Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 31, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
240281	4	警告	MailEnable	-	MailEnable Professional における重要な情報を取得される脆弱性	-	CVE-2006-6964	2012-09-25 15:36	2007-01-29	Show	GitHub Exploit DB Packet Storm

240282	6.8	警告	Joomla!	-	Joomla! 用の RS Gallery2 コンポーネントにおける PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2006-6962	2012-09-25 15:36	2007-01-29	Show	GitHub Exploit DB Packet Storm

240283	4.3	警告	マイクロソフト	-	Microsoft Internet Explorer 6 におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2006-6956	2012-09-25 15:36	2007-01-29	Show	GitHub Exploit DB Packet Storm

240284	6.8	警告	odysseus blog	-	OdysseusBlog の blog.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-6951	2012-09-25 15:36	2007-01-22	Show	GitHub Exploit DB Packet Storm

240285	10	危険	owa	-	OWA の POP3/SMTP におけるバッファオーバーフローの脆弱性	-	CVE-2006-6940	2012-09-25 15:36	2007-01-17	Show	GitHub Exploit DB Packet Storm

240286	5	警告	nitrotech	-	NitroTech の includes/common.php におけるディレクトリトラバーサルの脆弱性	-	CVE-2006-6938	2012-09-25 15:36	2007-01-16	Show	GitHub Exploit DB Packet Storm

240287	7.5	危険	pensacola web designs	-	Xtreme ASP Photo Gallery の displaypic.asp における SQL インジェクションの脆弱性	-	CVE-2006-6937	2012-09-25 15:36	2007-01-16	Show	GitHub Exploit DB Packet Storm

240288	6.8	警告	pensacola web designs	-	Xtreme ASP Photo Gallery におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-6936	2012-09-25 15:36	2007-01-16	Show	GitHub Exploit DB Packet Storm

240289	7.5	危険	image gallery with access database	-	Access Database を持つ Image Gallery における SQL インジェクションの脆弱性	-	CVE-2006-6932	2012-09-25 15:36	2007-01-16	Show	GitHub Exploit DB Packet Storm

240290	5	警告	Mozilla Foundation	-	Mozilla Firefox におけるフィッシングの保護メカニズムを回避される脆弱性	CWE-20 不適切な入力確認	CVE-2006-6971	2012-09-25 15:36	2006-10-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
268501	7.8	HIGH Local	adobe	connect	Untrusted search path vulnerability in the installer in Adobe Connect Add-In before 11.9.976.291 on Windows allows local users to gain privileges via unspecified vectors.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-4118	2024-11-21 11:51	2016-05-30	Show	GitHub Exploit DB Packet Storm

268502	7.5	HIGH Network	fedoraproject pgpdump_project	fedora pgpdump	The read_binary function in buffer.c in pgpdump before 0.30 allows context-dependent attackers to cause a denial of service (infinite loop and CPU consumption) via crafted input, as demonstrated by t…	CWE-399 Resource Management Errors	CVE-2016-4021	2024-11-21 11:51	2016-05-26	Show	GitHub Exploit DB Packet Storm

268503	6.5	MEDIUM Local	qemu canonical debian redhat	qemu ubuntu_linux debian_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server openstack enterprise_linux_server_aus enterprise_linux_eus ente…	The patch_instruction function in hw/i386/kvmvapic.c in QEMU does not initialize the imm32 variable, which allows local guest OS administrators to obtain sensitive information from host stack memory …	NVD-CWE-noinfo	CVE-2016-4020	2024-11-21 11:51	2016-05-26	Show	GitHub Exploit DB Packet Storm

268504	8.1	HIGH Network	huawei	s12700_firmware s5700_firmware	Huawei S12700 switches with software before V200R008C00SPC500 and S5700 switches with software before V200R005SPH010, when the debug switch is enabled, allows remote attackers to cause a denial of se…	CWE-20 Improper Input Validation	CVE-2016-4087	2024-11-21 11:51	2016-05-24	Show	GitHub Exploit DB Packet Storm

268505	7.5	HIGH Network	quagga opensuse	quagga leap opensuse	The bgp_dump_routes_func function in bgpd/bgp_dump.c in Quagga does not perform size checks when dumping data, which might allow remote attackers to cause a denial of service (assertion failure and d…	CWE-20 Improper Input Validation	CVE-2016-4049	2024-11-21 11:51	2016-05-24	Show	GitHub Exploit DB Packet Storm

268506	6.0	MEDIUM Local	fedoraproject canonical qemu debian	fedora ubuntu_linux qemu debian_linux	The ehci_advance_state function in hw/usb/hcd-ehci.c in QEMU allows local guest OS administrators to cause a denial of service (infinite loop and CPU consumption) via a circular split isochronous tra…	CWE-400 Uncontrolled Resource Consumption	CVE-2016-4037	2024-11-21 11:51	2016-05-24	Show	GitHub Exploit DB Packet Storm

268507	8.6	HIGH Network	qemu canonical fedoraproject debian	qemu ubuntu_linux fedora debian_linux	Buffer overflow in the stellaris_enet_receive function in hw/net/stellaris_enet.c in QEMU, when the Stellaris ethernet controller is configured to accept large packets, allows remote attackers to cau…	CWE-120 Classic Buffer Overflow	CVE-2016-4001	2024-11-21 11:51	2016-05-24	Show	GitHub Exploit DB Packet Storm

268508	7.5	HIGH Network	opensuse golang fedoraproject	leap go fedora	The Verify function in crypto/dsa/dsa.go in Go before 1.5.4 and 1.6.x before 1.6.1 does not properly check parameters passed to the big integer library, which might allow remote attackers to cause a …	CWE-20 Improper Input Validation	CVE-2016-3959	2024-11-21 11:51	2016-05-24	Show	GitHub Exploit DB Packet Storm

268509	7.8	HIGH Local	golang	go	Untrusted search path vulnerability in Go before 1.5.4 and 1.6.x before 1.6.1 on Windows allows local users to gain privileges via a Trojan horse DLL in the current working directory, related to use …	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-3958	2024-11-21 11:51	2016-05-24	Show	GitHub Exploit DB Packet Storm

268510	9.8	CRITICAL Network	php opensuse	php leap opensuse	Integer overflow in the str_pad function in ext/standard/string.c in PHP before 7.0.4 allows remote attackers to cause a denial of service or possibly have unspecified other impact via a long string,…	CWE-190 Integer Overflow or Wraparound	CVE-2016-4346	2024-11-21 11:51	2016-05-22	Show	GitHub Exploit DB Packet Storm