Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 5, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
239951	7.5	危険	NagiosQL	-	NagiosQL の functions/prepend_adm.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2710	2012-09-25 16:47	2007-05-16	Show	GitHub Exploit DB Packet Storm

239952	7.5	危険	NagiosQL	-	NagiosQL 2005 の functions/prepend_adm.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2709	2012-09-25 16:47	2007-05-16	Show	GitHub Exploit DB Packet Storm

239953	6.8	警告	linksnet	-	Linksnet Newsfeed の linksnet_linkslog_rss.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2707	2012-09-25 16:47	2007-05-16	Show	GitHub Exploit DB Packet Storm

239954	7.8	危険	インターネットセキュリティシステムズ	-	IBM ISS Proventia シリーズにおける HTTP トラフィックの検知を回避される脆弱性	-	CVE-2007-2690	2012-09-25 16:47	2007-05-15	Show	GitHub Exploit DB Packet Storm

239955	10	危険	MicroWorld Technologies Inc.	-	MicroWorld Technologies eScan におけるスタックベースのバッファオーバーフローの脆弱性	-	CVE-2007-2687	2012-09-25 16:47	2007-05-23	Show	GitHub Exploit DB Packet Storm

239956	4.3	警告	jetbox	-	Jetbox CMS の index.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-2686	2012-09-25 16:47	2007-05-22	Show	GitHub Exploit DB Packet Storm

239957	7.5	危険	jetbox	-	Jetbox CMS の index.php における SQL インジェクションの脆弱性	-	CVE-2007-2685	2012-09-25 16:47	2007-05-21	Show	GitHub Exploit DB Packet Storm

239958	5	警告	jetbox	-	Jetbox CMS における重要な情報を取得される脆弱性	-	CVE-2007-2684	2012-09-25 16:47	2007-05-21	Show	GitHub Exploit DB Packet Storm

239959	7.5	危険	netsprint	-	Netsprint Toolbar の toolbar.dll におけるバッファオーバーフローの脆弱性	-	CVE-2007-2678	2012-09-25 16:47	2007-05-14	Show	GitHub Exploit DB Packet Storm

239960	7.5	危険	open translation engine	-	OTE の skins/header.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2676	2012-09-25 16:47	2007-05-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
267721	7.5	HIGH Network	ibm	sterling_secure_proxy	Directory traversal vulnerability in the Configuration Manager in IBM Sterling Secure Proxy (SSP) 3.4.2 before 3.4.2.0 iFix 8 and 3.4.3 before 3.4.3.0 iFix 1 allows remote attackers to read arbitrary…	CWE-22 Path Traversal	CVE-2016-6023	2024-11-21 11:55	2016-10-6	Show	GitHub Exploit DB Packet Storm

267722	7.5	HIGH Network	ibm	websphere_application_server	IBM WebSphere Application Server (WAS) 7.0 before 7.0.0.43, 8.0 before 8.0.0.13, 8.5 before 8.5.5.11, 9.0 before 9.0.0.2, and Liberty before 16.0.0.4 allows remote authenticated users to execute arbi…	CWE-284 Improper Access Control	CVE-2016-5983	2024-11-21 11:55	2016-10-5	Show	GitHub Exploit DB Packet Storm

267723	5.4	MEDIUM Network	ibm	business_process_manager	Cross-site scripting (XSS) vulnerability in a test page in IBM Business Process Manager Advanced 8.5.6.0 through 8.5.7.0 before cumulative fix 2016.09 allows remote authenticated users to inject arbi…	CWE-79 Cross-site Scripting	CVE-2016-5901	2024-11-21 11:55	2016-10-5	Show	GitHub Exploit DB Packet Storm

267724	5.4	MEDIUM Network	ibm	multi-enterprise_integration_gateway b2b_advanced_communications	Cross-site scripting (XSS) vulnerability in IBM 10x, as used in Multi-Enterprise Integration Gateway 1.x through 1.0.0.1 and B2B Advanced Communications before 1.0.0.5_2, allows remote authenticated …	CWE-79 Cross-site Scripting	CVE-2016-5892	2024-11-21 11:55	2016-10-5	Show	GitHub Exploit DB Packet Storm

267725	7.5	HIGH Network	canonical gnome opensuse	ubuntu_linux gdk-pixbuf leap opensuse	The OneLine32 function in io-ico.c in gdk-pixbuf before 2.35.3 allows remote attackers to cause a denial of service (out-of-bounds write and crash) via crafted dimensions in an ICO file.	CWE-787 Out-of-bounds Write	CVE-2016-6352	2024-11-21 11:55	2016-10-4	Show	GitHub Exploit DB Packet Storm

267726	7.3	HIGH Local	ibm	db2 db2_connect	Untrusted search path vulnerability in IBM DB2 9.7 through FP11, 10.1 through FP5, 10.5 before FP8, and 11.1 GA on Linux, AIX, and HP-UX allows local users to gain privileges via a Trojan horse libra…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-5995	2024-11-21 11:55	2016-10-1	Show	GitHub Exploit DB Packet Storm

267727	7.5	HIGH Network	ibm	websphere_application_server	IBM WebSphere Application Server (WAS) 7.x before 7.0.0.43, 8.0.x before 8.0.0.13, 8.5.x before 8.5.5.11, 9.0.x before 9.0.0.2, and Liberty before 16.0.0.3 mishandles responses, which allows remote a…	CWE-200 Information Exposure	CVE-2016-5986	2024-11-21 11:55	2016-10-1	Show	GitHub Exploit DB Packet Storm

267728	9.8	CRITICAL Network	redhat	jboss_operations_network	The server in Red Hat JBoss Operations Network (JON), when SSL authentication is not configured for JON server / agent communication, allows remote attackers to execute arbitrary code via a crafted H…	CWE-502 Deserialization of Untrusted Data	CVE-2016-6330	2024-11-21 11:55	2016-09-28	Show	GitHub Exploit DB Packet Storm

267729	5.3	MEDIUM Network	sap	trex	The NameServer in SAP TREX 7.10 Revision 63 allows remote attackers to obtain sensitive TNS information via an unspecified query, aka SAP Security Note 2234226.	CWE-200 Information Exposure	CVE-2016-6146	2024-11-21 11:55	2016-09-28	Show	GitHub Exploit DB Packet Storm

267730	9.8	CRITICAL Network	sap	trex	An unspecified function in SAP TREX 7.10 Revision 63 allows remote attackers to execute arbitrary OS commands via unknown vectors, aka SAP Security Note 2203591.	NVD-CWE-noinfo	CVE-2016-6137	2024-11-21 11:55	2016-09-28	Show	GitHub Exploit DB Packet Storm