Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 26, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
240421	7.5	危険	nivisec	-	phpBB 用の Nivisec User Viewed Posts Tracker モジュールにおける PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5223	2012-09-25 15:36	2006-10-10	Show	GitHub Exploit DB Packet Storm

240422	5.1	警告	Objective Development Software GmbH	-	WebYep における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2006-5220	2012-09-25 15:36	2006-10-10	Show	GitHub Exploit DB Packet Storm

240423	5.1	警告	Moodle	-	Moodle の blog モジュールの blog/index.php における SQL インジェクションの脆弱性	-	CVE-2006-5219	2012-09-25 15:36	2006-10-10	Show	GitHub Exploit DB Packet Storm

240424	4.6	警告	OpenBSD NetBSD	-	OpenBSD などの製品で使用される systrace_preprepl 関数における整数オーバーフローの脆弱性	-	CVE-2006-5218	2012-09-25 15:36	2006-10-10	Show	GitHub Exploit DB Packet Storm

240425	7.5	危険	Invision Power Services, Inc	-	Invision Gallery における SQL インジェクションの脆弱性	-	CVE-2006-5206	2012-09-25 15:36	2006-10-10	Show	GitHub Exploit DB Packet Storm

240426	5	警告	Invision Power Services, Inc	-	Invision Gallery におけるディレクトリトラバーサルの脆弱性	-	CVE-2006-5205	2012-09-25 15:36	2006-10-10	Show	GitHub Exploit DB Packet Storm

240427	2.1	注意	Invision Power Services, Inc	-	IPB の action_admin/member.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-5204	2012-09-25 15:36	2006-10-5	Show	GitHub Exploit DB Packet Storm

240428	5.1	警告	Invision Power Services, Inc	-	IPB における SQL コマンドを実行される脆弱性	-	CVE-2006-5203	2012-09-25 15:36	2006-10-10	Show	GitHub Exploit DB Packet Storm

240429	5	警告	シスコシステムズ (Linksys)	-	Linksys WRT54g における任意の設定を変更される脆弱性	-	CVE-2006-5202	2012-09-25 15:36	2006-10-10	Show	GitHub Exploit DB Packet Storm

240430	5	警告	pdshoppro	-	PDshopPro におけるデータベースをダウンロードされる脆弱性	-	CVE-2006-5197	2012-09-25 15:36	2006-10-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 26, 2026, 4:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
268491	8.8	HIGH Network	cisco	asa_cx_context-aware_security_software prime_security_manager	The RBAC implementation in Cisco ASA-CX Content-Aware Security software before 9.3.1.1(112) and Cisco Prime Security Manager (PRSM) software before 9.3.1.1(112) allows remote authenticated users to c…	CWE-284 Improper Access Control	CVE-2016-1301	2024-11-21 11:46	2016-02-7	Show	GitHub Exploit DB Packet Storm

268492	6.1	MEDIUM Network	cisco	jabber_guest	Cross-site scripting (XSS) vulnerability in the management interface in Cisco Jabber Guest Server 10.6(8) allows remote attackers to inject arbitrary web script or HTML via the host tag parameter, ak…	CWE-79 Cross-site Scripting	CVE-2016-1311	2024-11-21 11:46	2016-02-6	Show	GitHub Exploit DB Packet Storm

268493	6.1	MEDIUM Network	sun	opensolaris	Cross-site scripting (XSS) vulnerability in Cisco Unity Connection 11.5(0.199) allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka Bug ID CSCuy09033.	CWE-79 Cross-site Scripting	CVE-2016-1310	2024-11-21 11:46	2016-02-6	Show	GitHub Exploit DB Packet Storm

268494	6.1	MEDIUM Network	sun	opensolaris	Multiple cross-site scripting (XSS) vulnerabilities in Cisco Fog Director 1.0(0) allow remote attackers to inject arbitrary web script or HTML via a crafted parameter, aka Bug ID CSCux80466.	CWE-79 Cross-site Scripting	CVE-2016-1306	2024-11-21 11:46	2016-02-6	Show	GitHub Exploit DB Packet Storm

268495	5.9	MEDIUM Network	isc	bind	rdataset.c in ISC BIND 9 Supported Preview Edition 9.9.8-S before 9.9.8-S5, when nxdomain-redirect is enabled, allows remote attackers to cause a denial of service (REQUIRE assertion failure and daem…	CWE-20 Improper Input Validation	CVE-2016-1284	2024-11-21 11:46	2016-02-4	Show	GitHub Exploit DB Packet Storm

268496	10.0	CRITICAL Network	radicale	radicale	The filesystem storage backend in Radicale before 1.1 on Windows allows remote attackers to read or write to arbitrary files via a crafted path, as demonstrated by /c:/file/ignore.	CWE-21 Pathname Traversal and Equivalence Errors	CVE-2016-1505	2024-11-21 11:46	2016-02-4	Show	GitHub Exploit DB Packet Storm

268497	5.4	MEDIUM Network	apple	iphone_os	WebSheet in Apple iOS before 9.2.1 allows remote attackers to read or write to cookies by operating a crafted captive portal.	CWE-200 CWE-19 Information Exposure Data Processing Errors	CVE-2016-1730	2024-11-21 11:46	2016-02-1	Show	GitHub Exploit DB Packet Storm

268498	7.3	HIGH Network	apple	mac_os_x	Untrusted search path vulnerability in OSA Scripts in Apple OS X before 10.11.3 allows attackers to load arbitrary script libraries via a quarantined application.	NVD-CWE-Other	CVE-2016-1729	2024-11-21 11:46	2016-02-1	Show	GitHub Exploit DB Packet Storm

268499	4.3	MEDIUM Network	apple	safari iphone_os	The Cascading Style Sheets (CSS) implementation in Apple iOS before 9.2.1 and Safari before 9.0.3 mishandles the "a:visited button" selector during height processing, which makes it easier for remote…	CWE-200 Information Exposure	CVE-2016-1728	2024-11-21 11:46	2016-02-1	Show	GitHub Exploit DB Packet Storm

268500	8.8	HIGH Network	apple webkitgtk	tvos iphone_os watchos safari webkitgtk\+	WebKit, as used in Apple iOS before 9.2.1, Safari before 9.0.3, and tvOS before 9.1.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-1727	2024-11-21 11:46	2016-02-1	Show	GitHub Exploit DB Packet Storm