Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 2, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
240231	6.8	警告	Joomla!	-	BSQ Sitestats の IP Address Lookup 機能におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-7122	2012-09-25 15:36	2007-03-5	Show	GitHub Exploit DB Packet Storm

240232	7.8	危険	シスコシステムズ (Linksys)	-	Linksys SPA-921 VoIP Desktop Phone の HTTP サーバにおけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-7121	2012-09-25 15:36	2007-03-5	Show	GitHub Exploit DB Packet Storm

240233	6.8	警告	kubix	-	Kubix におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2006-7117	2012-09-25 15:36	2007-03-5	Show	GitHub Exploit DB Packet Storm

240234	7.5	危険	kubix	-	Kubix の includes/functions.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2006-7116	2012-09-25 15:36	2007-03-5	Show	GitHub Exploit DB Packet Storm

240235	6	警告	MAXDev	-	MD-Pro の error.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2006-7112	2012-09-25 15:36	2007-03-5	Show	GitHub Exploit DB Packet Storm

240236	7.5	危険	Mambo Foundation	-	Mambo 用の MOStlyCE コンポーネントの htmltemplate.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2006-7104	2012-09-25 15:36	2007-03-3	Show	GitHub Exploit DB Packet Storm

240237	7.5	危険	matthias dietrich	-	phpBurningPortal quiz-modul における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2006-7102	2012-09-25 15:36	2007-03-3	Show	GitHub Exploit DB Packet Storm

240238	10	危険	klink	-	dim3 の host.c におけるバッファオーバーフローの脆弱性	-	CVE-2006-7096	2012-09-25 15:36	2007-03-2	Show	GitHub Exploit DB Packet Storm

240239	10	危険	klink	-	dim3 の socket.c における整数符号エラーの脆弱性	-	CVE-2006-7095	2012-09-25 15:36	2007-03-2	Show	GitHub Exploit DB Packet Storm

240240	5.8	警告	mamboxchange	-	Mambo LaiThai Security Patch におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-7093	2012-09-25 15:36	2007-03-2	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
268251	8.6	HIGH Network	php	php	Integer overflow in the php_escape_html_entities_ex function in ext/standard/html.c in PHP before 5.5.36 and 5.6.x before 5.6.22 allows remote attackers to cause a denial of service or possibly have …	CWE-190 Integer Overflow or Wraparound	CVE-2016-5095	2024-11-21 11:53	2016-08-7	Show	GitHub Exploit DB Packet Storm

268252	8.6	HIGH Network	php	php	Integer overflow in the php_html_entities function in ext/standard/html.c in PHP before 5.5.36 and 5.6.x before 5.6.22 allows remote attackers to cause a denial of service or possibly have unspecifie…	CWE-190 Integer Overflow or Wraparound	CVE-2016-5094	2024-11-21 11:53	2016-08-7	Show	GitHub Exploit DB Packet Storm

268253	8.6	HIGH Network	php	php	The get_icu_value_internal function in ext/intl/locale/locale_methods.c in PHP before 5.5.36, 5.6.x before 5.6.22, and 7.x before 7.0.7 does not ensure the presence of a '\0' character, which allows …	CWE-125 Out-of-bounds Read	CVE-2016-5093	2024-11-21 11:53	2016-08-7	Show	GitHub Exploit DB Packet Storm

268254	9.8	CRITICAL Network	redhat	jboss_bpm_suite jboss_enterprise_brms_platform dashbuilder	SQL injection vulnerability in the getStringParameterSQL method in main/java/org/dashbuilder/dataprovider/sql/dialect/DefaultDialect.java in Dashbuilder before 0.6.0.Beta1 allows remote attackers to …	CWE-89 SQL Injection	CVE-2016-4999	2024-11-21 11:53	2016-08-6	Show	GitHub Exploit DB Packet Storm

268255	5.5	MEDIUM Local	apache	poi	The XLSX2CSV example in Apache POI before 3.14 allows remote attackers to read arbitrary files via a crafted OpenXML document containing an external entity declaration in conjunction with an entity r…	CWE-611 XXE	CVE-2016-5000	2024-11-21 11:53	2016-08-5	Show	GitHub Exploit DB Packet Storm

268256	4.3	MEDIUM Network	mozilla	firefox	Mozilla Firefox before 48.0 does not properly set the LINKABLE and URI_SAFE_FOR_UNTRUSTED_CONTENT flags of about: URLs that are used for error pages, which makes it easier for remote attackers to con…	CWE-254 7PK - Security Features	CVE-2016-5268	2024-11-21 11:53	2016-08-5	Show	GitHub Exploit DB Packet Storm

268257	5.3	MEDIUM Network	mozilla	firefox	Mozilla Firefox before 48.0 on Android allows remote attackers to spoof the address bar via left-to-right characters in conjunction with a right-to-left character set.	CWE-20 Improper Input Validation	CVE-2016-5267	2024-11-21 11:53	2016-08-5	Show	GitHub Exploit DB Packet Storm

268258	8.1	HIGH Network	mozilla	firefox	Mozilla Firefox before 48.0 does not properly restrict drag-and-drop (aka dataTransfer) actions for file: URIs, which allows user-assisted remote attackers to access local files via a crafted web sit…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-5266	2024-11-21 11:53	2016-08-5	Show	GitHub Exploit DB Packet Storm

268259	5.5	MEDIUM Local	oracle mozilla	linux firefox	Mozilla Firefox before 48.0 and Firefox ESR 45.x before 45.3 allow user-assisted remote attackers to bypass the Same Origin Policy, and conduct Universal XSS (UXSS) attacks or read arbitrary files, b…	CWE-79 CWE-200 Cross-site Scripting Information Exposure	CVE-2016-5265	2024-11-21 11:53	2016-08-5	Show	GitHub Exploit DB Packet Storm

268260	8.8	HIGH Network	mozilla oracle	firefox linux	Use-after-free vulnerability in the nsNodeUtils::NativeAnonymousChildListChange function in Mozilla Firefox before 48.0 and Firefox ESR 45.x before 45.3 allows remote attackers to execute arbitrary c…	CWE-416 Use After Free	CVE-2016-5264	2024-11-21 11:53	2016-08-5	Show	GitHub Exploit DB Packet Storm