Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 31, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
240141 7.5 危険 nicola asuni - Nicola Asuni AIOCP における SQL インジェクションの脆弱性 - CVE-2007-0223 2012-09-25 15:36 2007-01-12 Show GitHub Exploit DB Packet Storm
240142 5 警告 ヒューレット・パッカード - HP OV NNM における任意のファイルを読まれる脆弱性 - CVE-2007-0206 2012-09-25 15:36 2007-01-10 Show GitHub Exploit DB Packet Storm
240143 7.5 危険 motionborg - Motionborg Web Real Estate の admin_check_user.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-0196 2012-09-25 15:36 2007-01-11 Show GitHub Exploit DB Packet Storm
240144 7.8 危険 mkportal - MKPortal の admin.php における重要な情報を取得される脆弱性 - CVE-2007-0194 2012-09-25 15:36 2007-01-12 Show GitHub Exploit DB Packet Storm
240145 7.5 危険 mkportal - MKPortal の admin.php におけるクロスサイトリクエストフォージェリの脆弱性 - CVE-2007-0192 2012-09-25 15:36 2007-01-12 Show GitHub Exploit DB Packet Storm
240146 4.1 警告 ヒューレット・パッカード - 複数の HP 製品で使用される HP all-in-one ドライバにおける任意のプログラムを実行される脆弱性 - CVE-2007-0161 2012-09-25 15:36 2007-01-9 Show GitHub Exploit DB Packet Storm
240147 7.8 危険 neon - 64 ビットプラットフォームの neon 用の URI パーサーにおけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-0157 2012-09-25 15:36 2007-01-9 Show GitHub Exploit DB Packet Storm
240148 7.5 危険 m-core - M-Core における重要な情報を取得される脆弱性 - CVE-2007-0156 2012-09-25 15:36 2007-01-9 Show GitHub Exploit DB Packet Storm
240149 7.5 危険 harikaonline - HarikaOnline におけるパスワードを含むデータベースをダウンロードされる脆弱性 - CVE-2007-0155 2012-09-25 15:36 2007-01-9 Show GitHub Exploit DB Packet Storm
240150 7.5 危険 ohhasp - OhhASP におけるパスワードを含むデータベースをダウンロードされる脆弱性 - CVE-2007-0152 2012-09-25 15:36 2007-01-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
267521 5.5 MEDIUM
Local 		libavformat_project libavformat The avcodec_decode_audio4 function in libavcodec in libavformat 57.34.103, as used in MPlayer, allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted mp3 file. CWE-125
Out-of-bounds Read 		CVE-2016-5115 2024-11-21 11:53 2017-02-4 Show GitHub Exploit DB Packet Storm
267522 5.9 MEDIUM
Network 		openntpd openntpd OpenNTPD before 6.0p1 does not validate the CN for HTTPS constraint requests, which allows remote attackers to bypass the man-in-the-middle mitigations via a crafted timestamp constraint with a valid… CWE-254
 7PK - Security Features 		CVE-2016-5117 2024-11-21 11:53 2017-02-1 Show GitHub Exploit DB Packet Storm
267523 5.5 MEDIUM
Local 		onionshare onionshare hs.py in OnionShare before 0.9.1 allows local users to modify the hiddenservice by pre-creating the /tmp/onionshare directory. CWE-284
Improper Access Control 		CVE-2016-5026 2024-11-21 11:53 2017-01-31 Show GitHub Exploit DB Packet Storm
267524 4.8 MEDIUM
Local 		valvesoftware steamos Valve Steam 3.42.16.13 uses weak permissions for the files in the Steam program directory, which allows local users to modify the files and possibly gain privileges as demonstrated by a Trojan horse … CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-5237 2024-11-21 11:53 2017-01-24 Show GitHub Exploit DB Packet Storm
267525 7.5 HIGH
Network 		keepass keepass The automatic update feature in KeePass 2.33 and earlier allows man-in-the-middle attackers to execute arbitrary code by spoofing the version check response and supplying a crafted update. CWE-20
 Improper Input Validation  		CVE-2016-5119 2024-11-21 11:53 2017-01-24 Show GitHub Exploit DB Packet Storm
267526 8.1 HIGH
Network 		typo3 typo3 Extbase in TYPO3 4.3.0 before 6.2.24, 7.x before 7.6.8, and 8.1.1 allows remote attackers to obtain sensitive information or possibly execute arbitrary code via a crafted Extbase action. CWE-254
 7PK - Security Features 		CVE-2016-5091 2024-11-21 11:53 2017-01-24 Show GitHub Exploit DB Packet Storm
267527 5.4 MEDIUM
Network 		moodle moodle In Moodle 2.x and 3.x, an unenrolled user still receives event monitor notifications even though they can no longer access the course. CWE-200
Information Exposure 		CVE-2016-5014 2024-11-21 11:53 2017-01-20 Show GitHub Exploit DB Packet Storm
267528 5.4 MEDIUM
Network 		moodle moodle In Moodle 2.x and 3.x, text injection can occur in email headers, potentially leading to outbound spam. CWE-74
Injection 		CVE-2016-5013 2024-11-21 11:53 2017-01-20 Show GitHub Exploit DB Packet Storm
267529 5.3 MEDIUM
Network 		moodle moodle In Moodle 3.x, glossary search displays entries without checking user permissions to view them. CWE-200
Information Exposure 		CVE-2016-5012 2024-11-21 11:53 2017-01-20 Show GitHub Exploit DB Packet Storm
267530 6.1 MEDIUM
Network 		google chrome Blink in Google Chrome prior to 55.0.2883.75 for Linux, Windows and Mac executed javascript: URLs entered in the URL bar in the context of the current tab, which allowed a socially engineered user to… CWE-79
Cross-site Scripting 		CVE-2016-5226 2024-11-21 11:53 2017-01-19 Show GitHub Exploit DB Packet Storm