Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 23, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
240361 4.3 警告 jupiter cms - Jupiter CMS におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-4874 2012-09-25 15:35 2006-09-19 Show GitHub Exploit DB Packet Storm
240362 5 警告 jupiter cms - Jupiter CMS における重要な情報を取得される脆弱性 - CVE-2006-4873 2012-09-25 15:35 2006-09-19 Show GitHub Exploit DB Packet Storm
240363 7.5 危険 keyvan1 - Keyvan1 ECardPro の search.asp における SQL インジェクションの脆弱性 - CVE-2006-4872 2012-09-25 15:35 2006-09-19 Show GitHub Exploit DB Packet Storm
240364 7.5 危険 keyvan1 - Keyvan1 EShoppingPro の search_run.asp における SQL インジェクションの脆弱性 - CVE-2006-4871 2012-09-25 15:35 2006-09-19 Show GitHub Exploit DB Packet Storm
240365 7.5 危険 perlunity - phpunity.postcard の phpunity-postcard.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2006-4869 2012-09-25 15:35 2006-09-19 Show GitHub Exploit DB Packet Storm
240366 7.5 危険 mohammed mehdi panjwani - Mohammed Mehdi Panjwani Complain Center の loginprocess.asp における SQL インジェクションの脆弱性 - CVE-2006-4861 2012-09-25 15:35 2006-09-19 Show GitHub Exploit DB Packet Storm
240367 10 危険 limbo cms - Limbo CMS の index.php などにおける脆弱性 - CVE-2006-4860 2012-09-25 15:35 2006-09-19 Show GitHub Exploit DB Packet Storm
240368 7.5 危険 limbo cms - Limbo CMS の contact コンポーネントにおける images/contact フォルダへ PHP コードをアップロードされる脆弱性 - CVE-2006-4859 2012-09-25 15:35 2006-09-19 Show GitHub Exploit DB Packet Storm
240369 6.8 警告 mamboxchange - Mambo 用の serverstat コンポーネントにおける PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2006-4858 2012-09-25 15:35 2006-09-19 Show GitHub Exploit DB Packet Storm
240370 7.5 危険 haberx - Haberx の kategorix.asp における SQL インジェクションの脆弱性 - CVE-2006-4853 2012-09-25 15:35 2006-09-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
267351 3.7 LOW
Network 		ibm websphere_extreme_scale IBM WebSphere eXtreme Scale 7.1.0 before 7.1.0.3, 7.1.1 before 7.1.1.1, 8.5 before 8.5.0.3, and 8.6 before 8.6.0.8 does not properly encrypt data, which makes it easier for remote attackers to obtain… CWE-200
Information Exposure 		CVE-2016-2861 2024-11-21 11:48 2016-07-2 Show GitHub Exploit DB Packet Storm
267352 7.8 HIGH
Local 		symantec mail_security_for_microsoft_exchange
norton_power_eraser
protection_engine
endpoint_protection
message_gateway
norton_360
norton_antivirus
norton_internet_security
norton_secu… 		The AntiVirus Decomposer engine in Symantec Advanced Threat Protection (ATP); Symantec Data Center Security:Server (SDCS:S) 6.x through 6.6 MP1; Symantec Web Gateway; Symantec Endpoint Protection (SE… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-2211 2024-11-21 11:48 2016-07-1 Show GitHub Exploit DB Packet Storm
267353 7.3 HIGH
Local 		symantec mail_security_for_microsoft_exchange
norton_power_eraser
protection_engine
endpoint_protection
message_gateway
norton_360
norton_antivirus
norton_internet_security
norton_secu… 		Buffer overflow in Dec2LHA.dll in the AntiVirus Decomposer engine in Symantec Advanced Threat Protection (ATP); Symantec Data Center Security:Server (SDCS:S) 6.x through 6.6 MP1; Symantec Web Gateway… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-2210 2024-11-21 11:48 2016-07-1 Show GitHub Exploit DB Packet Storm
267354 7.3 HIGH
Local 		symantec mail_security_for_microsoft_exchange
norton_power_eraser
protection_engine
endpoint_protection
message_gateway
norton_360
norton_antivirus
norton_internet_security
norton_secu… 		Buffer overflow in Dec2SS.dll in the AntiVirus Decomposer engine in Symantec Advanced Threat Protection (ATP); Symantec Data Center Security:Server (SDCS:S) 6.x through 6.6 MP1; Symantec Web Gateway;… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-2209 2024-11-21 11:48 2016-07-1 Show GitHub Exploit DB Packet Storm
267355 8.4 HIGH
Local 		symantec mail_security_for_microsoft_exchange
norton_power_eraser
protection_engine
endpoint_protection
message_gateway
norton_360
norton_antivirus
norton_internet_security
norton_secu… 		The AntiVirus Decomposer engine in Symantec Advanced Threat Protection (ATP); Symantec Data Center Security:Server (SDCS:S) 6.x through 6.6 MP1; Symantec Web Gateway; Symantec Endpoint Protection (SE… CWE-20
 Improper Input Validation  		CVE-2016-2207 2024-11-21 11:48 2016-07-1 Show GitHub Exploit DB Packet Storm
267356 7.5 HIGH
Network 		fonality hud_web
fonality 		The Chrome HUDweb plugin before 2016-05-05 for Fonality (previously trixbox Pro) 12.6 through 14.1i uses the same hardcoded private key across different customers' installations, which allows remote … CWE-310
NVD-CWE-Other
Cryptographic Issues 		CVE-2016-2364 2024-11-21 11:48 2016-06-20 Show GitHub Exploit DB Packet Storm
267357 7.8 HIGH
Local 		fonality fonality Fonality (previously trixbox Pro) 12.6 through 14.1i before 2016-06-01 uses weak permissions for the /var/www/rpc/surun script, which allows local users to obtain root access for unspecified command … CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-2363 2024-11-21 11:48 2016-06-20 Show GitHub Exploit DB Packet Storm
267358 9.8 CRITICAL
Network 		fonality fonality Fonality (previously trixbox Pro) 12.6 through 14.1i before 2016-06-01 has a hardcoded password for the FTP account, which allows remote attackers to obtain access via a (1) FTP or (2) SSH connection. NVD-CWE-Other
CVE-2016-2362 2024-11-21 11:48 2016-06-20 Show GitHub Exploit DB Packet Storm
267359 6.0 MEDIUM
Local 		qemu
canonical 		qemu
ubuntu_linux 		The ne2000_receive function in the NE2000 NIC emulation support (hw/net/ne2000.c) in QEMU before 2.5.1 allows local guest OS administrators to cause a denial of service (infinite loop and QEMU proces… CWE-20
 Improper Input Validation  		CVE-2016-2841 2024-11-21 11:48 2016-06-17 Show GitHub Exploit DB Packet Storm
267360 7.1 HIGH
Local 		qemu qemu Multiple integer overflows in the USB Net device emulator (hw/usb/dev-network.c) in QEMU before 2.5.1 allow local guest OS administrators to cause a denial of service (QEMU process crash) or obtain s… CWE-189
Numeric Errors 		CVE-2016-2538 2024-11-21 11:48 2016-06-17 Show GitHub Exploit DB Packet Storm