Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 30, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
240411	10	危険	MailEnable	-	MailEnalbe の POP サービスにおけるスタックベースのバッファオーバーフローの脆弱性	-	CVE-2006-6605	2012-09-25 15:36	2006-12-19	Show	GitHub Exploit DB Packet Storm

240412	4.3	警告	マイクロソフト	-	Microsoft Windows XP SP2 の Windows Explorer 6 におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-6602	2012-09-25 15:36	2006-12-15	Show	GitHub Exploit DB Packet Storm

240413	6.8	警告	hilgraeve	-	HyperAccess における任意の vbscript およびコマンドを実行される脆弱性	-	CVE-2006-6597	2012-09-25 15:36	2006-12-15	Show	GitHub Exploit DB Packet Storm

240414	6.8	警告	hilgraeve	-	HyperAccess における任意の vbscript およびコマンドを実行される脆弱性	-	CVE-2006-6596	2012-09-25 15:36	2006-12-15	Show	GitHub Exploit DB Packet Storm

240415	7.5	危険	The PHP Group	-	Bloq における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-6592	2012-09-25 15:36	2006-12-15	Show	GitHub Exploit DB Packet Storm

240416	7.5	危険	The PHP Group	-	AR Memberscript の usercp_menu.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-6590	2012-09-25 15:36	2006-12-15	Show	GitHub Exploit DB Packet Storm

240417	6.4	警告	Mozilla Foundation	-	Mozilla Firefox の拡張マネージャにおける自身を非表示にする拡張を構成される脆弱性	CWE-Other その他	CVE-2006-6585	2012-09-25 15:36	2006-12-15	Show	GitHub Exploit DB Packet Storm

240418	10	危険	italkplus	-	Italk+ におけるバッファオーバーフローの脆弱性	-	CVE-2006-6584	2012-09-25 15:36	2006-12-15	Show	GitHub Exploit DB Packet Storm

240419	4.4	警告	マイクロソフト	-	Microsoft Windows XP におけるファイルを読み書きされる脆弱性	-	CVE-2006-6579	2012-09-25 15:36	2006-12-15	Show	GitHub Exploit DB Packet Storm

240420	7.5	危険	マイクロソフト	-	Microsoft IIS 5.1 における任意のコマンドを実行される脆弱性	-	CVE-2006-6578	2012-09-25 15:36	2006-12-15	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 30, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
266641	5.4	MEDIUM Network	ibm	business_process_manager	Cross-site scripting (XSS) vulnerability in a test page in IBM Business Process Manager Advanced 8.5.6.0 through 8.5.7.0 before cumulative fix 2016.09 allows remote authenticated users to inject arbi…	CWE-79 Cross-site Scripting	CVE-2016-5901	2024-11-21 11:55	2016-10-5	Show	GitHub Exploit DB Packet Storm

266642	5.4	MEDIUM Network	ibm	multi-enterprise_integration_gateway b2b_advanced_communications	Cross-site scripting (XSS) vulnerability in IBM 10x, as used in Multi-Enterprise Integration Gateway 1.x through 1.0.0.1 and B2B Advanced Communications before 1.0.0.5_2, allows remote authenticated …	CWE-79 Cross-site Scripting	CVE-2016-5892	2024-11-21 11:55	2016-10-5	Show	GitHub Exploit DB Packet Storm

266643	7.5	HIGH Network	canonical gnome opensuse	ubuntu_linux gdk-pixbuf leap opensuse	The OneLine32 function in io-ico.c in gdk-pixbuf before 2.35.3 allows remote attackers to cause a denial of service (out-of-bounds write and crash) via crafted dimensions in an ICO file.	CWE-787 Out-of-bounds Write	CVE-2016-6352	2024-11-21 11:55	2016-10-4	Show	GitHub Exploit DB Packet Storm

266644	7.3	HIGH Local	ibm	db2 db2_connect	Untrusted search path vulnerability in IBM DB2 9.7 through FP11, 10.1 through FP5, 10.5 before FP8, and 11.1 GA on Linux, AIX, and HP-UX allows local users to gain privileges via a Trojan horse libra…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-5995	2024-11-21 11:55	2016-10-1	Show	GitHub Exploit DB Packet Storm

266645	7.5	HIGH Network	ibm	websphere_application_server	IBM WebSphere Application Server (WAS) 7.x before 7.0.0.43, 8.0.x before 8.0.0.13, 8.5.x before 8.5.5.11, 9.0.x before 9.0.0.2, and Liberty before 16.0.0.3 mishandles responses, which allows remote a…	CWE-200 Information Exposure	CVE-2016-5986	2024-11-21 11:55	2016-10-1	Show	GitHub Exploit DB Packet Storm

266646	9.8	CRITICAL Network	redhat	jboss_operations_network	The server in Red Hat JBoss Operations Network (JON), when SSL authentication is not configured for JON server / agent communication, allows remote attackers to execute arbitrary code via a crafted H…	CWE-502 Deserialization of Untrusted Data	CVE-2016-6330	2024-11-21 11:55	2016-09-28	Show	GitHub Exploit DB Packet Storm

266647	5.3	MEDIUM Network	sap	trex	The NameServer in SAP TREX 7.10 Revision 63 allows remote attackers to obtain sensitive TNS information via an unspecified query, aka SAP Security Note 2234226.	CWE-200 Information Exposure	CVE-2016-6146	2024-11-21 11:55	2016-09-28	Show	GitHub Exploit DB Packet Storm

266648	9.8	CRITICAL Network	sap	trex	An unspecified function in SAP TREX 7.10 Revision 63 allows remote attackers to execute arbitrary OS commands via unknown vectors, aka SAP Security Note 2203591.	NVD-CWE-noinfo	CVE-2016-6137	2024-11-21 11:55	2016-09-28	Show	GitHub Exploit DB Packet Storm

266649	9.8	CRITICAL Network	openssl	openssl	statem/statem.c in OpenSSL 1.1.0a does not consider memory-block movement after a realloc call, which allows remote attackers to cause a denial of service (use-after-free) or possibly execute arbitra…	CWE-416 Use After Free	CVE-2016-6309	2024-11-21 11:55	2016-09-27	Show	GitHub Exploit DB Packet Storm

266650	5.9	MEDIUM Network	openssl	openssl	statem/statem_dtls.c in the DTLS implementation in OpenSSL 1.1.0 before 1.1.0a allocates memory before checking for an excessive length, which might allow remote attackers to cause a denial of servic…	CWE-399 Resource Management Errors	CVE-2016-6308	2024-11-21 11:55	2016-09-27	Show	GitHub Exploit DB Packet Storm