Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 23, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
240501 6.8 警告 Mambo Foundation - Mambo の a6mambocredits コンポーネントにおける PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2006-4288 2012-09-25 15:35 2006-08-22 Show GitHub Exploit DB Packet Storm
240502 7.5 危険 nes game - NES Game などの製品における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4287 2012-09-25 15:35 2006-08-22 Show GitHub Exploit DB Packet Storm
240503 7.5 危険 lblog - LBlog の comments.asp における SQL インジェクションの脆弱性 - CVE-2006-4284 2012-09-25 15:35 2006-08-22 Show GitHub Exploit DB Packet Storm
240504 7.5 危険 mamboxchange - Mambo 用の mambowiki コンポーネントにおける PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4282 2012-09-25 15:35 2006-08-22 Show GitHub Exploit DB Packet Storm
240505 7.5 危険 Mambo Foundation - Mambo の catalogshop コンポーネントにおける PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4275 2012-09-25 15:35 2006-08-21 Show GitHub Exploit DB Packet Storm
240506 6.8 警告 vBulletin Solutions, Inc. - Jelsoft vBulletin におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-4273 2012-09-25 15:35 2006-08-3 Show GitHub Exploit DB Packet Storm
240507 6.8 警告 Mambo Foundation - Mambo 用の mambelfish コンポーネントにおける PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2006-4270 2012-09-25 15:35 2006-08-21 Show GitHub Exploit DB Packet Storm
240508 5 警告 カスペルスキー - Kaspersky Anti-Hacker における ICMP へのレスポンスを取得される脆弱性 - CVE-2006-4265 2012-09-25 15:35 2006-08-21 Show GitHub Exploit DB Packet Storm
240509 5 警告 jake olefsky - Fotopholder の index.php におけるディレクトリトラバーサルの脆弱性 - CVE-2006-4260 2012-09-25 15:35 2006-08-21 Show GitHub Exploit DB Packet Storm
240510 6.8 警告 マイクロソフト - Microsoft DirectX SDK におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2006-4183 2012-09-25 15:35 2007-07-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
268311 4.3 MEDIUM
Network 		google
redhat
opensuse 		chrome
enterprise_linux_server_supplementary_eus
enterprise_linux_desktop_supplementary
enterprise_linux_server_supplementary
enterprise_linux_workstation_supplementary
opensuse 		The HistoryController::UpdateForCommit function in content/renderer/history_controller.cc in Google Chrome before 50.0.2661.94 mishandles the interaction between subframe forward navigations and othe… CWE-254
 7PK - Security Features 		CVE-2016-1664 2024-11-21 11:46 2016-05-15 Show GitHub Exploit DB Packet Storm
268312 8.8 HIGH
Network 		opensuse
redhat
google 		opensuse
enterprise_linux_server_supplementary_eus
enterprise_linux_desktop_supplementary
enterprise_linux_server_supplementary
enterprise_linux_workstation_supplementary
chrome 		The SerializedScriptValue::transferArrayBuffers function in WebKit/Source/bindings/core/v8/SerializedScriptValue.cpp in the V8 bindings in Blink, as used in Google Chrome before 50.0.2661.94, mishand… NVD-CWE-Other
CVE-2016-1663 2024-11-21 11:46 2016-05-15 Show GitHub Exploit DB Packet Storm
268313 9.8 CRITICAL
Network 		google
redhat
opensuse 		chrome
enterprise_linux_server_supplementary_eus
enterprise_linux_desktop_supplementary
enterprise_linux_server_supplementary
enterprise_linux_workstation_supplementary
opensuse 		extensions/renderer/gc_callback.cc in Google Chrome before 50.0.2661.94 does not prevent fallback execution once the Garbage Collection callback has started, which allows remote attackers to cause a … NVD-CWE-Other
CVE-2016-1662 2024-11-21 11:46 2016-05-15 Show GitHub Exploit DB Packet Storm
268314 8.0 HIGH
Network 		redhat
google
opensuse 		enterprise_linux_server_supplementary_eus
enterprise_linux_desktop_supplementary
enterprise_linux_server_supplementary
enterprise_linux_workstation_supplementary
chrome
opensuse 		Blink, as used in Google Chrome before 50.0.2661.94, does not ensure that frames satisfy a check for the same renderer process in addition to a Same Origin Policy check, which allows remote attackers… CWE-20
 Improper Input Validation  		CVE-2016-1661 2024-11-21 11:46 2016-05-15 Show GitHub Exploit DB Packet Storm
268315 8.8 HIGH
Network 		opensuse
redhat
google 		opensuse
enterprise_linux_server_supplementary_eus
enterprise_linux_desktop_supplementary
enterprise_linux_server_supplementary
enterprise_linux_workstation_supplementary
chrome 		Blink, as used in Google Chrome before 50.0.2661.94, mishandles assertions in the WTF::BitArray and WTF::double_conversion::Vector classes, which allows remote attackers to cause a denial of service … CWE-20
 Improper Input Validation  		CVE-2016-1660 2024-11-21 11:46 2016-05-15 Show GitHub Exploit DB Packet Storm
268316 7.5 HIGH
Network 		cisco ios The packet-processing microcode in Cisco IOS 15.2(2)EA, 15.2(2)EA1, 15.2(2)EA2, and 15.2(4)EA on Industrial Ethernet 4000 devices and 15.2(2)EB and 15.2(2)EB1 on Industrial Ethernet 5000 devices allo… CWE-399
 Resource Management Errors 		CVE-2016-1399 2024-11-21 11:46 2016-05-14 Show GitHub Exploit DB Packet Storm
268317 9.8 CRITICAL
Network 		canonical ubuntu-core-launcher The setup_snappy_os_mounts function in the ubuntu-core-launcher package before 1.0.27.1 improperly determines the mount point of bind mounts when using snaps, which might allow remote attackers to ob… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-1580 2024-11-21 11:46 2016-05-13 Show GitHub Exploit DB Packet Storm
268318 9.8 CRITICAL
Network 		canonical
oxide_project 		ubuntu_linux
oxide 		Use-after-free vulnerability in Oxide allows remote attackers to cause a denial of service (application crash) or execute arbitrary code via unspecified vectors, related to responding synchronously t… NVD-CWE-Other
CVE-2016-1578 2024-11-21 11:46 2016-05-13 Show GitHub Exploit DB Packet Storm
268319 7.1 HIGH
Network 		cisco cloud_network_automation_provisioner SQL injection vulnerability in Cisco Cloud Network Automation Provisioner (CNAP) 1.0 and 1.1 allows remote authenticated users to execute arbitrary SQL commands via a crafted URL, aka Bug ID CSCuy721… CWE-89
SQL Injection 		CVE-2016-1393 2024-11-21 11:46 2016-05-12 Show GitHub Exploit DB Packet Storm
268320 6.1 MEDIUM
Network 		websvn
debian 		websvn
debian_linux 		Multiple cross-site scripting (XSS) vulnerabilities in (1) revision.php, (2) log.php, (3) listing.php, and (4) comp.php in WebSVN allow context-dependent attackers to inject arbitrary web script or H… CWE-79
Cross-site Scripting 		CVE-2016-1236 2024-11-21 11:46 2016-05-12 Show GitHub Exploit DB Packet Storm