Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 30, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
240381	7.5	危険	maxiasp	-	Burak Yylmaz Download Portal の down.asp における SQL インジェクションの脆弱性	-	CVE-2006-6671	2012-09-25 15:36	2006-12-20	Show	GitHub Exploit DB Packet Storm

240382	10	危険	Nortel Networks	-	Nortel CallPilot Server における脆弱性	-	CVE-2006-6670	2012-09-25 15:36	2006-12-20	Show	GitHub Exploit DB Packet Storm

240383	5	警告	marathon aleph one	-	Marathon Aleph One におけるフォーマットストリングの脆弱性	-	CVE-2006-6664	2012-09-25 15:36	2006-12-20	Show	GitHub Exploit DB Packet Storm

240384	5	警告	marathon aleph one	-	Marathon Aleph One のサーバコンポーネントにおけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-6663	2012-09-25 15:36	2006-12-20	Show	GitHub Exploit DB Packet Storm

240385	4.3	警告	KDE project	-	Konquerer などの製品で使用される KDE libkhtml におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-6660	2012-09-25 15:36	2006-12-20	Show	GitHub Exploit DB Packet Storm

240386	5	警告	マイクロソフト	-	Windows XP SP2 の Microsoft Office ole32.dll におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-6659	2012-09-25 15:36	2006-12-19	Show	GitHub Exploit DB Packet Storm

240387	5	警告	inktomi	-	Inktomi Search における重要な情報を取得される脆弱性	-	CVE-2006-6658	2012-09-25 15:36	2006-12-19	Show	GitHub Exploit DB Packet Storm

240388	2.1	注意	NetBSD	-	NetBSD の if_clone_list 関数における重要な未初期化スタックメモリを読み取られる脆弱性	-	CVE-2006-6657	2012-09-25 15:36	2006-11-27	Show	GitHub Exploit DB Packet Storm

240389	2.1	注意	NetBSD	-	NetBSD の ptrace におけるカーネルメモリを読み取られる脆弱性	-	CVE-2006-6656	2012-09-25 15:36	2006-11-27	Show	GitHub Exploit DB Packet Storm

240390	1.7	注意	NetBSD	-	NetBSD の procfs 実装におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-6655	2012-09-25 15:36	2006-11-27	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 30, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
266641	5.4	MEDIUM Network	ibm	business_process_manager	Cross-site scripting (XSS) vulnerability in a test page in IBM Business Process Manager Advanced 8.5.6.0 through 8.5.7.0 before cumulative fix 2016.09 allows remote authenticated users to inject arbi…	CWE-79 Cross-site Scripting	CVE-2016-5901	2024-11-21 11:55	2016-10-5	Show	GitHub Exploit DB Packet Storm

266642	5.4	MEDIUM Network	ibm	multi-enterprise_integration_gateway b2b_advanced_communications	Cross-site scripting (XSS) vulnerability in IBM 10x, as used in Multi-Enterprise Integration Gateway 1.x through 1.0.0.1 and B2B Advanced Communications before 1.0.0.5_2, allows remote authenticated …	CWE-79 Cross-site Scripting	CVE-2016-5892	2024-11-21 11:55	2016-10-5	Show	GitHub Exploit DB Packet Storm

266643	7.5	HIGH Network	canonical gnome opensuse	ubuntu_linux gdk-pixbuf leap opensuse	The OneLine32 function in io-ico.c in gdk-pixbuf before 2.35.3 allows remote attackers to cause a denial of service (out-of-bounds write and crash) via crafted dimensions in an ICO file.	CWE-787 Out-of-bounds Write	CVE-2016-6352	2024-11-21 11:55	2016-10-4	Show	GitHub Exploit DB Packet Storm

266644	7.3	HIGH Local	ibm	db2 db2_connect	Untrusted search path vulnerability in IBM DB2 9.7 through FP11, 10.1 through FP5, 10.5 before FP8, and 11.1 GA on Linux, AIX, and HP-UX allows local users to gain privileges via a Trojan horse libra…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-5995	2024-11-21 11:55	2016-10-1	Show	GitHub Exploit DB Packet Storm

266645	7.5	HIGH Network	ibm	websphere_application_server	IBM WebSphere Application Server (WAS) 7.x before 7.0.0.43, 8.0.x before 8.0.0.13, 8.5.x before 8.5.5.11, 9.0.x before 9.0.0.2, and Liberty before 16.0.0.3 mishandles responses, which allows remote a…	CWE-200 Information Exposure	CVE-2016-5986	2024-11-21 11:55	2016-10-1	Show	GitHub Exploit DB Packet Storm

266646	9.8	CRITICAL Network	redhat	jboss_operations_network	The server in Red Hat JBoss Operations Network (JON), when SSL authentication is not configured for JON server / agent communication, allows remote attackers to execute arbitrary code via a crafted H…	CWE-502 Deserialization of Untrusted Data	CVE-2016-6330	2024-11-21 11:55	2016-09-28	Show	GitHub Exploit DB Packet Storm

266647	5.3	MEDIUM Network	sap	trex	The NameServer in SAP TREX 7.10 Revision 63 allows remote attackers to obtain sensitive TNS information via an unspecified query, aka SAP Security Note 2234226.	CWE-200 Information Exposure	CVE-2016-6146	2024-11-21 11:55	2016-09-28	Show	GitHub Exploit DB Packet Storm

266648	9.8	CRITICAL Network	sap	trex	An unspecified function in SAP TREX 7.10 Revision 63 allows remote attackers to execute arbitrary OS commands via unknown vectors, aka SAP Security Note 2203591.	NVD-CWE-noinfo	CVE-2016-6137	2024-11-21 11:55	2016-09-28	Show	GitHub Exploit DB Packet Storm

266649	9.8	CRITICAL Network	openssl	openssl	statem/statem.c in OpenSSL 1.1.0a does not consider memory-block movement after a realloc call, which allows remote attackers to cause a denial of service (use-after-free) or possibly execute arbitra…	CWE-416 Use After Free	CVE-2016-6309	2024-11-21 11:55	2016-09-27	Show	GitHub Exploit DB Packet Storm

266650	5.9	MEDIUM Network	openssl	openssl	statem/statem_dtls.c in the DTLS implementation in OpenSSL 1.1.0 before 1.1.0a allocates memory before checking for an excessive length, which might allow remote attackers to cause a denial of servic…	CWE-399 Resource Management Errors	CVE-2016-6308	2024-11-21 11:55	2016-09-27	Show	GitHub Exploit DB Packet Storm