Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 26, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
240361 2.6 注意 marc giombetti - phpPowerCards の db/txt.inc.php における任意のファイルを上書きされる脆弱性 - CVE-2006-5432 2012-09-25 15:36 2006-10-20 Show GitHub Exploit DB Packet Storm
240362 5.1 警告 php amx - Php AMX の plugins/main.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5427 2012-09-25 15:36 2006-10-20 Show GitHub Exploit DB Packet Storm
240363 7.5 危険 local calendar system - LoCal Calendar System の lib/lcUser.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5426 2012-09-25 15:36 2006-10-20 Show GitHub Exploit DB Packet Storm
240364 7.5 危険 lou portail - Lou Portail の admin/admin_module.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5423 2012-09-25 15:36 2006-10-20 Show GitHub Exploit DB Packet Storm
240365 7.5 危険 lodel - patchlodel の calcul-page.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5422 2012-09-25 15:36 2006-10-20 Show GitHub Exploit DB Packet Storm
240366 5 警告 Kerio Technologies - Kerio WinRoute Firewall におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-5420 2012-09-25 15:36 2006-10-20 Show GitHub Exploit DB Packet Storm
240367 5 警告 マカフィー - Internet Security Suite などの McAfee 製品におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-5417 2012-09-25 15:36 2006-10-20 Show GitHub Exploit DB Packet Storm
240368 7.5 危険 news defilante horizontale - News phpBB 用の Defilante Horizontale モジュールにおける PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5415 2012-09-25 15:36 2006-10-20 Show GitHub Exploit DB Packet Storm
240369 5.1 警告 PHP Outburst - PHP Outburst Easynews の admin.php における認証を回避される脆弱性 - CVE-2006-5412 2012-09-25 15:36 2006-10-20 Show GitHub Exploit DB Packet Storm
240370 7.5 危険 justin white - FreeWPS 用の upload.php における任意の PHP プログラムをアップロードされる脆弱性 - CVE-2006-5411 2012-09-25 15:36 2006-10-20 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 26, 2026, 4:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
267141 2.5 LOW
Local 		ibm tivoli_storage_manager IBM Spectrum Protect (formerly Tivoli Storage Manager) 5.5 through 6.3 before 6.3.2.6, 6.4 before 6.4.3.3, and 7.1 before 7.1.6 allows local users to obtain sensitive retrieved data from arbitrary ac… CWE-200
Information Exposure 		CVE-2016-2894 2024-11-21 11:49 2016-07-4 Show GitHub Exploit DB Packet Storm
267142 6.5 MEDIUM
Network 		ibm security_qradar_incident_forensics IBM Security QRadar Incident Forensics 7.2.x before 7.2.7 allows remote attackers to bypass authentication, and obtain sensitive information or modify data, via unspecified vectors. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-2968 2024-11-21 11:49 2016-07-2 Show GitHub Exploit DB Packet Storm
267143 5.3 MEDIUM
Network 		ibm integration_bus
websphere_message_broker 		The integration server in IBM Integration Bus 9 before 9.0.0.6 and 10 before 10.0.0.5 and WebSphere Message Broker 8 before 8.0.0.8 allows remote attackers to obtain sensitive Tomcat version informat… CWE-200
Information Exposure 		CVE-2016-2961 2024-11-21 11:49 2016-07-2 Show GitHub Exploit DB Packet Storm
267144 5.4 MEDIUM
Network 		ibm tririga_application_platform Cross-site scripting (XSS) vulnerability in IBM TRIRIGA Application Platform 3.3 before 3.3.2.6, 3.4 before 3.4.2.4, and 3.5 before 3.5.0.2 allows remote authenticated users to inject arbitrary web s… CWE-79
Cross-site Scripting 		CVE-2016-2883 2024-11-21 11:49 2016-07-2 Show GitHub Exploit DB Packet Storm
267145 4.3 MEDIUM
Network 		ibm tririga_application_platform IBM TRIRIGA Application Platform 3.3 before 3.3.2.6, 3.4 before 3.4.2.4, and 3.5 before 3.5.0.2 allows remote authenticated users to obtain sensitive information by reading HTTP responses. CWE-200
Information Exposure 		CVE-2016-2882 2024-11-21 11:49 2016-07-2 Show GitHub Exploit DB Packet Storm
267146 6.5 MEDIUM
Network 		bzip
python 		bzip2
python 		Use-after-free vulnerability in bzip2recover in bzip2 1.0.6 allows remote attackers to cause a denial of service (crash) via a crafted bzip2 file, related to block ends set to before the start of the… NVD-CWE-Other
CVE-2016-3189 2024-11-21 11:49 2016-07-1 Show GitHub Exploit DB Packet Storm
267147 8.8 HIGH
Network 		ibm websphere_portal
web_content_manager 		Cross-site request forgery (CSRF) vulnerability in the PA_Theme_Creator application in IBM WebSphere Portal 8.5 CF08 through CF10 and Web Content Manager allows remote attackers to hijack the authent… CWE-352
 Origin Validation Error 		CVE-2016-2901 2024-11-21 11:49 2016-06-26 Show GitHub Exploit DB Packet Storm
267148 8.8 HIGH
Network 		libav
ffmpeg
debian
opensuse 		libav
ffmpeg
debian_linux
leap 		The mov_read_dref function in libavformat/mov.c in Libav before 11.7 and FFmpeg before 0.11 allows remote attackers to cause a denial of service (memory corruption) or execute arbitrary code via the … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-3062 2024-11-21 11:49 2016-06-17 Show GitHub Exploit DB Packet Storm
267149 7.3 HIGH
Local 		microsoft office_compatibility_pack
excel 		Microsoft Excel 2007 SP3, Excel 2010 SP2, and Office Compatibility Pack SP3 allow remote attackers to execute arbitrary code via a crafted Office document, aka "Microsoft Office Memory Corruption Vul… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-3233 2024-11-21 11:49 2016-06-16 Show GitHub Exploit DB Packet Storm
267150 5.0 MEDIUM
Local 		microsoft windows_server_2012 The Virtual PCI (VPCI) virtual service provider in Microsoft Windows Server 2012 Gold and R2 allows local users to obtain sensitive information from uninitialized memory locations via a crafted appli… CWE-200
Information Exposure 		CVE-2016-3232 2024-11-21 11:49 2016-06-16 Show GitHub Exploit DB Packet Storm