Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 3, 2026, 6:08 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
239931	7.5	危険	kai content management system	-	K-CMS の index.php におけるディレクトリトラバーサルの脆弱性	-	CVE-2007-2106	2012-09-25 16:47	2007-04-18	Show	GitHub Exploit DB Packet Storm

239932	7.5	危険	monkey cms	-	Monkey CMS の admin/index.php におけるディレクトリトラバーサルの脆弱性	-	CVE-2007-2105	2012-09-25 16:47	2007-04-18	Show	GitHub Exploit DB Packet Storm

239933	6.8	警告	my little homepage	-	my little weblog の weblog.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-2102	2012-09-25 16:47	2007-04-18	Show	GitHub Exploit DB Packet Storm

239934	6.8	警告	openconcept	-	OpenConcept Back-End CMS の htdocs/php.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-2099	2012-09-25 16:47	2007-04-18	Show	GitHub Exploit DB Packet Storm

239935	7.5	危険	hinton design	-	Hinton Design における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2096	2012-09-25 16:47	2007-04-18	Show	GitHub Exploit DB Packet Storm

239936	7.5	危険	myspeach	-	MySpeach の chat.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2095	2012-09-25 16:47	2007-04-18	Show	GitHub Exploit DB Packet Storm

239937	7.5	危険	limesoft	-	LS Simple Guestbook の index.php における任意の PHP コードを挿入される脆弱性	-	CVE-2007-2093	2012-09-25 16:47	2007-04-18	Show	GitHub Exploit DB Packet Storm

239938	7.5	危険	limesoft	-	LS Simple Guestbook の index.php における任意の PHP コードを挿入される脆弱性	-	CVE-2007-2092	2012-09-25 16:47	2007-04-18	Show	GitHub Exploit DB Packet Storm

239939	6.8	警告	jx development	-	Mambo および Joomla! における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2089	2012-09-25 16:47	2007-04-18	Show	GitHub Exploit DB Packet Storm

239940	6.8	警告	oe2edit	-	oe2edit CMS の oe2edit.cgi におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-2085	2012-09-25 16:47	2007-04-18	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
267981	9.8	CRITICAL Network	vmware	photon_os	VMware Photos OS OVA 1.0 before 2016-08-14 has a default SSH public key in an authorized_keys file, which allows remote attackers to obtain SSH access by leveraging knowledge of the private key.	CWE-798 Use of Hard-coded Credentials	CVE-2016-5333	2024-11-21 11:54	2016-08-31	Show	GitHub Exploit DB Packet Storm

267982	5.3	MEDIUM Network	vmware	vrealize_log_insight	Directory traversal vulnerability in VMware vRealize Log Insight 2.x and 3.x before 3.6.0 allows remote attackers to read arbitrary files via unspecified vectors.	CWE-22 Path Traversal	CVE-2016-5332	2024-11-21 11:54	2016-08-31	Show	GitHub Exploit DB Packet Storm

267983	9.8	CRITICAL Network	google linux	android linux_kernel	Multiple integer overflows in the MDSS driver for the Linux kernel 3.x, as used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other products, allow attackers to cause…	CWE-190 Integer Overflow or Wraparound	CVE-2016-5344	2024-11-21 11:54	2016-08-31	Show	GitHub Exploit DB Packet Storm

267984	7.8	HIGH Local	google linux	android linux_kernel	Heap-based buffer overflow in the wcnss_wlan_write function in drivers/net/wireless/wcnss/wcnss_wlan.c in the wcnss_wlan device driver for the Linux kernel 3.x, as used in Qualcomm Innovation Center …	CWE-787 Out-of-bounds Write	CVE-2016-5342	2024-11-21 11:54	2016-08-31	Show	GitHub Exploit DB Packet Storm

267985	6.1	MEDIUM Network	zimbra	zimbra_collaboration_server	Multiple cross-site scripting (XSS) vulnerabilities in Zimbra Collaboration before 8.7.0 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.	CWE-79 Cross-site Scripting	CVE-2016-5721	2024-11-21 11:54	2016-08-30	Show	GitHub Exploit DB Packet Storm

267986	7.8	HIGH Local	readydesk	readydesk	ReadyDesk 9.1 allows local users to determine cleartext SQL Server credentials by reading the SQL_Config.aspx file and decrypting data with a hardcoded key in the ReadyDesk.dll file.	NVD-CWE-Other	CVE-2016-5683	2024-11-21 11:54	2016-08-27	Show	GitHub Exploit DB Packet Storm

267987	4.3	MEDIUM Network	accellion	kiteworks_appliance	Directory traversal vulnerability on Accellion Kiteworks appliances before kw2016.03.00 allows remote attackers to read files via a crafted URI.	CWE-22 Path Traversal	CVE-2016-5664	2024-11-21 11:54	2016-08-27	Show	GitHub Exploit DB Packet Storm

267988	6.1	MEDIUM Network	accellion	kiteworks_appliance	Multiple cross-site scripting (XSS) vulnerabilities in oauth_callback.php on Accellion Kiteworks appliances before kw2016.03.00 allow remote attackers to inject arbitrary web script or HTML via the (…	CWE-79 Cross-site Scripting	CVE-2016-5663	2024-11-21 11:54	2016-08-27	Show	GitHub Exploit DB Packet Storm

267989	7.8	HIGH Local	accellion	kiteworks_appliance	Accellion Kiteworks appliances before kw2016.03.00 use setuid-root permissions for /opt/bin/cli, which allows local users to gain privileges via unspecified vectors.	NVD-CWE-Other	CVE-2016-5662	2024-11-21 11:54	2016-08-27	Show	GitHub Exploit DB Packet Storm

267990	8.8	HIGH Network	redhat	cloudforms	The web UI in Red Hat CloudForms 4.1 allows remote authenticated users to execute arbitrary code via vectors involving "Lack of field filters."	CWE-284 Improper Access Control	CVE-2016-5383	2024-11-21 11:54	2016-08-26	Show	GitHub Exploit DB Packet Storm