Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 3, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
240231 6.8 警告 Joomla! - BSQ Sitestats の IP Address Lookup 機能におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-7122 2012-09-25 15:36 2007-03-5 Show GitHub Exploit DB Packet Storm
240232 7.8 危険 シスコシステムズ (Linksys) - Linksys SPA-921 VoIP Desktop Phone の HTTP サーバにおけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-7121 2012-09-25 15:36 2007-03-5 Show GitHub Exploit DB Packet Storm
240233 6.8 警告 kubix - Kubix におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2006-7117 2012-09-25 15:36 2007-03-5 Show GitHub Exploit DB Packet Storm
240234 7.5 危険 kubix - Kubix の includes/functions.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2006-7116 2012-09-25 15:36 2007-03-5 Show GitHub Exploit DB Packet Storm
240235 6 警告 MAXDev - MD-Pro の error.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2006-7112 2012-09-25 15:36 2007-03-5 Show GitHub Exploit DB Packet Storm
240236 7.5 危険 Mambo Foundation - Mambo 用の MOStlyCE コンポーネントの htmltemplate.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2006-7104 2012-09-25 15:36 2007-03-3 Show GitHub Exploit DB Packet Storm
240237 7.5 危険 matthias dietrich - phpBurningPortal quiz-modul における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2006-7102 2012-09-25 15:36 2007-03-3 Show GitHub Exploit DB Packet Storm
240238 10 危険 klink - dim3 の host.c におけるバッファオーバーフローの脆弱性 - CVE-2006-7096 2012-09-25 15:36 2007-03-2 Show GitHub Exploit DB Packet Storm
240239 10 危険 klink - dim3 の socket.c における整数符号エラーの脆弱性 - CVE-2006-7095 2012-09-25 15:36 2007-03-2 Show GitHub Exploit DB Packet Storm
240240 5.8 警告 mamboxchange - Mambo LaiThai Security Patch におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-7093 2012-09-25 15:36 2007-03-2 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
266981 6.5 MEDIUM
Network 		huawei anyoffice_secureapp Huawei AnyMail before 2.6.0301.0060 allows remote attackers to cause a denial of service (application crash) via a crafted compressed email attachment. CWE-284
Improper Access Control 		CVE-2016-6826 2024-11-21 11:56 2016-09-27 Show GitHub Exploit DB Packet Storm
266982 7.5 HIGH
Network 		huawei s5300_firmware
s12700_firmware
s6300_firmware
s7700_firmware
s5700_firmware
s6700_firmware
s9700_firmware
s9300_firmware 		Memory leak in Huawei S9300, S5300, S5700, S6700, S7700, S9700, and S12700 devices allows remote attackers to cause a denial of service (memory consumption and restart) via a large number of malforme… CWE-399
 Resource Management Errors 		CVE-2016-6518 2024-11-21 11:56 2016-09-27 Show GitHub Exploit DB Packet Storm
266983 6.1 MEDIUM
Network 		huawei oceanstor_ism Cross-site scripting (XSS) vulnerability in the management interface in Huawei OceanStor ISM before V200R001C04SPC200 allows remote attackers to inject arbitrary web script or HTML via the loginName … CWE-79
Cross-site Scripting 		CVE-2016-6840 2024-11-21 11:56 2016-09-26 Show GitHub Exploit DB Packet Storm
266984 9.8 CRITICAL
Network 		dexis imaging_suite DEXIS Imaging Suite 10 has a hardcoded password for the sa account, which allows remote attackers to obtain administrative access by entering this password in a DEXIS_DATA SQL Server session. CWE-798
 Use of Hard-coded Credentials 		CVE-2016-6532 2024-11-21 11:56 2016-09-24 Show GitHub Exploit DB Packet Storm
266985 9.8 CRITICAL
Network 		opendental opendental Open Dental 16.1 and earlier has a hardcoded MySQL root password, which allows remote attackers to obtain administrative access by leveraging access to intranet TCP port 3306. NOTE: the vendor dispu… CWE-255
Credentials Management 		CVE-2016-6531 2024-11-21 11:56 2016-09-24 Show GitHub Exploit DB Packet Storm
266986 7.8 HIGH
Local 		cisco application_policy_infrastructure_controller The installation procedure on Cisco Application Policy Infrastructure Controller (APIC) devices 1.3(2f) mishandles binary files, which allows local users to obtain root access via unspecified vectors… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-6413 2024-11-21 11:56 2016-09-24 Show GitHub Exploit DB Packet Storm
266987 6.5 MEDIUM
Network 		cisco ios The Cisco Application-hosting Framework (CAF) component in Cisco IOS 15.6(1)T1 and IOS XE, when the IOx feature set is enabled, allows man-in-the-middle attackers to trigger arbitrary downloads via c… CWE-20
 Improper Input Validation  		CVE-2016-6412 2024-11-21 11:56 2016-09-24 Show GitHub Exploit DB Packet Storm
266988 7.5 HIGH
Network 		cisco firesight_system_software Cisco Firepower Management Center and FireSIGHT System Software 6.0.1 mishandle comparisons between URLs and X.509 certificates, which allows remote attackers to bypass intended do-not-decrypt settin… CWE-20
 Improper Input Validation  		CVE-2016-6411 2024-11-21 11:56 2016-09-24 Show GitHub Exploit DB Packet Storm
266989 6.5 MEDIUM
Network 		cisco ios The Cisco Application-hosting Framework (CAF) component in Cisco IOS 15.6(1)T1 and IOS XE, when the IOx feature set is enabled, allows remote authenticated users to read arbitrary files via unspecifi… CWE-20
 Improper Input Validation  		CVE-2016-6410 2024-11-21 11:56 2016-09-24 Show GitHub Exploit DB Packet Storm
266990 7.5 HIGH
Network 		cisco ios The Data in Motion (DMo) component in Cisco IOS 15.6(1)T and IOS XE, when the IOx feature set is enabled, allows remote attackers to cause a denial of service (out-of-bounds access) via crafted traff… CWE-399
 Resource Management Errors 		CVE-2016-6409 2024-11-21 11:56 2016-09-24 Show GitHub Exploit DB Packet Storm