Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 31, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
240381 7.5 危険 maxiasp - Burak Yylmaz Download Portal の down.asp における SQL インジェクションの脆弱性 - CVE-2006-6671 2012-09-25 15:36 2006-12-20 Show GitHub Exploit DB Packet Storm
240382 10 危険 Nortel Networks - Nortel CallPilot Server における脆弱性 - CVE-2006-6670 2012-09-25 15:36 2006-12-20 Show GitHub Exploit DB Packet Storm
240383 5 警告 marathon aleph one - Marathon Aleph One におけるフォーマットストリングの脆弱性 - CVE-2006-6664 2012-09-25 15:36 2006-12-20 Show GitHub Exploit DB Packet Storm
240384 5 警告 marathon aleph one - Marathon Aleph One のサーバコンポーネントにおけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-6663 2012-09-25 15:36 2006-12-20 Show GitHub Exploit DB Packet Storm
240385 4.3 警告 KDE project - Konquerer などの製品で使用される KDE libkhtml におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-6660 2012-09-25 15:36 2006-12-20 Show GitHub Exploit DB Packet Storm
240386 5 警告 マイクロソフト - Windows XP SP2 の Microsoft Office ole32.dll におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-6659 2012-09-25 15:36 2006-12-19 Show GitHub Exploit DB Packet Storm
240387 5 警告 inktomi - Inktomi Search における重要な情報を取得される脆弱性 - CVE-2006-6658 2012-09-25 15:36 2006-12-19 Show GitHub Exploit DB Packet Storm
240388 2.1 注意 NetBSD - NetBSD の if_clone_list 関数における重要な未初期化スタックメモリを読み取られる脆弱性 - CVE-2006-6657 2012-09-25 15:36 2006-11-27 Show GitHub Exploit DB Packet Storm
240389 2.1 注意 NetBSD - NetBSD の ptrace におけるカーネルメモリを読み取られる脆弱性 - CVE-2006-6656 2012-09-25 15:36 2006-11-27 Show GitHub Exploit DB Packet Storm
240390 1.7 注意 NetBSD - NetBSD の procfs 実装におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-6655 2012-09-25 15:36 2006-11-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
266631 5.5 MEDIUM
Local 		lepton_project lepton The build_huffcodes function in lepton/jpgcoder.cc in Dropbox lepton 1.0 allows remote attackers to cause denial of service (out-of-bounds write) via a crafted jpeg file. CWE-787
 Out-of-bounds Write 		CVE-2016-6237 2024-11-21 11:55 2017-02-3 Show GitHub Exploit DB Packet Storm
266632 5.5 MEDIUM
Local 		lepton_project lepton The setup_imginfo_jpg function in lepton/jpgcoder.cc in Dropbox lepton 1.0 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted jpeg file. CWE-125
Out-of-bounds Read 		CVE-2016-6236 2024-11-21 11:55 2017-02-3 Show GitHub Exploit DB Packet Storm
266633 5.5 MEDIUM
Local 		lepton_project lepton The setup_imginfo_jpg function in lepton/jpgcoder.cc in Dropbox lepton 1.0 allows remote attackers to cause a denial of service (segmentation fault) via a crafted jpeg file. CWE-399
 Resource Management Errors 		CVE-2016-6235 2024-11-21 11:55 2017-02-3 Show GitHub Exploit DB Packet Storm
266634 5.5 MEDIUM
Local 		lepton_project lepton The process_file function in lepton/jpgcoder.cc in Dropbox lepton 1.0 allows remote attackers to cause a denial of service (crash) via a crafted jpeg file. CWE-20
 Improper Input Validation  		CVE-2016-6234 2024-11-21 11:55 2017-02-3 Show GitHub Exploit DB Packet Storm
266635 7.2 HIGH
Network 		ibm spectrum_scale
general_parallel_file_system 		IBM General Parallel File System is vulnerable to a buffer overflow. A remote authenticated attacker could overflow a buffer and execute arbitrary code on the system with root privileges or cause the… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-6115 2024-11-21 11:55 2017-02-2 Show GitHub Exploit DB Packet Storm
266636 6.5 MEDIUM
Local 		ibm tivoli_storage_manager
tivoli_storage_manager_for_virtual_environments_data_protection_for_vmware 		IBM Tivoli Storage Manager discloses unencrypted login credentials to Vmware vCenter that could be obtained by a local user. CWE-255
Credentials Management 		CVE-2016-6110 2024-11-21 11:55 2017-02-2 Show GitHub Exploit DB Packet Storm
266637 7.5 HIGH
Network 		ibm urbancode_deploy IBM UrbanCode Deploy could allow an authenticated user with access to the REST endpoints to access API and CLI getResource secured role properties. CWE-200
Information Exposure 		CVE-2016-6068 2024-11-21 11:55 2017-02-2 Show GitHub Exploit DB Packet Storm
266638 3.1 LOW
Network 		ibm forms_experience_builder IBM Forms Experience Builder could be susceptible to a server-side request forgery (SSRF) from the application design interface allowing for some information disclosure of internal resources. CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2016-6001 2024-11-21 11:55 2017-02-2 Show GitHub Exploit DB Packet Storm
266639 3.7 LOW
Network 		ibm sterling_selling_and_fulfillment_foundation IBM Sterling Order Management transmits the session identifier within the URL. When a user is unable to view a certain view due to not being allowed permissions, the website responds with an error pa… CWE-200
Information Exposure 		CVE-2016-5953 2024-11-21 11:55 2017-02-2 Show GitHub Exploit DB Packet Storm
266640 5.4 MEDIUM
Network 		ibm kenexa_lms IBM Kenexa LMS on Cloud is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially le… CWE-79
Cross-site Scripting 		CVE-2016-5942 2024-11-21 11:55 2017-02-2 Show GitHub Exploit DB Packet Storm