Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 30, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
240471	7.8	危険	john goodman	-	abitwhizzy.php における絶対パストラバーサルの脆弱性	-	CVE-2006-6384	2012-09-25 15:36	2006-12-7	Show	GitHub Exploit DB Packet Storm

240472	4.6	警告	The PHP Group	-	PHP における safe_mode 制限を回避される脆弱性	-	CVE-2006-6383	2012-09-25 15:36	2006-12-10	Show	GitHub Exploit DB Packet Storm

240473	7.5	危険	onedotoh	-	SFM の fm.php におけるディレクトリトラバーサルの脆弱性	-	CVE-2006-6376	2012-09-25 15:36	2006-12-7	Show	GitHub Exploit DB Packet Storm

240474	6.8	警告	james barnsley	-	JAB Guest Book の pbguestbook.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-6372	2012-09-25 15:36	2006-12-7	Show	GitHub Exploit DB Packet Storm

240475	6.8	警告	james barnsley	-	JAB Guest Book の pbguestbook.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-6371	2012-09-25 15:36	2006-12-7	Show	GitHub Exploit DB Packet Storm

240476	7.5	危険	Invision Power Services, Inc	-	Invision Gallery の forum/modules/gallery/post.php における SQL インジェクションの脆弱性	-	CVE-2006-6370	2012-09-25 15:36	2006-12-7	Show	GitHub Exploit DB Packet Storm

240477	7.5	危険	Invision Power Services, Inc	-	Invision Community Blog Mod の lib/entry_reply_entry.php における SQL インジェクションの脆弱性	-	CVE-2006-6369	2012-09-25 15:36	2006-12-1	Show	GitHub Exploit DB Packet Storm

240478	6.8	警告	inside systems	-	ISMail の error.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-6364	2012-09-25 15:36	2006-12-7	Show	GitHub Exploit DB Packet Storm

240479	10	危険	khaledmuratlist	-	KhaledMuratList におけるデータベースをダウンロードされる脆弱性	-	CVE-2006-6351	2012-09-25 15:36	2006-12-6	Show	GitHub Exploit DB Packet Storm

240480	10	危険	iisworks	-	listpics におけるデータベースをダウンロードされる脆弱性	-	CVE-2006-6350	2012-09-25 15:36	2006-12-6	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 30, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
266551	4.3	MEDIUM Network	ibm	tivoli_storage_manager	IBM Tivoli Storage Manager Operations Center could allow an authenticated attacker to enable or disable the application's REST API, which may let the attacker violate security policy.	CWE-284 Improper Access Control	CVE-2016-6044	2024-11-21 11:55	2017-02-2	Show	GitHub Exploit DB Packet Storm

266552	7.0	HIGH Local	ibm	tivoli_storage_manager	Tivoli Storage Manager Operations Center could allow a local user to take over a previously logged in user due to session expiration not being enforced.	CWE-384 Session Fixation	CVE-2016-6043	2024-11-21 11:55	2017-02-2	Show	GitHub Exploit DB Packet Storm

266553	7.3	HIGH Local	ibm	security_appscan	IBM AppScan Enterprise Edition could allow a remote attacker to execute arbitrary code on the system, caused by improper handling of objects in memory. By persuading a victim to open specially-crafte…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-6042	2024-11-21 11:55	2017-02-2	Show	GitHub Exploit DB Packet Storm

266554	5.0	MEDIUM Network	ibm	rational_collaborative_lifecycle_management	IBM Jazz Foundation could allow an authenticated user to take over a previously logged in user due to session expiration not being enforced.	CWE-384 Session Fixation	CVE-2016-6040	2024-11-21 11:55	2017-02-2	Show	GitHub Exploit DB Packet Storm

266555	5.4	MEDIUM Network	ibm	jazz_reporting_service	IBM Jazz Reporting Service (JRS) is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality poten…	CWE-79 Cross-site Scripting	CVE-2016-6039	2024-11-21 11:55	2017-02-2	Show	GitHub Exploit DB Packet Storm

266556	6.8	MEDIUM Network	ibm	tivoli_storage_manager_for_virtual_environments_data_protection_for_vmware	IBM Tivoli Storage Manager for Virtual Environments (VMware) could disclose the Windows domain credentials to a user with a high level of privileges.	CWE-200 Information Exposure	CVE-2016-6034	2024-11-21 11:55	2017-02-2	Show	GitHub Exploit DB Packet Storm

266557	5.4	MEDIUM Network	ibm	rational_collaborative_lifecycle_management	IBM Jazz Foundation is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leadin…	CWE-79 Cross-site Scripting	CVE-2016-6030	2024-11-21 11:55	2017-02-2	Show	GitHub Exploit DB Packet Storm

266558	4.3	MEDIUM Network	ibm	rational_collaborative_lifecycle_management	IBM Jazz technology based products might allow an attacker to view work item titles that they do not have privilege to view.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-6028	2024-11-21 11:55	2017-02-2	Show	GitHub Exploit DB Packet Storm

266559	6.1	MEDIUM Network	ibm	sterling_b2b_integrator	IBM Sterling B2B Integrator Standard Edition could allow a remote attacker to conduct phishing attacks, using an open redirect attack. By persuading a victim to visit a specially-crafted Web site, a …	CWE-601 Open Redirect	CVE-2016-6020	2024-11-21 11:55	2017-02-2	Show	GitHub Exploit DB Packet Storm

266560	6.1	MEDIUM Network	ibm	tririga_application_platform	IBM TRIRIGA Application Platform is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality poten…	CWE-79 Cross-site Scripting	CVE-2016-6000	2024-11-21 11:55	2017-02-2	Show	GitHub Exploit DB Packet Storm