_server_2012 windows_10 windows_8.1 windows_server_2008 windows_7 windows_rt_8.1 windows_vista	OLE in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 allows remote attacke…	CWE-20 Improper Input Validation	CVE-2016-0091	2024-11-21 11:41	2016-03-9	Show	GitHub Exploit DB Packet Storm

272846	7.8	HIGH Local	microsoft	windows_server_2008 windows_7 windows_vista	Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, and Windows 7 SP1 do not properly validate handles, which allows local users to gain privileges via a crafted application, aka "Window…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-0087	2024-11-21 11:41	2016-03-9	Show	GitHub Exploit DB Packet Storm

272847	7.8	HIGH Local	microsoft	windows_server_2012 windows_10 windows_8.1 windows_server_2008 windows_7 windows_rt_8.1 windows_vista	The kernel-mode driver in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 al…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-0094	2024-11-21 11:41	2016-03-9	Show	GitHub Exploit DB Packet Storm

272848	7.8	HIGH Local	microsoft	windows_server_2012 windows_10 windows_8.1 windows_server_2008 windows_7 windows_rt_8.1 windows_vista	The kernel-mode driver in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 al…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-0093	2024-11-21 11:41	2016-03-9	Show	GitHub Exploit DB Packet Storm

272849	7.8	HIGH Local	microsoft	office	Microsoft Office 2007 SP3, 2010 SP2, 2013 SP1, and 2016 does not properly sign an unspecified binary file, which allows local users to gain privileges via a Trojan horse file with a crafted signature…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-0057	2024-11-21 11:41	2016-03-9	Show	GitHub Exploit DB Packet Storm

272850	5.4	MEDIUM Network	ibm	business_process_manager	Cross-site scripting (XSS) vulnerability in the document-list control implementation in IBM Business Process Manager (BPM) 8.0 through 8.0.1.3, 8.5.0 through 8.5.0.2, and 8.5.5 and 8.5.6 through 8.5.…	CWE-79 Cross-site Scripting	CVE-2016-0227	2024-11-21 11:41	2016-03-4	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed