Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 6, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
240121 6.8 警告 Mambo Foundation - Mambo 用の calendar モジュールにおける PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2049 2012-09-25 16:47 2007-04-16 Show GitHub Exploit DB Packet Storm
240122 7.5 危険 Openads - Openads の www/delivery/ck.php における CRLF インジェクションの脆弱性 - CVE-2007-2047 2012-09-25 16:47 2007-04-16 Show GitHub Exploit DB Packet Storm
240123 7.5 危険 Openads - Openads における CRLF インジェクションの脆弱性 - CVE-2007-2046 2012-09-25 16:47 2007-04-16 Show GitHub Exploit DB Packet Storm
240124 7.5 危険 mynews - MyNews の include/blocks/week_events.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2014 2012-09-25 16:47 2007-04-12 Show GitHub Exploit DB Packet Storm
240125 4.3 警告 jex-treme - JEx-Treme Einfacher Passworschutz の index.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-2013 2012-09-25 16:47 2007-04-12 Show GitHub Exploit DB Packet Storm
240126 5.8 警告 mimarsinan - MimarSinan CompreXX におけるディレクトリトラバーサルの脆弱性 - CVE-2007-2012 2012-09-25 16:47 2007-04-12 Show GitHub Exploit DB Packet Storm
240127 6.8 警告 Mambo Foundation
Joomla!		 - Mambo および Joomla! 用の Takhopper コンポーネントにおける PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-2005 2012-09-25 16:47 2007-04-12 Show GitHub Exploit DB Packet Storm
240128 7.5 危険 inoutmailinglistmanager - InoutMailingListManager における SQL インジェクションの脆弱性 - CVE-2007-2004 2012-09-25 16:47 2007-04-12 Show GitHub Exploit DB Packet Storm
240129 6.8 警告 inoutmailinglistmanager - InoutMailingListManager における任意の PHP コードを実行される脆弱性 - CVE-2007-2003 2012-09-25 16:47 2007-04-12 Show GitHub Exploit DB Packet Storm
240130 6.8 警告 inoutmailinglistmanager - InoutMailingListManager における任意の PHP コードを実行される脆弱性 - CVE-2007-2002 2012-09-25 16:47 2007-04-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 7, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
266801 5.3 MEDIUM
Network 		yandex yandex_browser Security WiFi bypass in Yandex Browser from version 15.10 to 15.12 allows remote attacker to sniff traffic in open or WEP-protected wi-fi networks despite of special security mechanism is enabled. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-8501 2024-11-21 11:59 2016-10-27 Show GitHub Exploit DB Packet Storm
266802 7.6 HIGH
Network 		oracle peoplesoft_enterprise_peopletools Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.54 and 8.55 allows remote authenticated users to affect confidentiality and integrity via … CWE-284
Improper Access Control 		CVE-2016-8296 2024-11-21 11:59 2016-10-25 Show GitHub Exploit DB Packet Storm
266803 4.3 MEDIUM
Network 		oracle peoplesoft_enterprise_human_capital_management_time_and_labor Unspecified vulnerability in the PeopleSoft Enterprise HCM component in Oracle PeopleSoft Products 9.2 allows remote authenticated users to affect confidentiality via unknown vectors. CWE-200
Information Exposure 		CVE-2016-8295 2024-11-21 11:59 2016-10-25 Show GitHub Exploit DB Packet Storm
266804 4.3 MEDIUM
Network 		oracle peoplesoft_enterprise_peopletools Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.54 and 8.55 allows remote authenticated users to affect confidentiality via unknown vector… CWE-200
Information Exposure 		CVE-2016-8294 2024-11-21 11:59 2016-10-25 Show GitHub Exploit DB Packet Storm
266805 8.2 HIGH
Network 		oracle peoplesoft_enterprise_peopletools Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.54 and 8.55 allows remote attackers to affect confidentiality and integrity via vectors re… CWE-284
Improper Access Control 		CVE-2016-8293 2024-11-21 11:59 2016-10-25 Show GitHub Exploit DB Packet Storm
266806 4.2 MEDIUM
Network 		oracle peoplesoft_enterprise_human_capital_management_talent_acquisition_manager Unspecified vulnerability in the PeopleSoft Enterprise HCM component in Oracle PeopleSoft Products 9.2 allows remote authenticated users to affect confidentiality and integrity via vectors related to… CWE-284
Improper Access Control 		CVE-2016-8292 2024-11-21 11:59 2016-10-25 Show GitHub Exploit DB Packet Storm
266807 8.2 HIGH
Network 		oracle peoplesoft_enterprise_peopletools Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.54 and 8.55 allows remote attackers to affect confidentiality and integrity via vectors re… CWE-284
Improper Access Control 		CVE-2016-8291 2024-11-21 11:59 2016-10-25 Show GitHub Exploit DB Packet Storm
266808 4.4 MEDIUM
Network 		oracle mysql Unspecified vulnerability in Oracle MySQL 5.7.13 and earlier allows remote administrators to affect availability via vectors related to Server: Performance Schema, a different vulnerability than CVE-… NVD-CWE-noinfo
CVE-2016-8290 2024-11-21 11:59 2016-10-25 Show GitHub Exploit DB Packet Storm
266809 4.7 MEDIUM
Local 		oracle mysql Unspecified vulnerability in Oracle MySQL 5.7.13 and earlier allows local users to affect integrity and availability via vectors related to Server: InnoDB. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-8289 2024-11-21 11:59 2016-10-25 Show GitHub Exploit DB Packet Storm
266810 3.1 LOW
Network 		oracle mysql Unspecified vulnerability in Oracle MySQL 5.6.30 and earlier and 5.7.12 and earlier allows remote authenticated users to affect integrity via vectors related to Server: InnoDB Plugin. CWE-284
Improper Access Control 		CVE-2016-8288 2024-11-21 11:59 2016-10-25 Show GitHub Exploit DB Packet Storm