Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 30, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
240471 7.8 危険 john goodman - abitwhizzy.php における絶対パストラバーサルの脆弱性 - CVE-2006-6384 2012-09-25 15:36 2006-12-7 Show GitHub Exploit DB Packet Storm
240472 4.6 警告 The PHP Group - PHP における safe_mode 制限を回避される脆弱性 - CVE-2006-6383 2012-09-25 15:36 2006-12-10 Show GitHub Exploit DB Packet Storm
240473 7.5 危険 onedotoh - SFM の fm.php におけるディレクトリトラバーサルの脆弱性 - CVE-2006-6376 2012-09-25 15:36 2006-12-7 Show GitHub Exploit DB Packet Storm
240474 6.8 警告 james barnsley - JAB Guest Book の pbguestbook.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-6372 2012-09-25 15:36 2006-12-7 Show GitHub Exploit DB Packet Storm
240475 6.8 警告 james barnsley - JAB Guest Book の pbguestbook.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-6371 2012-09-25 15:36 2006-12-7 Show GitHub Exploit DB Packet Storm
240476 7.5 危険 Invision Power Services, Inc - Invision Gallery の forum/modules/gallery/post.php における SQL インジェクションの脆弱性 - CVE-2006-6370 2012-09-25 15:36 2006-12-7 Show GitHub Exploit DB Packet Storm
240477 7.5 危険 Invision Power Services, Inc - Invision Community Blog Mod の lib/entry_reply_entry.php における SQL インジェクションの脆弱性 - CVE-2006-6369 2012-09-25 15:36 2006-12-1 Show GitHub Exploit DB Packet Storm
240478 6.8 警告 inside systems - ISMail の error.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-6364 2012-09-25 15:36 2006-12-7 Show GitHub Exploit DB Packet Storm
240479 10 危険 khaledmuratlist - KhaledMuratList におけるデータベースをダウンロードされる脆弱性 - CVE-2006-6351 2012-09-25 15:36 2006-12-6 Show GitHub Exploit DB Packet Storm
240480 10 危険 iisworks - listpics におけるデータベースをダウンロードされる脆弱性 - CVE-2006-6350 2012-09-25 15:36 2006-12-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 30, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
266561 6.5 MEDIUM
Network 		ibm infosphere_information_server IBM InfoSphere Information Server contains a vulnerability that would allow an authenticated user to browse any file on the engine tier, and examine its contents. CWE-200
Information Exposure 		CVE-2016-5994 2024-11-21 11:55 2017-02-2 Show GitHub Exploit DB Packet Storm
266562 6.3 MEDIUM
Network 		ibm security_privileged_identity_manager IBM Security Privileged Identity Manager Virtual Appliance allows an authenticated user to upload malicious files that would be automatically executed by the server. CWE-284
Improper Access Control 		CVE-2016-5990 2024-11-21 11:55 2017-02-2 Show GitHub Exploit DB Packet Storm
266563 6.5 MEDIUM
Network 		ibm security_privileged_identity_manager IBM Security Privileged Identity Manager Virtual Appliance could disclose sensitive information in generated error messages that would be available to an authenticated user. CWE-200
Information Exposure 		CVE-2016-5988 2024-11-21 11:55 2017-02-2 Show GitHub Exploit DB Packet Storm
266564 7.8 HIGH
Local 		ibm tivoli_storage_manager The IBM Tivoli Storage Manager (IBM Spectrum Protect) AIX client is vulnerable to a buffer overflow when Journal-Based Backup is enabled. A local attacker could overflow a buffer and execute arbitrar… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-5985 2024-11-21 11:55 2017-02-2 Show GitHub Exploit DB Packet Storm
266565 6.1 MEDIUM
Network 		ibm infosphere_information_server
infosphere_information_server_on_cloud 		IBM InfoSphere Information Server is vulnerable to cross-frame scripting, caused by insufficient HTML iframe protection. A remote attacker could exploit this vulnerability using a specially-crafted U… CWE-79
Cross-site Scripting 		CVE-2016-5984 2024-11-21 11:55 2017-02-2 Show GitHub Exploit DB Packet Storm
266566 5.4 MEDIUM
Network 		ibm tririga_application_platform IBM TRIRIGA Application Platform is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality poten… CWE-79
Cross-site Scripting 		CVE-2016-5980 2024-11-21 11:55 2017-02-2 Show GitHub Exploit DB Packet Storm
266567 5.9 MEDIUM
Network 		ibm security_privileged_identity_manager IBM Security Privileged Identity Manager Virtual Appliance could allow a remote attacker to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. An a… CWE-200
Information Exposure 		CVE-2016-5966 2024-11-21 11:55 2017-02-2 Show GitHub Exploit DB Packet Storm
266568 9.8 CRITICAL
Network 		ibm security_privileged_identity_manager IBM Security Privileged Identity Manager Virtual Appliance version 2.0.2 uses an inadequate account lockout setting that could allow a remote attacker to brute force account credentials. CWE-284
Improper Access Control 		CVE-2016-5964 2024-11-21 11:55 2017-02-2 Show GitHub Exploit DB Packet Storm
266569 7.5 HIGH
Network 		ibm security_privileged_identity_manager IBM Security Privileged Identity Manager could allow a remote attacker to obtain sensitive information, caused by the failure to set the secure flag for the session cookie in SSL mode. By interceptin… CWE-200
Information Exposure 		CVE-2016-5958 2024-11-21 11:55 2017-02-2 Show GitHub Exploit DB Packet Storm
266570 8.8 HIGH
Network 		ibm kenexa_lcms_premier IBM Kenexa LCMS Premier on Cloud is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow the attacker to view, add, modify or delete informati… CWE-89
SQL Injection 		CVE-2016-5952 2024-11-21 11:55 2017-02-2 Show GitHub Exploit DB Packet Storm