Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 11, 2026, 12:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
240141 7.5 危険 okulumunsitesi - Okul Otomasyon Portal の default.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-5490 2012-09-25 16:59 2007-10-17 Show GitHub Exploit DB Packet Storm
240142 7.5 危険 kwsphp - KwsPHP の mg2 モジュールの index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-5485 2012-09-25 16:59 2007-10-16 Show GitHub Exploit DB Packet Storm
240143 4.3 警告 innovaage - InnovaAge InnovaShop におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-5480 2012-09-25 16:59 2007-10-16 Show GitHub Exploit DB Packet Storm
240144 4.3 警告 nabh information systems - Nabh Stringbeans Portal のプロジェクトにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-5478 2012-09-25 16:59 2007-10-16 Show GitHub Exploit DB Packet Storm
240145 5 警告 Mono Project - Mono の System.Web の StaticFileHandler.cs における重要なファイルのソースコードを取得される脆弱性 CWE-200
情報漏えい 		CVE-2007-5473 2012-09-25 16:59 2007-10-18 Show GitHub Exploit DB Packet Storm
240146 2.1 注意 マイクロソフト - Microsoft Expression Media におけるカタログへのアクセス権を取得される脆弱性 CWE-200
CWE-310
CVE-2007-5470 2012-09-25 16:59 2007-10-15 Show GitHub Exploit DB Packet Storm
240147 7.5 危険 mydoop - doop CMS におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-5465 2012-09-25 16:59 2007-10-15 Show GitHub Exploit DB Packet Storm
240148 6.5 警告 lfs - Live for Speed におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-5464 2012-09-25 16:59 2007-10-15 Show GitHub Exploit DB Packet Storm
240149 7.1 危険 マイクロソフト - Windows Mobile などで使用される Microsoft ActiveSync におけるPIN/Password を解読される脆弱性 CWE-310
暗号の問題 		CVE-2007-5460 2012-09-25 16:59 2007-10-15 Show GitHub Exploit DB Packet Storm
240150 6.8 警告 michael dempfle
Joomla!		 - Joomla! 用の com_jfu or com_joomla_flash_uploader における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-5457 2012-09-25 16:59 2007-10-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 11, 2026, 5:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
267351 7.5 HIGH
Network 		moxa softcms An issue was discovered in Moxa SoftCMS versions prior to Version 1.6. Moxa SoftCMS Webserver does not properly validate input. An attacker could provide unexpected values and cause the program to cr… CWE-399
 Resource Management Errors 		CVE-2016-9332 2024-11-21 12:00 2017-02-14 Show GitHub Exploit DB Packet Storm
267352 9.8 CRITICAL
Network 		etalabs musl Multiple integer overflows in the TRE library and musl libc allow attackers to cause memory corruption via a large number of (1) states or (2) tags, which triggers an out-of-bounds write. CWE-190
 Integer Overflow or Wraparound 		CVE-2016-8859 2024-11-21 12:00 2017-02-14 Show GitHub Exploit DB Packet Storm
267353 7.5 HIGH
Network 		f5 big-ip_local_traffic_manager
big-ip_application_acceleration_manager
big-ip_advanced_firewall_manager
big-ip_analytics
big-ip_access_policy_manager
big-ip_application_security_manager<… 		A BIG-IP virtual server configured with a Client SSL profile that has the non-default Session Tickets option enabled may leak up to 31 bytes of uninitialized memory. A remote attacker may exploit thi… CWE-200
Information Exposure 		CVE-2016-9244 2024-11-21 12:00 2017-02-10 Show GitHub Exploit DB Packet Storm
267354 9.8 CRITICAL
Network 		ibm system_storage_ts3100-ts3200_tape_library IBM System Storage TS3100-TS3200 Tape Library could allow an unauthenticated user with access to the company network, to change a user's password and gain remote access to the system. CWE-284
Improper Access Control 		CVE-2016-9005 2024-11-21 12:00 2017-02-9 Show GitHub Exploit DB Packet Storm
267355 9.8 CRITICAL
Network 		ibm dashdb_local IBM dashDB Local uses hard-coded credentials that could allow a remote attacker to gain access to the Docker container or database. CWE-798
 Use of Hard-coded Credentials 		CVE-2016-8954 2024-11-21 12:00 2017-02-9 Show GitHub Exploit DB Packet Storm
267356 7.5 HIGH
Network 		fedoraproject
artifex 		fedora
mujs 		Integer overflow in the js_regcomp function in regexp.c in Artifex Software, Inc. MuJS before commit b6de34ac6d8bb7dd5461c57940acfbd3ee7fd93e allows attackers to cause a denial of service (applicatio… CWE-190
 Integer Overflow or Wraparound 		CVE-2016-9108 2024-11-21 12:00 2017-02-4 Show GitHub Exploit DB Packet Storm
267357 3.3 LOW
Local 		webmproject
fedoraproject 		libwebp
fedora 		Multiple integer overflows in libwebp allows attackers to have unspecified impact via unknown vectors. CWE-190
 Integer Overflow or Wraparound 		CVE-2016-9085 2024-11-21 12:00 2017-02-4 Show GitHub Exploit DB Packet Storm
267358 5.5 MEDIUM
Local 		cairographics cairo Integer overflow in the write_png function in cairo 1.14.6 allows remote attackers to cause a denial of service (invalid pointer dereference) via a large svg file. CWE-190
 Integer Overflow or Wraparound 		CVE-2016-9082 2024-11-21 12:00 2017-02-4 Show GitHub Exploit DB Packet Storm
267359 7.5 HIGH
Network 		ibm urbancode_deploy IBM UrbanCode Deploy could allow a malicious user to access the Agent Relay ActiveMQ Broker JMX interface and run plugins on the agent. CWE-284
Improper Access Control 		CVE-2016-9008 2024-11-21 12:00 2017-02-2 Show GitHub Exploit DB Packet Storm
267360 6.1 MEDIUM
Network 		ibm infosphere_information_server_on_cloud
infosphere_datastage 		IBM InfoSphere DataStage is vulnerable to cross-frame scripting, caused by insufficient HTML iframe protection. A remote attacker could exploit this vulnerability using a specially-crafted URL to nav… CWE-79
Cross-site Scripting 		CVE-2016-9000 2024-11-21 12:00 2017-02-2 Show GitHub Exploit DB Packet Storm