Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 24, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
240391	6.8	警告	mybulletinboard	-	MyBB の inc/functions_post.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-4706	2012-09-25 15:35	2006-09-12	Show	GitHub Exploit DB Packet Storm

240392	6.8	警告	マイクロソフト	-	Microsoft Visual Studio 2005 におけるクロスゾーンスクリプティングの脆弱性	CWE-Other その他	CVE-2006-4704	2012-09-25 15:35	2006-11-1	Show	GitHub Exploit DB Packet Storm

240393	5	警告	IBM	-	IBM Director における HTTP ヘッダから重要な情報を取得される脆弱性	-	CVE-2006-4683	2012-09-25 15:35	2006-09-11	Show	GitHub Exploit DB Packet Storm

240394	5	警告	IBM	-	IBM Director におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-4682	2012-09-25 15:35	2006-09-11	Show	GitHub Exploit DB Packet Storm

240395	5	警告	IBM	-	IBM Director の Redirect.bat におけるディレクトリトラバーサルの脆弱性	-	CVE-2006-4681	2012-09-25 15:35	2006-09-11	Show	GitHub Exploit DB Packet Storm

240396	2.6	注意	PHP-Fusion	-	PHP-Fusion の maincore.php における SQL インジェクション攻撃を実行される脆弱性	-	CVE-2006-4673	2012-09-25 15:35	2006-09-11	Show	GitHub Exploit DB Packet Storm

240397	4.3	警告	mkportal	-	MKPortal の index.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-4665	2012-09-25 15:35	2006-09-8	Show	GitHub Exploit DB Packet Storm

240398	4.3	警告	luke hutteman	-	Luke Hutteman SharpReader におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-4761	2012-09-25 15:35	2006-09-13	Show	GitHub Exploit DB Packet Storm

240399	5	警告	laurentiu matei	-	Laurentiu Matei XHP CMS におけるインストールパスを取得される脆弱性	-	CVE-2006-4752	2012-09-25 15:35	2006-09-13	Show	GitHub Exploit DB Packet Storm

240400	6.8	警告	laurentiu matei	-	Laurentiu Matei XHP CMS の index.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-4751	2012-09-25 15:35	2006-09-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 24, 2026, 4:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
267981	7.7	HIGH Local	hp	system_management_homepage	HPE System Management Homepage before 7.5.4 allows local users to obtain sensitive information or modify data via unspecified vectors.	NVD-CWE-noinfo	CVE-2016-1996	2024-11-21 11:47	2016-03-18	Show	GitHub Exploit DB Packet Storm

267982	9.8	CRITICAL Network	hp	system_management_homepage	HPE System Management Homepage before 7.5.4 allows remote attackers to execute arbitrary code via unspecified vectors.	NVD-CWE-noinfo	CVE-2016-1995	2024-11-21 11:47	2016-03-18	Show	GitHub Exploit DB Packet Storm

267983	6.5	MEDIUM Network	hp	system_management_homepage	HPE System Management Homepage before 7.5.4 allows remote authenticated users to obtain sensitive information via unspecified vectors.	CWE-200 Information Exposure	CVE-2016-1994	2024-11-21 11:47	2016-03-18	Show	GitHub Exploit DB Packet Storm

267984	8.1	HIGH Network	hp	system_management_homepage	HPE System Management Homepage before 7.5.4 allows remote authenticated users to obtain sensitive information or modify data via unspecified vectors.	NVD-CWE-noinfo	CVE-2016-1993	2024-11-21 11:47	2016-03-18	Show	GitHub Exploit DB Packet Storm

267985	6.5	MEDIUM Network	hp	enterprise_security_manager_express enterprise_security_manager	HPE ArcSight ESM before 6.8c, and ArcSight ESM Express before 6.9.1, allows remote authenticated users to obtain sensitive information via unspecified vectors.	CWE-200 Information Exposure	CVE-2016-1992	2024-11-21 11:47	2016-03-17	Show	GitHub Exploit DB Packet Storm

267986	5.4	MEDIUM Network	vmware	vrealize_business_advanced_and_enterprise	Cross-site scripting (XSS) vulnerability in VMware vRealize Business Advanced and Enterprise 8.x before 8.2.5 on Linux allows remote authenticated users to inject arbitrary web script or HTML via uns…	CWE-79 Cross-site Scripting	CVE-2016-2075	2024-11-21 11:47	2016-03-16	Show	GitHub Exploit DB Packet Storm

267987	8.0	HIGH Network	microfocus	arcsight_enterprise_security_manager	HPE ArcSight ESM 5.x before 5.6, 6.0, 6.5.x before 6.5C SP1 Patch 2, and 6.8c before P1, and ArcSight ESM Express before 6.9.1, allows remote authenticated users to conduct unspecified "file download…	NVD-CWE-noinfo	CVE-2016-1991	2024-11-21 11:47	2016-03-16	Show	GitHub Exploit DB Packet Storm

267988	7.8	HIGH Local	microfocus	arcsight_enterprise_security_manager	HPE ArcSight ESM 5.x before 5.6, 6.0, 6.5.x before 6.5C SP1 Patch 2, and 6.8c before P1, and ArcSight ESM Express before 6.9.1, allows local users to gain privileges for command execution via unspeci…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-1990	2024-11-21 11:47	2016-03-16	Show	GitHub Exploit DB Packet Storm

267989	9.8	CRITICAL Network	hp	network_automation	HPE Network Automation 9.22 through 9.22.02 and 10.x before 10.00.02 allows remote attackers to execute arbitrary code or obtain sensitive information via unspecified vectors, a different vulnerabili…	NVD-CWE-noinfo	CVE-2016-1989	2024-11-21 11:47	2016-03-15	Show	GitHub Exploit DB Packet Storm

267990	9.8	CRITICAL Network	hp	network_automation	HPE Network Automation 9.22 through 9.22.02 and 10.x before 10.00.02 allows remote attackers to execute arbitrary code or obtain sensitive information via unspecified vectors, a different vulnerabili…	NVD-CWE-noinfo	CVE-2016-1988	2024-11-21 11:47	2016-03-15	Show	GitHub Exploit DB Packet Storm