Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 26, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 240321 | 4.3 | 警告 | オラクル | - | Oracle Application Express におけるクロスサイトスクリプティングの脆弱性 | - | CVE-2006-5599 | 2012-09-25 15:36 | 2006-10-17 | Show | GitHub Exploit DB Packet Storm |
| 240322 | 7.5 | 危険 | minihttp | - | MiniHTTP Web Forum & File Server PowerPack における任意のユーザアカウントを追加される脆弱性 | - | CVE-2006-5597 | 2012-09-25 15:36 | 2006-10-27 | Show | GitHub Exploit DB Packet Storm |
| 240323 | 7.5 | 危険 | pacos drivers | - | PacPoll の Admin/check.asp における認証を回避される脆弱性 | - | CVE-2006-5592 | 2012-09-25 15:36 | 2006-10-27 | Show | GitHub Exploit DB Packet Storm |
| 240324 | 5 | 警告 | pacos drivers | - | PacPoll の Admin/check.asp における SQL インジェクションの脆弱性 | - | CVE-2006-5591 | 2012-09-25 15:36 | 2006-10-27 | Show | GitHub Exploit DB Packet Storm |
| 240325 | 7.5 | 危険 | LedgerSMB | - | LSMB における SQL インジェクションの脆弱性 | - | CVE-2006-5589 | 2012-09-25 15:36 | 2006-10-27 | Show | GitHub Exploit DB Packet Storm |
| 240326 | 7.5 | 危険 | mdweb | - | MDweb における PHP リモートファイルインクルージョンの脆弱性 | - | CVE-2006-5587 | 2012-09-25 15:36 | 2006-10-27 | Show | GitHub Exploit DB Packet Storm |
| 240327 | 9.3 | 危険 | マイクロソフト | - | Microsoft Office 2003 などの Multilingual Interface における任意のコードを実行される脆弱性 |
CWE-noinfo
情報不足 |
CVE-2006-5574 | 2012-09-25 15:36 | 2006-12-31 | Show | GitHub Exploit DB Packet Storm |
| 240328 | 9.3 | 危険 | Nullsoft | - | AOL Nullsoft WinAmp におけるヒープベースのバッファオーバーフローの脆弱性 | - | CVE-2006-5567 | 2012-09-25 15:36 | 2006-10-27 | Show | GitHub Exploit DB Packet Storm |
| 240329 | 5 | 警告 | MAXDev | - | MAXdev MD-Pro における CRLF インジェクションの脆弱性 | - | CVE-2006-5565 | 2012-09-25 15:36 | 2006-10-27 | Show | GitHub Exploit DB Packet Storm |
| 240330 | 4.3 | 警告 | MAXDev | - | MAXdev MD-Pro の user.php におけるクロスサイトスクリプティングの脆弱性 | - | CVE-2006-5564 | 2012-09-25 15:36 | 2006-10-27 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 26, 2026, 4:05 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 268261 | 8.8 |
HIGH
Network |
google debian canonical redhat suse opensuse |
chrome debian_linux ubuntu_linux enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation linux_enterprise leap opensuse |
Multiple unspecified vulnerabilities in Google Chrome before 51.0.2704.79 allow attackers to cause a denial of service or possibly have other impact via unknown vectors. |
NVD-CWE-noinfo
|
CVE-2016-1703 | 2024-11-21 11:46 | 2016-06-6 | Show | GitHub Exploit DB Packet Storm |
| 268262 | 6.5 |
MEDIUM
Network |
debian canonical redhat suse opensuse |
debian_linux ubuntu_linux enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation linux_enterprise leap opensuse chrome |
The SkRegion::readFromMemory function in core/SkRegion.cpp in Skia, as used in Google Chrome before 51.0.2704.79, does not validate the interval count, which allows remote attackers to cause a denial… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2016-1702 | 2024-11-21 11:46 | 2016-06-6 | Show | GitHub Exploit DB Packet Storm |
| 268263 | 8.8 |
HIGH
Network |
google debian redhat suse opensuse |
chrome debian_linux enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation linux_enterprise leap opensuse |
The Autofill implementation in Google Chrome before 51.0.2704.79 mishandles the interaction between field updates and JavaScript code that triggers a frame deletion, which allows remote attackers to … |
NVD-CWE-Other
|
CVE-2016-1701 | 2024-11-21 11:46 | 2016-06-6 | Show | GitHub Exploit DB Packet Storm |
| 268264 | 6.5 |
MEDIUM
Network |
