Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 9, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
240291 7.5 危険 nexen - AdminBot MX の lib/live_status.lib.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2986 2012-09-25 16:47 2007-06-1 Show GitHub Exploit DB Packet Storm
240292 10 危険 pheap - Pheap における認証を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-2985 2012-09-25 16:47 2007-06-1 Show GitHub Exploit DB Packet Storm
240293 6.8 警告 media technology group - CDPass.dll におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-2984 2012-09-25 16:47 2007-06-1 Show GitHub Exploit DB Packet Storm
240294 9.3 危険 LEAD Technologies, Inc. - LEAD Technologies の LEADTOOLS におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-2981 2012-09-25 16:47 2007-05-31 Show GitHub Exploit DB Packet Storm
240295 6.8 警告 LEAD Technologies, Inc. - LEADTOOLS LEAD Raster ISIS Object におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-2980 2012-09-25 16:47 2007-05-31 Show GitHub Exploit DB Packet Storm
240296 7.5 危険 Ignite Realtime - Ignite Realtime Openfire の admin コンソールにおける任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-2975 2012-09-25 16:47 2007-05-3 Show GitHub Exploit DB Packet Storm
240297 4.3 警告 Invision Power Services, Inc - IP.Board におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-2963 2012-09-25 16:47 2007-05-30 Show GitHub Exploit DB Packet Storm
240298 4.3 警告 particle soft - Particle Gallery の search.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-2962 2012-09-25 16:47 2007-05-31 Show GitHub Exploit DB Packet Storm
240299 9.3 危険 マカフィー - Solaris 用などの McAfee E-Business Server における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2007-2957 2012-09-25 16:47 2007-10-31 Show GitHub Exploit DB Packet Storm
240300 6.8 警告 pfstools
qtpfsgui		 - Qtpfsgui の readRadianceHeader 関数におけるスタックベースのバッファオーバーフローの脆弱性 - CVE-2007-2956 2012-09-25 16:47 2007-08-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 9, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
266521 9.8 CRITICAL
Network 		djangoproject
canonical
fedoraproject 		django
ubuntu_linux
fedora 		Django 1.8.x before 1.8.16, 1.9.x before 1.9.11, and 1.10.x before 1.10.3 use a hardcoded password for a temporary database user created when running tests with an Oracle database, which makes it eas… CWE-798
 Use of Hard-coded Credentials 		CVE-2016-9013 2024-11-21 12:00 2016-12-10 Show GitHub Exploit DB Packet Storm
266522 7.5 HIGH
Network 		openbsd openssh The kex_input_kexinit function in kex.c in OpenSSH 6.x and 7.x through 7.3 allows remote attackers to cause a denial of service (memory consumption) by sending many duplicate KEXINIT requests. NOTE:… CWE-399
 Resource Management Errors 		CVE-2016-8858 2024-11-21 12:00 2016-12-9 Show GitHub Exploit DB Packet Storm
266523 7.8 HIGH
Local 		linux linux_kernel Race condition in the ion_ioctl function in drivers/staging/android/ion/ion.c in the Linux kernel before 4.6 allows local users to gain privileges or cause a denial of service (use-after-free) by cal… CWE-264
CWE-416
Permissions, Privileges, and Access Controls
 Use After Free 		CVE-2016-9120 2024-11-21 12:00 2016-12-9 Show GitHub Exploit DB Packet Storm
266524 6.1 MEDIUM
Network 		spip spip Cross-site scripting (XSS) vulnerability in ecrire/exec/plonger.php in SPIP 3.1.3 allows remote attackers to inject arbitrary web script or HTML via the rac parameter. CWE-79
Cross-site Scripting 		CVE-2016-9152 2024-11-21 12:00 2016-12-6 Show GitHub Exploit DB Packet Storm
266525 9.8 CRITICAL
Network 		siemens sicam_pas\/pqs A vulnerability in Siemens SICAM PAS (all versions before V8.09) could allow a remote attacker to cause a Denial of Service condition and potentially lead to unauthenticated remote code execution by … CWE-20
CWE-284
 Improper Input Validation 
Improper Access Control 		CVE-2016-9157 2024-11-21 12:00 2016-12-5 Show GitHub Exploit DB Packet Storm
266526 7.3 HIGH
Network 		siemens sicam_pas\/pqs A vulnerability in Siemens SICAM PAS (all versions before V8.09) could allow a remote attacker to upload, download, or delete files in certain parts of the file system by sending specially crafted pa… CWE-20
CWE-284
 Improper Input Validation 
Improper Access Control 		CVE-2016-9156 2024-11-21 12:00 2016-12-5 Show GitHub Exploit DB Packet Storm
266527 7.8 HIGH
Local 		linux linux_kernel security/keys/big_key.c in the Linux kernel before 4.8.7 mishandles unsuccessful crypto registration in conjunction with successful key-type registration, which allows local users to cause a denial o… CWE-476
 NULL Pointer Dereference 		CVE-2016-9313 2024-11-21 12:00 2016-11-28 Show GitHub Exploit DB Packet Storm
266528 5.5 MEDIUM
Local 		linux linux_kernel The cgroup offline implementation in the Linux kernel through 4.8.11 mishandles certain drain operations, which allows local users to cause a denial of service (system hang) by leveraging access to a… CWE-20
CWE-399
 Improper Input Validation 
 Resource Management Errors 		CVE-2016-9191 2024-11-21 12:00 2016-11-28 Show GitHub Exploit DB Packet Storm
266529 5.5 MEDIUM
Local 		linux linux_kernel The __get_user_asm_ex macro in arch/x86/include/asm/uaccess.h in the Linux kernel before 4.7.5 does not initialize a certain integer variable, which allows local users to obtain sensitive information… CWE-200
Information Exposure 		CVE-2016-9178 2024-11-21 12:00 2016-11-28 Show GitHub Exploit DB Packet Storm
266530 7.8 HIGH
Local 		linux linux_kernel drivers/vfio/pci/vfio_pci_intrs.c in the Linux kernel through 4.8.11 misuses the kzalloc function, which allows local users to cause a denial of service (integer overflow) or have unspecified other i… CWE-190
 Integer Overflow or Wraparound 		CVE-2016-9084 2024-11-21 12:00 2016-11-28 Show GitHub Exploit DB Packet Storm