Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 5, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
240421	10	危険	ヒューレット・パッカード	-	SuSE などの Linux 用の HP Serviceguard における不正にアクセス権を取得される脆弱性	CWE-noinfo 情報不足	CVE-2007-0980	2012-09-25 16:47	2007-02-12	Show	GitHub Exploit DB Packet Storm

240422	5	警告	LifeType	-	LifeType における重要な情報 (ファイルコンテンツ) を取得される脆弱性	CWE-200 情報漏えい	CVE-2007-0979	2012-09-25 16:47	2007-02-15	Show	GitHub Exploit DB Packet Storm

240423	7.5	危険	ian bezanson	-	Ian Bezanson の DropBox における脆弱性	-	CVE-2007-0974	2012-09-25 16:47	2007-02-15	Show	GitHub Exploit DB Packet Storm

240424	6.8	警告	jupiter cms	-	Jupiter CMS の index.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-0973	2012-09-25 16:47	2007-02-15	Show	GitHub Exploit DB Packet Storm

240425	7.5	危険	jupiter cms	-	Jupiter CMS の modules/emoticons.php における任意のファイルをアップロードされる脆弱性	-	CVE-2007-0972	2012-09-25 16:47	2007-02-15	Show	GitHub Exploit DB Packet Storm

240426	7.5	危険	jupiter cms	-	Jupiter CMS における SQL インジェクションの脆弱性	-	CVE-2007-0971	2012-09-25 16:47	2007-02-15	Show	GitHub Exploit DB Packet Storm

240427	7.8	危険	MailEnable	-	MailEnable Professional の MENTLM.dll におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-0955	2012-09-25 16:47	2007-02-14	Show	GitHub Exploit DB Packet Storm

240428	10	危険	mohachat	-	MOHA Chat における脆弱性	-	CVE-2007-0954	2012-09-25 16:47	2007-02-14	Show	GitHub Exploit DB Packet Storm

240429	10	危険	itinysoft studio	-	iTinySoft Studio の Total Video Player におけるスタックベースのバッファオーバーフローの脆弱性	-	CVE-2007-0949	2012-09-25 16:47	2007-02-14	Show	GitHub Exploit DB Packet Storm

240430	4.3	警告	マイクロソフト	-	MCMS 2001 SP1 などにおけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-0939	2012-09-25 16:47	2007-04-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 6, 2026, 4:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
266371	6.5	MEDIUM Network	apache debian	subversion debian_linux	Apache Subversion's mod_dontdothat module and HTTP clients 1.4.0 through 1.8.16, and 1.9.0 through 1.9.4 are vulnerable to a denial-of-service attack caused by exponential XML entity expansion. The a…	CWE-400 Uncontrolled Resource Consumption	CVE-2016-8734	2024-11-21 11:59	2017-10-16	Show	GitHub Exploit DB Packet Storm

266372	9.8	CRITICAL Network	apache	openmeetings	Apache OpenMeetings before 3.1.2 is vulnerable to Remote Code Execution via RMI deserialization attack.	CWE-502 Deserialization of Untrusted Data	CVE-2016-8736	2024-11-21 11:59	2017-10-13	Show	GitHub Exploit DB Packet Storm

266373	5.9	MEDIUM Network	apache	struts	In Apache Struts 2.5 through 2.5.5, if an application allows entering a URL in a form field and the built-in URLValidator is used, it is possible to prepare a special URL which will be used to overlo…	CWE-20 Improper Input Validation	CVE-2016-8738	2024-11-21 11:59	2017-09-21	Show	GitHub Exploit DB Packet Storm

266374	8.8	HIGH Network	apache	brooklyn	In Apache Brooklyn before 0.10.0, the REST server is vulnerable to cross-site request forgery (CSRF), which could permit a malicious web site to produce a link which, if clicked whilst a user is logg…	CWE-352 Origin Validation Error	CVE-2016-8737	2024-11-21 11:59	2017-09-14	Show	GitHub Exploit DB Packet Storm

266375	8.8	HIGH Network	apache	brooklyn	Apache Brooklyn uses the SnakeYAML library for parsing YAML inputs. SnakeYAML allows the use of YAML tags to indicate that SnakeYAML should unmarshal data to a Java type. In the default configuration…	CWE-502 Deserialization of Untrusted Data	CVE-2016-8744	2024-11-21 11:59	2017-09-14	Show	GitHub Exploit DB Packet Storm

266376	7.5	HIGH Network	apache	atlas	Apache Atlas versions 0.6.0 (incubating), 0.7.0 (incubating), and 0.7.1 (incubating) allow access to the webapp directory contents by pointing to URIs like /js and /img.	CWE-284 Improper Access Control	CVE-2016-8752	2024-11-21 11:59	2017-08-30	Show	GitHub Exploit DB Packet Storm

266377	7.5	HIGH Network	apache	tomcat	A bug in the error handling of the send file code for the NIO HTTP connector in Apache Tomcat 9.0.0.M1 to 9.0.0.M13, 8.5.0 to 8.5.8, 8.0.0.RC1 to 8.0.39, 7.0.0 to 7.0.73 and 6.0.16 to 6.0.48 resulted…	CWE-388 7PK - Errors	CVE-2016-8745	2024-11-21 11:59	2017-08-11	Show	GitHub Exploit DB Packet Storm

266378	7.5	HIGH Network	apache	cxf	The JAX-RS module in Apache CXF prior to 3.0.12 and 3.1.x prior to 3.1.9 provides a number of Atom JAX-RS MessageBodyReaders. These readers use Apache Abdera Parser which expands XML entities by defa…	CWE-611 XXE	CVE-2016-8739	2024-11-21 11:59	2017-08-11	Show	GitHub Exploit DB Packet Storm

266379	7.5	HIGH Network	apache netapp debian redhat	http_server clustered_data_ontap oncommand_unified_manager debian_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterprise_linux_server_tus<…	Apache HTTP Server, in all releases prior to 2.2.32 and 2.4.25, was liberal in the whitespace accepted from requests and sent in response lines and headers. Accepting these different behaviors repres…	NVD-CWE-noinfo	CVE-2016-8743	2024-11-21 11:59	2017-07-28	Show	GitHub Exploit DB Packet Storm

266380	9.1	CRITICAL Network	ipsilon_project	ipsilon	A vulnerability in ipsilon 2.0 before 2.0.2, 1.2 before 1.2.1, 1.1 before 1.1.2, and 1.0 before 1.0.3 was found that allows attacker to log out active sessions of other users. This issue is related …	CWE-384 Session Fixation	CVE-2016-8638	2024-11-21 11:59	2017-07-12	Show	GitHub Exploit DB Packet Storm