Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 6, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
239931 4.3 警告 OpenBSD - OpenSSH における特定のユーザアカウントの存在を決定される脆弱性 - CVE-2007-2768 2012-09-25 16:47 2007-05-21 Show GitHub Exploit DB Packet Storm
239932 7.8 危険 opendap - Hydrax の BES におけるファイルシステムの内容を一覧にされる脆弱性 - CVE-2007-2767 2012-09-25 16:47 2007-05-21 Show GitHub Exploit DB Packet Storm
239933 7.8 危険 Linux - 特定の Sun-Brocade SilkWorm スイッチの Linux kernel におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2007-2764 2012-09-25 16:47 2007-05-18 Show GitHub Exploit DB Packet Storm
239934 7.5 危険 magiciso - MagicISO におけるスタックベースのバッファオーバーフローの脆弱性 - CVE-2007-2761 2012-09-25 16:47 2007-05-18 Show GitHub Exploit DB Packet Storm
239935 4.3 警告 The PHP Group - PHP の substr_count 関数における重要な情報を取得される脆弱性 - CVE-2007-2748 2012-09-25 16:47 2007-05-17 Show GitHub Exploit DB Packet Storm
239936 7.5 危険 labs.beffa.org - labs.beffa.org w2box における任意の PHP コードをアップロードされる脆弱性 - CVE-2007-2742 2012-09-25 16:47 2007-05-17 Show GitHub Exploit DB Packet Storm
239937 9.3 危険 Little CMS - Little CMS におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-2741 2012-09-25 16:47 2007-05-17 Show GitHub Exploit DB Packet Storm
239938 6 警告 jetbox - Jetbox CMS における任意のスクリプトをアップロードされる脆弱性 - CVE-2007-2733 2012-09-25 16:47 2007-05-16 Show GitHub Exploit DB Packet Storm
239939 6.8 警告 jetbox - Jetbox CMS におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-2732 2012-09-25 16:47 2007-05-16 Show GitHub Exploit DB Packet Storm
239940 4 警告 jetbox - Jetbox CMS の formmail.php における CRLF インジェクションの脆弱性 - CVE-2007-2731 2012-09-25 16:47 2007-05-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 7, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
268191 6.5 MEDIUM
Network 		mediawiki mediawiki MediaWiki before 1.23.15, 1.26.x before 1.26.4, and 1.27.x before 1.27.1 allows remote authenticated users with undelete permissions to bypass intended suppressrevision and deleterevision restriction… CWE-284
Improper Access Control 		CVE-2016-6336 2024-11-21 11:55 2017-04-21 Show GitHub Exploit DB Packet Storm
268192 7.5 HIGH
Network 		mediawiki mediawiki MediaWiki before 1.23.15, 1.26.x before 1.26.4, and 1.27.x before 1.27.1 does not generate head items in the context of a given title, which allows remote attackers to obtain sensitive information vi… CWE-200
Information Exposure 		CVE-2016-6335 2024-11-21 11:55 2017-04-21 Show GitHub Exploit DB Packet Storm
268193 6.1 MEDIUM
Network 		mediawiki mediawiki Cross-site scripting (XSS) vulnerability in the Parser::replaceInternalLinks2 method in MediaWiki before 1.23.15, 1.26.x before 1.26.4, and 1.27.x before 1.27.1 allows remote attackers to inject arbi… CWE-79
Cross-site Scripting 		CVE-2016-6334 2024-11-21 11:55 2017-04-21 Show GitHub Exploit DB Packet Storm
268194 6.1 MEDIUM
Network 		mediawiki mediawiki Cross-site scripting (XSS) vulnerability in the CSS user subpage preview feature in MediaWiki before 1.23.15, 1.26.x before 1.26.4, and 1.27.x before 1.27.1 allows remote attackers to inject arbitrar… CWE-79
Cross-site Scripting 		CVE-2016-6333 2024-11-21 11:55 2017-04-21 Show GitHub Exploit DB Packet Storm
268195 7.5 HIGH
Network 		mediawiki mediawiki MediaWiki before 1.23.15, 1.26.x before 1.26.4, and 1.27.x before 1.27.1, when $wgBlockDisablesLogin is true, might allow remote attackers to obtain sensitive information by leveraging failure to ter… CWE-200
Information Exposure 		CVE-2016-6332 2024-11-21 11:55 2017-04-21 Show GitHub Exploit DB Packet Storm
268196 7.5 HIGH
Network 		mediawiki mediawiki ApiParse in MediaWiki before 1.23.15, 1.26.x before 1.26.4, and 1.27.x before 1.27.1 allows remote attackers to bypass intended per-title read restrictions via a parse action to api.php. CWE-284
Improper Access Control 		CVE-2016-6331 2024-11-21 11:55 2017-04-21 Show GitHub Exploit DB Packet Storm
268197 7.8 HIGH
Local 		fedoraproject
mock_project 		fedora
scm_plugin 		The scm plug-in in mock might allow attackers to bypass the intended chroot protection mechanism and gain root privileges via a crafted spec file. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-6299 2024-11-21 11:55 2017-04-15 Show GitHub Exploit DB Packet Storm
268198 9.8 CRITICAL
Network 		sap hana SAP HANA DB 1.00.73.00.389160 allows remote attackers to execute arbitrary code via vectors involving the audit logs, aka SAP Security Note 2170806. CWE-284
Improper Access Control 		CVE-2016-6143 2024-11-21 11:55 2017-04-13 Show GitHub Exploit DB Packet Storm
268199 6.1 MEDIUM
Network 		redhat resteasy JacksonJsonpInterceptor in RESTEasy might allow remote attackers to conduct a cross-site script inclusion (XSSI) attack. CWE-79
Cross-site Scripting 		CVE-2016-6348 2024-11-21 11:55 2017-04-13 Show GitHub Exploit DB Packet Storm
268200 7.0 HIGH
Local 		linux
google 		linux_kernel
android 		Drivers/soc/qcom/spcom.c in the Qualcomm SPCom driver in the Android kernel 2017-03-05 allows local users to gain privileges, a different vulnerability than CVE-2016-5857. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-5856 2024-11-21 11:55 2017-04-13 Show GitHub Exploit DB Packet Storm