debian redhat suse opensuse |
debian_linux enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation linux_enterprise leap opensuse chrome |
The createCustomType function in extensions/renderer/resources/binding.js in the extension bindings in Google Chrome before 51.0.2704.79 does not validate module types, which might allow attackers to… |
CWE-200
Information Exposure |
CVE-2016-1698 | 2024-11-21 11:46 | 2016-06-6 | Show | GitHub Exploit DB Packet Storm |
| 268265 | 8.8 |
HIGH
Network |
google debian redhat suse opensuse |
chrome debian_linux enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation linux_enterprise leap opensuse |
The extensions subsystem in Google Chrome before 51.0.2704.79 does not properly restrict bindings access, which allows remote attackers to bypass the Same Origin Policy via unspecified vectors. |
CWE-254 CWE-284 7PK - Security Features Improper Access Control |
CVE-2016-1696 | 2024-11-21 11:46 | 2016-06-6 | Show | GitHub Exploit DB Packet Storm |
| 268266 | 8.8 |
HIGH
Network |
google debian canonical redhat suse opensuse |
chrome debian_linux ubuntu_linux enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation linux_enterprise leap opensuse |
Multiple unspecified vulnerabilities in Google Chrome before 51.0.2704.63 allow attackers to cause a denial of service or possibly have other impact via unknown vectors. |
NVD-CWE-noinfo
|
CVE-2016-1695 | 2024-11-21 11:46 | 2016-06-6 | Show | GitHub Exploit DB Packet Storm |
| 268267 | 7.5 |
HIGH
Network |
debian redhat suse opensuse |
debian_linux enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation linux_enterprise leap opensuse chrome |
extensions/renderer/runtime_custom_bindings.cc in Google Chrome before 51.0.2704.79 does not consider side effects during creation of an array of extension views, which allows remote attackers to cau… |
NVD-CWE-Other
|
CVE-2016-1700 | 2024-11-21 11:46 | 2016-06-6 | Show | GitHub Exploit DB Packet Storm |
| 268268 | 6.5 |
MEDIUM
Network |
debian canonical redhat suse opensuse |
debian_linux ubuntu_linux enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation linux_enterprise leap opensuse chrome |
WebKit/Source/devtools/front_end/devtools.js in the Developer Tools (aka DevTools) subsystem in Blink, as used in Google Chrome before 51.0.2704.79, does not ensure that the remoteFrontendUrl paramet… |
CWE-284
Improper Access Control |
CVE-2016-1699 | 2024-11-21 11:46 | 2016-06-6 | Show | GitHub Exploit DB Packet Storm |
| 268269 | 8.8 |
HIGH
Network |
google debian canonical redhat suse opensuse |
chrome debian_linux ubuntu_linux enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation linux_enterprise leap opensuse |
The FrameLoader::startLoad function in WebKit/Source/core/loader/FrameLoader.cpp in Blink, as used in Google Chrome before 51.0.2704.79, does not prevent frame navigations during DocumentLoader detac… |
CWE-284
Improper Access Control |
CVE-2016-1697 | 2024-11-21 11:46 | 2016-06-6 | Show | GitHub Exploit DB Packet Storm |
| 268270 | 5.3 |
MEDIUM
Network |
google debian redhat suse opensuse |
chrome debian_linux enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation linux_enterprise leap opensuse |
browser/browsing_data/browsing_data_remover.cc in Google Chrome before 51.0.2704.63 deletes HPKP pins during cache clearing, which makes it easier for remote attackers to spoof web sites via a valid … |
CWE-284
Improper Access Control |
CVE-2016-1694 | 2024-11-21 11:46 | 2016-06-6 | Show | GitHub Exploit DB Packet Storm |