Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 26, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
240291 4.3 警告 mirapoint - Mirapoint WebMail におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-5712 2012-09-25 15:36 2006-11-3 Show GitHub Exploit DB Packet Storm
240292 7.2 危険 The PHP Group - PHP における open_basedir 制限を回避される脆弱性 CWE-noinfo
情報不足 		CVE-2006-5706 2012-09-25 15:36 2006-11-3 Show GitHub Exploit DB Packet Storm
240293 6.2 警告 ヒューレット・パッカード - HP NonStop Server における任意のファイルを読まれる脆弱性 - CVE-2006-5704 2012-09-25 15:36 2006-10-26 Show GitHub Exploit DB Packet Storm
240294 4.9 警告 Linux
レッドハット		 - Fedora Core 5 などで使用される Linux kernel におけるメモリ二重解放の脆弱性 - CVE-2006-5701 2012-09-25 15:36 2006-11-3 Show GitHub Exploit DB Packet Storm
240295 10 危険 Pentaho Corporation - Pentaho BI Suite における脆弱性 - CVE-2006-5675 2012-09-25 15:36 2006-11-2 Show GitHub Exploit DB Packet Storm
240296 7.5 危険 miniBB - miniBB における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5674 2012-09-25 15:36 2006-11-2 Show GitHub Exploit DB Packet Storm
240297 6.8 警告 miniBB - miniBB の bb_func_txt.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5673 2012-09-25 15:36 2006-11-2 Show GitHub Exploit DB Packet Storm
240298 7.5 危険 mysource cms - MySource CMS の web/init_mysource.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5672 2012-09-25 15:36 2006-11-2 Show GitHub Exploit DB Packet Storm
240299 7.5 危険 p-book - P-Book における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5667 2012-09-25 15:36 2006-11-2 Show GitHub Exploit DB Packet Storm
240300 4.6 警告 IBM - IBM Informix Dynamic Server などの製品における "セキュリティを侵害される" 脆弱性 - CVE-2006-5664 2012-09-25 15:36 2006-10-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 26, 2026, 4:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
267441 9.8 CRITICAL
Network 		php php Stack-based buffer overflow in ext/phar/tar.c in PHP before 5.5.32, 5.6.x before 5.6.18, and 7.x before 7.0.3 allows remote attackers to cause a denial of service (application crash) or possibly have… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-2554 2024-11-21 11:48 2016-05-16 Show GitHub Exploit DB Packet Storm
267442 9.8 CRITICAL
Network 		meteocontrol web\'log_pro
web\'log_pro_unlimited
web\'log_basic_100
web\'log_light 		Meteocontrol WEB'log Basic 100, Light, Pro, and Pro Unlimited allows remote attackers to obtain sensitive cleartext information via unspecified vectors. CWE-200
Information Exposure 		CVE-2016-2298 2024-11-21 11:48 2016-05-15 Show GitHub Exploit DB Packet Storm
267443 9.4 CRITICAL
Network 		meteocontrol web\'log_pro
web\'log_pro_unlimited
web\'log_basic_100
web\'log_light 		Meteocontrol WEB'log Basic 100, Light, Pro, and Pro Unlimited allows remote attackers to execute arbitrary commands via an "access command shell-like feature." NVD-CWE-noinfo
CVE-2016-2297 2024-11-21 11:48 2016-05-15 Show GitHub Exploit DB Packet Storm
267444 9.4 CRITICAL
Network 		meteocontrol web\'log_pro
web\'log_pro_unlimited
web\'log_basic_100
web\'log_light 		Meteocontrol WEB'log Basic 100, Light, Pro, and Pro Unlimited does not require authentication for "post-admin" login pages, which allows remote attackers to obtain sensitive information or modify dat… CWE-254
 7PK - Security Features 		CVE-2016-2296 2024-11-21 11:48 2016-05-15 Show GitHub Exploit DB Packet Storm
267445 6.5 MEDIUM
Network 		openafs
debian 		openafs
debian_linux 		The newEntry function in ptserver/ptprocs.c in OpenAFS before 1.6.17 allows remote authenticated users from foreign Kerberos realms to bypass intended access restrictions and create arbitrary groups … CWE-284
Improper Access Control 		CVE-2016-2860 2024-11-21 11:48 2016-05-14 Show GitHub Exploit DB Packet Storm
267446 7.5 HIGH
Network 		fedoraproject
botan_project 		fedora
botan 		Botan 1.11.x before 1.11.29 does not enforce TLS policy for (1) signature algorithms and (2) ECC curves, which allows remote attackers to conduct downgrade attacks via unspecified vectors. CWE-20
 Improper Input Validation  		CVE-2016-2850 2024-11-21 11:48 2016-05-13 Show GitHub Exploit DB Packet Storm
267447 7.5 HIGH
Network 		debian
fedoraproject
botan_project 		debian_linux
fedora
botan 		Botan before 1.10.13 and 1.11.x before 1.11.29 do not use a constant-time algorithm to perform a modular inverse on the signature nonce k, which might allow remote attackers to obtain ECDSA secret ke… CWE-200
Information Exposure 		CVE-2016-2849 2024-11-21 11:48 2016-05-13 Show GitHub Exploit DB Packet Storm
267448 9.8 CRITICAL
Network 		botan_project botan Heap-based buffer overflow in the P-521 reduction function in Botan 1.11.x before 1.11.27 allows remote attackers to cause a denial of service (memory overwrite and crash) or execute arbitrary code v… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-2196 2024-11-21 11:48 2016-05-13 Show GitHub Exploit DB Packet Storm
267449 9.8 CRITICAL
Network 		botan_project
debian 		botan
debian_linux 		Integer overflow in the PointGFp constructor in Botan before 1.10.11 and 1.11.x before 1.11.27 allows remote attackers to overwrite memory and possibly execute arbitrary code via a crafted ECC point,… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-2195 2024-11-21 11:48 2016-05-13 Show GitHub Exploit DB Packet Storm
267450 7.5 HIGH
Network 		debian
botan_project 		debian_linux
botan 		The ressol function in Botan before 1.10.11 and 1.11.x before 1.11.27 allows remote attackers to cause a denial of service (infinite loop) via unspecified input to the OS2ECP function, related to a c… CWE-20
 Improper Input Validation  		CVE-2016-2194 2024-11-21 11:48 2016-05-13 Show GitHub Exploit DB Packet Storm