Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 30, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
240211 5 警告 iono - Iono におけるサーバのフルパスを取得される脆弱性 - CVE-2006-7154 2012-09-25 15:36 2007-03-7 Show GitHub Exploit DB Packet Storm
240212 10 危険 miniBB - MiniBB Forum の index.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-7153 2012-09-25 15:36 2007-03-7 Show GitHub Exploit DB Packet Storm
240213 7.5 危険 Mambo Foundation - Mambo における SQL インジェクションの脆弱性 - CVE-2006-7150 2012-09-25 15:36 2007-03-7 Show GitHub Exploit DB Packet Storm
240214 4.3 警告 Mambo Foundation - Mambo におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-7149 2012-09-25 15:36 2007-03-7 Show GitHub Exploit DB Packet Storm
240215 2.6 注意 KDE project - KDE 用の Kmail におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2006-7139 2012-09-25 15:36 2007-03-7 Show GitHub Exploit DB Packet Storm
240216 7.5 危険 php poll creator - phpPC の lib/functions.inc.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-7135 2012-09-25 15:36 2007-03-6 Show GitHub Exploit DB Packet Storm
240217 10 危険 noah spurrier - PHP 用の Upload Tool におけるファイルをアップロードされる脆弱性 - CVE-2006-7134 2012-09-25 15:36 2007-03-5 Show GitHub Exploit DB Packet Storm
240218 5 警告 php upload tool - Upload Tool の upload/bin/download.php におけるディレクトリトラバーサルの脆弱性 - CVE-2006-7133 2012-09-25 15:36 2007-03-5 Show GitHub Exploit DB Packet Storm
240219 4.3 警告 オラクル - Oracle APEX におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-7158 2012-09-25 15:36 2006-10-17 Show GitHub Exploit DB Packet Storm
240220 6 警告 オラクル - WWV_FLOW_UTILITIES パッケージの wwv_flow_utilities.gen_popup_list における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2006-7138 2012-09-25 15:36 2006-10-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 30, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
268161 9.8 CRITICAL
Network 		adobe acrobat
acrobat_dc
acrobat_reader_dc
reader 		Adobe Reader and Acrobat before 11.0.17, Acrobat and Acrobat Reader DC Classic before 15.006.30198, and Acrobat and Acrobat Reader DC Continuous before 15.017.20050 on Windows and OS X allow attacker… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-4266 2024-11-21 11:51 2016-08-27 Show GitHub Exploit DB Packet Storm
268162 9.8 CRITICAL
Network 		adobe acrobat
acrobat_dc
acrobat_reader_dc
reader 		Adobe Reader and Acrobat before 11.0.17, Acrobat and Acrobat Reader DC Classic before 15.006.30198, and Acrobat and Acrobat Reader DC Continuous before 15.017.20050 on Windows and OS X allow attacker… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-4265 2024-11-21 11:51 2016-08-27 Show GitHub Exploit DB Packet Storm
268163 8.8 HIGH
Network 		opensuse
roundcube 		leap
webmail 		Cross-site request forgery (CSRF) vulnerability in Roundcube Webmail before 1.1.5 allows remote attackers to hijack the authentication of users for requests that download attachments and cause a deni… CWE-352
 Origin Validation Error 		CVE-2016-4069 2024-11-21 11:51 2016-08-26 Show GitHub Exploit DB Packet Storm
268164 9.8 CRITICAL
Network 		adobe acrobat
acrobat_dc
acrobat_reader_dc
reader 		Adobe Reader and Acrobat before 11.0.16, Acrobat and Acrobat Reader DC Classic before 15.006.30172, and Acrobat and Acrobat Reader DC Continuous before 15.016.20039 on Windows and OS X allow attacker… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-4119 2024-11-21 11:51 2016-08-27 Show GitHub Exploit DB Packet Storm
268165 6.5 MEDIUM
Network 		broadcom fabric_operating_system HPE FOS before 7.4.1d and 8.x before 8.0.1 on StoreFabric B switches allows remote attackers to obtain sensitive information via unspecified vectors. CWE-254
 7PK - Security Features 		CVE-2016-4376 2024-11-21 11:51 2016-08-22 Show GitHub Exploit DB Packet Storm
268166 8.1 HIGH
Network 		hp sizing_tool_for_sap_business_suite_powered_by_hana
sap_sizing_tool
insight_management_sizer
storage_sizing_tool
sizer_for_microsoft_sharepoint_2013
sizer_for_microsoft_lync_server_2013… 		HPE Smart Update in Storage Sizing Tool before 13.0, Converged Infrastructure Solution Sizer Suite (CISSS) before 2.13.1, Power Advisor before 7.8.2, Insight Management Sizer before 16.12.1, Synergy … NVD-CWE-noinfo
CVE-2016-4377 2024-11-21 11:51 2016-08-22 Show GitHub Exploit DB Packet Storm
268167 5.3 MEDIUM
Network 		adobe experience_manager The Backup functionality in Adobe Experience Manager 5.6.1, 6.0, 6.1, and 6.2 allows attackers to obtain sensitive information via unspecified vectors. CWE-200
Information Exposure 		CVE-2016-4253 2024-11-21 11:51 2016-08-10 Show GitHub Exploit DB Packet Storm
268168 6.1 MEDIUM
Network 		adobe experience_manager Cross-site scripting (XSS) vulnerability in Adobe Experience Manager 5.6.1, 6.0, 6.1, and 6.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. CWE-79
Cross-site Scripting 		CVE-2016-4170 2024-11-21 11:51 2016-08-10 Show GitHub Exploit DB Packet Storm
268169 5.3 MEDIUM
Network 		adobe experience_manager Adobe Experience Manager 6.0, 6.1, and 6.2 allow attackers to obtain sensitive audit log event information via unspecified vectors. CWE-200
Information Exposure 		CVE-2016-4169 2024-11-21 11:51 2016-08-10 Show GitHub Exploit DB Packet Storm
268170 6.1 MEDIUM
Network 		adobe experience_manager Cross-site scripting (XSS) vulnerability in Adobe Experience Manager 5.6.1, 6.0, and 6.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. CWE-79
Cross-site Scripting 		CVE-2016-4168 2024-11-21 11:51 2016-08-10 Show GitHub Exploit DB Packet Storm