Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 29, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
240471	7.8	危険	john goodman	-	abitwhizzy.php における絶対パストラバーサルの脆弱性	-	CVE-2006-6384	2012-09-25 15:36	2006-12-7	Show	GitHub Exploit DB Packet Storm

240472	4.6	警告	The PHP Group	-	PHP における safe_mode 制限を回避される脆弱性	-	CVE-2006-6383	2012-09-25 15:36	2006-12-10	Show	GitHub Exploit DB Packet Storm

240473	7.5	危険	onedotoh	-	SFM の fm.php におけるディレクトリトラバーサルの脆弱性	-	CVE-2006-6376	2012-09-25 15:36	2006-12-7	Show	GitHub Exploit DB Packet Storm

240474	6.8	警告	james barnsley	-	JAB Guest Book の pbguestbook.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-6372	2012-09-25 15:36	2006-12-7	Show	GitHub Exploit DB Packet Storm

240475	6.8	警告	james barnsley	-	JAB Guest Book の pbguestbook.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-6371	2012-09-25 15:36	2006-12-7	Show	GitHub Exploit DB Packet Storm

240476	7.5	危険	Invision Power Services, Inc	-	Invision Gallery の forum/modules/gallery/post.php における SQL インジェクションの脆弱性	-	CVE-2006-6370	2012-09-25 15:36	2006-12-7	Show	GitHub Exploit DB Packet Storm

240477	7.5	危険	Invision Power Services, Inc	-	Invision Community Blog Mod の lib/entry_reply_entry.php における SQL インジェクションの脆弱性	-	CVE-2006-6369	2012-09-25 15:36	2006-12-1	Show	GitHub Exploit DB Packet Storm

240478	6.8	警告	inside systems	-	ISMail の error.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-6364	2012-09-25 15:36	2006-12-7	Show	GitHub Exploit DB Packet Storm

240479	10	危険	khaledmuratlist	-	KhaledMuratList におけるデータベースをダウンロードされる脆弱性	-	CVE-2006-6351	2012-09-25 15:36	2006-12-6	Show	GitHub Exploit DB Packet Storm

240480	10	危険	iisworks	-	listpics におけるデータベースをダウンロードされる脆弱性	-	CVE-2006-6350	2012-09-25 15:36	2006-12-6	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 30, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
266541	10.0	CRITICAL Network	ibm	bigfix_platform	IBM BigFix Platform could allow a remote attacker to execute arbitrary code on the system, caused by a use-after-free race condition. An attacker could exploit this vulnerability to execute arbitrary…	CWE-416 Use After Free	CVE-2016-6082	2024-11-21 11:55	2017-02-2	Show	GitHub Exploit DB Packet Storm

266542	5.3	MEDIUM Network	ibm	websphere_message_broker	The WebAdmin context for WebSphere Message Broker allows directory listings which could disclose sensitive information to the attacker.	CWE-200 Information Exposure	CVE-2016-6080	2024-11-21 11:55	2017-02-2	Show	GitHub Exploit DB Packet Storm

266543	5.4	MEDIUM Network	ibm	maximo_for_transportation maximo_for_life_sciences maximo_for_aviation tivoli_asset_management_for_it smartcloud_control_desk tivoli_change_and_configuration_management_database tiv…	IBM Maximo Asset Management is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentiall…	CWE-79 Cross-site Scripting	CVE-2016-6072	2024-11-21 11:55	2017-02-2	Show	GitHub Exploit DB Packet Storm

266544	7.8	HIGH Local	ibm	security_guardium	IBM Security Guardium Database Activity Monitor appliance could allow a local user to inject commands that would be executed as root.	CWE-78 OS Command	CVE-2016-6065	2024-11-21 11:55	2017-02-2	Show	GitHub Exploit DB Packet Storm

266545	5.4	MEDIUM Network	ibm	rational_collaborative_lifecycle_management	IBM Jazz Foundation is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leadin…	CWE-79 Cross-site Scripting	CVE-2016-6061	2024-11-21 11:55	2017-02-2	Show	GitHub Exploit DB Packet Storm

266546	8.1	HIGH Network	ibm	infosphere_information_server infosphere_datastage infosphere_information_server_on_cloud	IBM InfoSphere Information Server is vulnerable to a denial of service, caused by an XML External Entity Injection (XXE) error when processing XML data. A remote attacker could exploit this vulnerabi…	CWE-611 XXE	CVE-2016-6059	2024-11-21 11:55	2017-02-2	Show	GitHub Exploit DB Packet Storm

266547	5.4	MEDIUM Network	ibm	jazz_reporting_service	IBM Jazz Foundation is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leadin…	CWE-79 Cross-site Scripting	CVE-2016-6054	2024-11-21 11:55	2017-02-2	Show	GitHub Exploit DB Packet Storm

266548	5.4	MEDIUM Network	ibm	jazz_reporting_service	IBM Jazz Reporting Service (JRS) is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality poten…	CWE-79 Cross-site Scripting	CVE-2016-6047	2024-11-21 11:55	2017-02-2	Show	GitHub Exploit DB Packet Storm

266549	5.4	MEDIUM Network	ibm	tivoli_storage_manager	IBM Tivoli Storage Manager Operations Center is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functio…	CWE-79 Cross-site Scripting	CVE-2016-6046	2024-11-21 11:55	2017-02-2	Show	GitHub Exploit DB Packet Storm

266550	8.8	HIGH Network	ibm	tivoli_storage_manager	IBM Tivoli Storage Manager Operations Center is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the w…	CWE-352 Origin Validation Error	CVE-2016-6045	2024-11-21 11:55	2017-02-2	Show	GitHub Exploit DB Packet Storm