Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 28, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
240651	7.5	危険	opendock	-	OpenDock Easy Doc における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5243	2012-09-25 15:36	2006-10-11	Show	GitHub Exploit DB Packet Storm

240652	5.1	警告	opendock	-	OpenDock Easy Gallery における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5241	2012-09-25 15:36	2006-10-11	Show	GitHub Exploit DB Packet Storm

240653	2.6	注意	OpenBSD	-	OpenSSH portable における有効なユーザ名を特定される脆弱性	CWE-200 情報漏えい	CVE-2006-5229	2012-09-25 15:36	2006-10-10	Show	GitHub Exploit DB Packet Storm

240654	7.5	危険	nivisec	-	phpBB 用の Nivisec User Viewed Posts Tracker モジュールにおける PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5223	2012-09-25 15:36	2006-10-10	Show	GitHub Exploit DB Packet Storm

240655	5.1	警告	Objective Development Software GmbH	-	WebYep における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2006-5220	2012-09-25 15:36	2006-10-10	Show	GitHub Exploit DB Packet Storm

240656	5.1	警告	Moodle	-	Moodle の blog モジュールの blog/index.php における SQL インジェクションの脆弱性	-	CVE-2006-5219	2012-09-25 15:36	2006-10-10	Show	GitHub Exploit DB Packet Storm

240657	4.6	警告	OpenBSD NetBSD	-	OpenBSD などの製品で使用される systrace_preprepl 関数における整数オーバーフローの脆弱性	-	CVE-2006-5218	2012-09-25 15:36	2006-10-10	Show	GitHub Exploit DB Packet Storm

240658	7.5	危険	Invision Power Services, Inc	-	Invision Gallery における SQL インジェクションの脆弱性	-	CVE-2006-5206	2012-09-25 15:36	2006-10-10	Show	GitHub Exploit DB Packet Storm

240659	5	警告	Invision Power Services, Inc	-	Invision Gallery におけるディレクトリトラバーサルの脆弱性	-	CVE-2006-5205	2012-09-25 15:36	2006-10-10	Show	GitHub Exploit DB Packet Storm

240660	2.1	注意	Invision Power Services, Inc	-	IPB の action_admin/member.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-5204	2012-09-25 15:36	2006-10-5	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
268921	7.5	HIGH Network	iconics	webhmi	Directory traversal vulnerability in ICONICS WebHMI 9 and earlier allows remote attackers to read configuration files, and consequently discover password hashes, via unspecified vectors.	CWE-22 Path Traversal	CVE-2016-2289	2024-11-21 11:48	2016-04-2	Show	GitHub Exploit DB Packet Storm

268922	7.8	HIGH Local	cogentdatahub	cogent_datahub	Cogent DataHub before 7.3.10 allows local users to gain privileges by leveraging the user or guest role to modify a file.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-2288	2024-11-21 11:48	2016-03-30	Show	GitHub Exploit DB Packet Storm

268923	7.5	HIGH Network	autodesk	autodesk_backburner	Stack-based buffer overflow in manager.exe in Backburner Manager in Autodesk Backburner 2016 2016.0.0.2150 and earlier allows remote attackers to execute arbitrary code or cause a denial of service (…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-2344	2024-11-21 11:48	2016-03-29	Show	GitHub Exploit DB Packet Storm

268924	5.4	MEDIUM Network	graniteds	granite_data_services	The AMF framework in Granite Data Services 3.1.1-SNAPSHOT allows remote authenticated users to read arbitrary files, send TCP requests to intranet servers, or cause a denial of service via an XML ext…	NVD-CWE-Other	CVE-2016-2340	2024-11-21 11:48	2016-03-26	Show	GitHub Exploit DB Packet Storm

268925	9.8	CRITICAL Network	hp	support_assistant	HP Support Assistant before 8.1.52.1 allows remote attackers to bypass authentication via unspecified vectors.	CWE-287 Improper Authentication	CVE-2016-2245	2024-11-21 11:48	2016-03-20	Show	GitHub Exploit DB Packet Storm

268926	6.1	MEDIUM Network	xzeres	442sr_os	Cross-site scripting (XSS) vulnerability in XZERES 442SR OS on 442SR wind turbines allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.	CWE-79 Cross-site Scripting	CVE-2016-2287	2024-11-21 11:48	2016-03-19	Show	GitHub Exploit DB Packet Storm

268927	7.2	HIGH Local	abb	panel_builder_800	Untrusted search path vulnerability in ABB Panel Builder 800 5.1 allows local users to gain privileges via a Trojan horse DLL in the current working directory.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-2281	2024-11-21 11:48	2016-03-18	Show	GitHub Exploit DB Packet Storm

268928	9.8	CRITICAL Network	dameware	mini_remote_control	Stack-based buffer overflow in dwrcs.exe in the dwmrcs daemon in SolarWinds DameWare Mini Remote Control 12.0 allows remote attackers to execute arbitrary code via a crafted string.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-2345	2024-11-21 11:48	2016-03-18	Show	GitHub Exploit DB Packet Storm

268929	8.1	HIGH Network	quagga debian	quagga debian_linux	The bgp_nlri_parse_vpnv4 function in bgp_mplsvpn.c in the VPNv4 NLRI parser in bgpd in Quagga before 1.0.20160309, when a certain VPNv4 configuration is used, relies on a Labeled-VPN SAFI routes-data…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-2342	2024-11-21 11:48	2016-03-17	Show	GitHub Exploit DB Packet Storm

268930	6.5	MEDIUM Network	siemens	simatic_s7_cpu_1200_firmware	Siemens SIMATIC S7-1200 CPU devices before 4.0 allow remote attackers to bypass a "user program block" protection mechanism via unspecified vectors.	CWE-254 7PK - Security Features	CVE-2016-2846	2024-11-21 11:48	2016-03-16	Show	GitHub Exploit DB Packet Storm