Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 22, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
240501	6.8	警告	Mambo Foundation	-	Mambo の a6mambocredits コンポーネントにおける PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2006-4288	2012-09-25 15:35	2006-08-22	Show	GitHub Exploit DB Packet Storm

240502	7.5	危険	nes game	-	NES Game などの製品における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4287	2012-09-25 15:35	2006-08-22	Show	GitHub Exploit DB Packet Storm

240503	7.5	危険	lblog	-	LBlog の comments.asp における SQL インジェクションの脆弱性	-	CVE-2006-4284	2012-09-25 15:35	2006-08-22	Show	GitHub Exploit DB Packet Storm

240504	7.5	危険	mamboxchange	-	Mambo 用の mambowiki コンポーネントにおける PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4282	2012-09-25 15:35	2006-08-22	Show	GitHub Exploit DB Packet Storm

240505	7.5	危険	Mambo Foundation	-	Mambo の catalogshop コンポーネントにおける PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4275	2012-09-25 15:35	2006-08-21	Show	GitHub Exploit DB Packet Storm

240506	6.8	警告	vBulletin Solutions, Inc.	-	Jelsoft vBulletin におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-4273	2012-09-25 15:35	2006-08-3	Show	GitHub Exploit DB Packet Storm

240507	6.8	警告	Mambo Foundation	-	Mambo 用の mambelfish コンポーネントにおける PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2006-4270	2012-09-25 15:35	2006-08-21	Show	GitHub Exploit DB Packet Storm

240508	5	警告	カスペルスキー	-	Kaspersky Anti-Hacker における ICMP へのレスポンスを取得される脆弱性	-	CVE-2006-4265	2012-09-25 15:35	2006-08-21	Show	GitHub Exploit DB Packet Storm

240509	5	警告	jake olefsky	-	Fotopholder の index.php におけるディレクトリトラバーサルの脆弱性	-	CVE-2006-4260	2012-09-25 15:35	2006-08-21	Show	GitHub Exploit DB Packet Storm

240510	6.8	警告	マイクロソフト	-	Microsoft DirectX SDK におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2006-4183	2012-09-25 15:35	2007-07-18	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 22, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
268071	8.8	HIGH Network	cisco	small_business_220_series_smart_plus_switches	Cross-site request forgery (CSRF) vulnerability in the web-based management interface on Cisco Small Business 220 devices with firmware before 1.0.1.1 allows remote attackers to hijack the authentica…	CWE-352 Origin Validation Error	CVE-2016-1470	2024-11-21 11:46	2016-09-2	Show	GitHub Exploit DB Packet Storm

268072	4.9	MEDIUM Network	f5	big-ip_webaccelerator big-ip_link_controller big-ip_access_policy_manager big-ip_application_security_manager big-ip_domain_name_system big-ip_global_traffic_manager big-ip_local_tr…	The Configuration utility in F5 BIG-IP systems 11.0.x, 11.1.x, 11.2.x before 11.2.1 HF16, 11.3.x, 11.4.x before 11.4.1 HF10, 11.5.x before 11.5.4 HF2, 1.6.x before 11.6.1, and 12.0.0 before HF1 allow…	CWE-200 Information Exposure	CVE-2016-1497	2024-11-21 11:46	2016-08-26	Show	GitHub Exploit DB Packet Storm

268073	7.5	HIGH Network	cisco	webex_meetings_server	Cisco WebEx Meetings Server 2.6 allows remote attackers to bypass intended access restrictions and obtain sensitive application information via unspecified vectors, aka Bug ID CSCuy92724.	CWE-200 CWE-20 Information Exposure Improper Input Validation	CVE-2016-1484	2024-11-21 11:46	2016-08-23	Show	GitHub Exploit DB Packet Storm

268074	6.5	MEDIUM Network	cisco	connected_streaming_analytics	Cisco Connected Streaming Analytics 1.1.1 allows remote authenticated users to discover a notification service password by reading administrative pages, aka Bug ID CSCuz92891.	CWE-200 Information Exposure	CVE-2016-1477	2024-11-21 11:46	2016-08-23	Show	GitHub Exploit DB Packet Storm

268075	6.1	MEDIUM Network	cisco	identity_services_engine_software	Cross-site scripting (XSS) vulnerability in Cisco Identity Services Engine 1.3(0.876) allows remote attackers to inject arbitrary web script or HTML via crafted parameters, aka Bug ID CSCva46497.	CWE-79 Cross-site Scripting	CVE-2016-1485	2024-11-21 11:46	2016-08-22	Show	GitHub Exploit DB Packet Storm

268076	7.5	HIGH Network	cisco	ip_phone_8800_series_firmware	Cisco IP Phone 8800 devices with software 11.0(1) allow remote attackers to cause a denial of service (memory corruption) via a crafted HTTP request, aka Bug ID CSCuz03038.	CWE-20 Improper Input Validation	CVE-2016-1479	2024-11-21 11:46	2016-08-22	Show	GitHub Exploit DB Packet Storm

268077	5.4	MEDIUM Network	cisco	ip_phone_8800_series_firmware	Cross-site scripting (XSS) vulnerability on Cisco IP Phone 8800 devices with software 11.0 allows remote authenticated users to inject arbitrary web script or HTML via crafted parameters, aka Bug ID …	CWE-79 Cross-site Scripting	CVE-2016-1476	2024-11-21 11:46	2016-08-22	Show	GitHub Exploit DB Packet Storm

268078	8.8	HIGH Network	cisco	firepower_management_center	The web-based GUI in Cisco Firepower Management Center 4.x and 5.x before 5.3.0.3, 5.3.1.x before 5.3.1.2, and 5.4.x before 5.4.0.1 and Cisco Adaptive Security Appliance (ASA) Software on 5500-X devi…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-1458	2024-11-21 11:46	2016-08-19	Show	GitHub Exploit DB Packet Storm

268079	8.8	HIGH Network	cisco	firepower_management_center	The web-based GUI in Cisco Firepower Management Center 4.x and 5.x before 5.3.1.2 and 5.4.x before 5.4.0.1 and Cisco Adaptive Security Appliance (ASA) Software on 5500-X devices with FirePOWER Servic…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-1457	2024-11-21 11:46	2016-08-19	Show	GitHub Exploit DB Packet Storm

268080	8.8	HIGH Network	cisco	application_policy_infrastructure_controller_enterprise_module	The Grapevine update process in Cisco Application Policy Infrastructure Controller Enterprise Module (APIC-EM) 1.0 allows remote authenticated users to execute arbitrary commands as root via a crafte…	CWE-20 Improper Input Validation	CVE-2016-1365	2024-11-21 11:46	2016-08-19	Show	GitHub Exploit DB Packet Storm