Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 3, 2026, 6:08 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
240121	4.3	警告	Horde	-	Horde Framework の framework/NLS/NLS.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-1473	2012-09-25 16:47	2007-03-14	Show	GitHub Exploit DB Packet Storm

240122	7.5	危険	orion-blog	-	Orion-Blog の admin/default.asp における権限を取得され脆弱性	-	CVE-2007-1471	2012-09-25 16:47	2007-03-16	Show	GitHub Exploit DB Packet Storm

240123	6.8	警告	netsw	-	LIBFtp におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2007-1470	2012-09-25 16:47	2007-03-16	Show	GitHub Exploit DB Packet Storm

240124	4.3	警告	IBM	-	IBM Rational CQ Web におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-1468	2012-09-25 16:47	2007-03-16	Show	GitHub Exploit DB Packet Storm

240125	6.8	警告	Inkscape	-	Inkscape の whiteboard Jabber プロトコルにおけるフォーマットストリングの脆弱性	-	CVE-2007-1464	2012-09-25 16:47	2007-03-21	Show	GitHub Exploit DB Packet Storm

240126	6.8	警告	Inkscape	-	Inkscape におけるフォーマットストリングの脆弱性	-	CVE-2007-1463	2012-09-25 16:47	2007-03-21	Show	GitHub Exploit DB Packet Storm

240127	4.3	警告	The PHP Group	-	PHP の ext/filter におけるクロスサイトスクリプティング攻撃を実行される脆弱性	-	CVE-2007-1454	2012-09-25 16:47	2007-03-11	Show	GitHub Exploit DB Packet Storm

240128	7.5	危険	The PHP Group	-	PHP のフィルタリングエクステンションにおけるバッファアンダーフローの脆弱性	-	CVE-2007-1453	2012-09-25 16:47	2007-03-14	Show	GitHub Exploit DB Packet Storm

240129	5	警告	The PHP Group	-	PHP の FDF サポートにおける Web サイトフィルタを回避される脆弱性	-	CVE-2007-1452	2012-09-25 16:47	2007-03-10	Show	GitHub Exploit DB Packet Storm

240130	6.4	警告	GuppYTeam	-	GuppY における任意のファイルを削除される脆弱性	-	CVE-2007-1451	2012-09-25 16:47	2007-03-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
266901	4.4	MEDIUM Local	emc	recoverpoint_for_virtual_machines recoverpoint	EMC RecoverPoint versions before 4.4.1.1 and EMC RecoverPoint for Virtual Machines versions before 5.0 are affected by sensitive information disclosure vulnerability as a result of incorrect permissi…	CWE-275 Permission Issues	CVE-2016-6648	2024-11-21 11:56	2017-02-3	Show	GitHub Exploit DB Packet Storm

266902	8.6	HIGH Network	phpmyadmin	phpmyadmin	The setup script for phpMyAdmin before 4.0.10.19, 4.4.x before 4.4.15.10, and 4.6.x before 4.6.6 allows remote attackers to conduct server-side request forgery (SSRF) attacks via unspecified vectors.	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2016-6621	2024-11-21 11:56	2017-02-1	Show	GitHub Exploit DB Packet Storm

266903	9.8	CRITICAL Network	samsung	exynos_fimg2d	NULL pointer dereference in Samsung Exynos fimg2d driver for Android L(5.0/5.1) and M(6.0) allows attackers to have unspecified impact via unknown vectors. The Samsung ID is SVE-2016-6382.	CWE-476 NULL Pointer Dereference	CVE-2016-6604	2024-11-21 11:56	2017-01-31	Show	GitHub Exploit DB Packet Storm

266904	7.5	HIGH Network	atlassian	confluence_server jira_integration_for_hipchat	The Atlassian Hipchat Integration Plugin for Bitbucket Server 6.26.0 before 6.27.5, 6.28.0 before 7.3.7, and 7.4.0 before 7.8.17; Confluence HipChat plugin 6.26.0 before 7.8.17; and HipChat for JIRA …	CWE-200 Information Exposure	CVE-2016-6668	2024-11-21 11:56	2017-01-24	Show	GitHub Exploit DB Packet Storm

266905	9.8	CRITICAL Network	zohocorp	webnms_framework	ZOHO WebNMS Framework 5.2 and 5.2 SP1 allows remote attackers to bypass authentication and impersonate arbitrary users via the UserName HTTP header.	CWE-20 Improper Input Validation	CVE-2016-6603	2024-11-21 11:56	2017-01-24	Show	GitHub Exploit DB Packet Storm

266906	9.8	CRITICAL Network	zohocorp	webnms_framework	ZOHO WebNMS Framework 5.2 and 5.2 SP1 use a weak obfuscation algorithm to store passwords, which allows context-dependent attackers to obtain cleartext passwords by leveraging access to WEB-INF/conf/…	CWE-327 Use of a Broken or Risky Cryptographic Algorithm	CVE-2016-6602	2024-11-21 11:56	2017-01-24	Show	GitHub Exploit DB Packet Storm

266907	7.5	HIGH Network	zohocorp	webnms_framework	Directory traversal vulnerability in the file download functionality in ZOHO WebNMS Framework 5.2 and 5.2 SP1 allows remote attackers to read arbitrary files via a .. (dot dot) in the fileName parame…	CWE-22 Path Traversal	CVE-2016-6601	2024-11-21 11:56	2017-01-24	Show	GitHub Exploit DB Packet Storm

266908	9.8	CRITICAL Network	zohocorp	webnms_framework	Directory traversal vulnerability in the file upload functionality in ZOHO WebNMS Framework 5.2 and 5.2 SP1 allows remote attackers to upload and execute arbitrary JSP files via a .. (dot dot) in the…	CWE-22 Path Traversal	CVE-2016-6600	2024-11-21 11:56	2017-01-24	Show	GitHub Exploit DB Packet Storm

266909	9.1	CRITICAL Network	doorkeeper_project	doorkeeper	The Doorkeeper gem before 4.2.0 for Ruby might allow remote attackers to conduct replay attacks or revoke arbitrary tokens by leveraging failure to implement the OAuth 2.0 Token Revocation specificat…	CWE-254 7PK - Security Features	CVE-2016-6582	2024-11-21 11:56	2017-01-24	Show	GitHub Exploit DB Packet Storm

266910	8.8	HIGH Network	gopivotal	grails	Cross-site request forgery (CSRF) vulnerability in Grails console (aka Grails Debug Console and Grails Web Console) 2.0.7, 1.5.10, and earlier allows remote attackers to hijack the authentication of …	CWE-352 Origin Validation Error	CVE-2016-6521	2024-11-21 11:56	2017-01-24	Show	GitHub Exploit DB Packet Storm