Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 3, 2026, 2:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
240721	3.6	注意	passgo	-	Passgo Defender における重要なファイルを変更される脆弱性	-	CVE-2006-5406	2012-09-25 15:36	2006-10-18	Show	GitHub Exploit DB Packet Storm

240722	7.5	危険	マイクロソフト	-	Microsoft Class Package Export Tool におけるバッファオーバーフローの脆弱性	-	CVE-2006-5395	2012-09-25 15:36	2006-10-18	Show	GitHub Exploit DB Packet Storm

240723	7.5	危険	opendoc	-	OpenDock FullCore における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5392	2012-09-25 15:36	2006-10-18	Show	GitHub Exploit DB Packet Storm

240724	7.5	危険	nuralstorm	-	NuralStorm Webmail の process.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5386	2012-09-25 15:36	2006-10-18	Show	GitHub Exploit DB Packet Storm

240725	9	危険	オラクル	-	JD Edwards EnterpriseOne の JD Edwards HTML Server における脆弱性	-	CVE-2006-5378	2012-09-25 15:36	2006-10-17	Show	GitHub Exploit DB Packet Storm

240726	9	危険	オラクル	-	Oracle PeopleSoft Enterprise の PeopleSoft コンポーネントにおける脆弱性	-	CVE-2006-5377	2012-09-25 15:36	2006-10-17	Show	GitHub Exploit DB Packet Storm

240727	9	危険	オラクル	-	Oracle PeopleSoft Enterprise の PeopleTools コンポーネントにおける脆弱性	-	CVE-2006-5376	2012-09-25 15:36	2006-10-17	Show	GitHub Exploit DB Packet Storm

240728	10	危険	オラクル	-	Oracle PeopleSoft Enterprise の PeopleTools コンポーネントにおける脆弱性	-	CVE-2006-5375	2012-09-25 15:36	2006-10-17	Show	GitHub Exploit DB Packet Storm

240729	10	危険	オラクル	-	Oracle Pharmaceutical Applications における脆弱性	-	CVE-2006-5374	2012-09-25 15:36	2006-10-18	Show	GitHub Exploit DB Packet Storm

240730	9	危険	オラクル	-	Oracle E-Business Suite の Oracle Install Base コンポーネントにおける脆弱性	-	CVE-2006-5373	2012-09-25 15:36	2006-10-17	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
266171	4.4	MEDIUM Local	qemu debian	qemu debian_linux	The mcf_fec_do_tx function in hw/net/mcf_fec.c in QEMU (aka Quick Emulator) does not properly limit the buffer descriptor count when transmitting packets, which allows local guest OS administrators t…	CWE-835 Loop with Unreachable Exit Condition ('Infinite Loop')	CVE-2016-7908	2024-11-21 11:58	2016-10-6	Show	GitHub Exploit DB Packet Storm

266172	4.4	MEDIUM Local	qemu	qemu	The imx_fec_do_tx function in hw/net/imx_fec.c in QEMU (aka Quick Emulator) does not properly limit the buffer descriptor count when transmitting packets, which allows local guest OS administrators t…	CWE-20 CWE-399 Improper Input Validation Resource Management Errors	CVE-2016-7907	2024-11-21 11:58	2016-10-6	Show	GitHub Exploit DB Packet Storm

266173	7.2	HIGH Network	fortinet	fortiwlc	Fortinet FortiWLC 6.1-2-29 and earlier, 7.0-9-1, 7.0-10-0, 8.0-5-0, 8.1-2-0, and 8.2-4-0 allow administrators to obtain sensitive user credentials by reading the pam.log file.	CWE-200 Information Exposure	CVE-2016-7561	2024-11-21 11:58	2016-10-6	Show	GitHub Exploit DB Packet Storm

266174	9.8	CRITICAL Network	fortinet	fortiwlc	The rsyncd server in Fortinet FortiWLC 6.1-2-29 and earlier, 7.0-9-1, 7.0-10-0, 8.0-5-0, 8.1-2-0, and 8.2-4-0 has a hardcoded rsync account, which allows remote attackers to read or write to arbitrar…	CWE-798 Use of Hard-coded Credentials	CVE-2016-7560	2024-11-21 11:58	2016-10-6	Show	GitHub Exploit DB Packet Storm

266175	9.1	CRITICAL Network	sap	netweaver	The (1) SCTC_REFRESH_EXPORT_TAB_COMP, (2) SCTC_REFRESH_CHECK_ENV, and (3) SCTC_TMS_MAINTAIN_ALOG functions in the SCTC subpackage in SAP Netweaver 7.40 SP 12 allow remote authenticated users with cer…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-7435	2024-11-21 11:58	2016-10-6	Show	GitHub Exploit DB Packet Storm

266176	4.3	MEDIUM Network	drupal	drupal	The system.temporary route in Drupal 8.x before 8.1.10 does not properly check for "Export configuration" permission, which allows remote authenticated users to bypass intended access restrictions an…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-7572	2024-11-21 11:58	2016-10-4	Show	GitHub Exploit DB Packet Storm

266177	6.1	MEDIUM Network	drupal	drupal	Cross-site scripting (XSS) vulnerability in Drupal 8.x before 8.1.10 allows remote attackers to inject arbitrary web script or HTML via vectors involving an HTTP exception.	CWE-79 Cross-site Scripting	CVE-2016-7571	2024-11-21 11:58	2016-10-4	Show	GitHub Exploit DB Packet Storm

266178	4.3	MEDIUM Network	drupal	drupal	Drupal 8.x before 8.1.10 does not properly check for "Administer comments" permission, which allows remote authenticated users to set the visibility of comments for arbitrary nodes by leveraging righ…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-7570	2024-11-21 11:58	2016-10-4	Show	GitHub Exploit DB Packet Storm

266179	7.5	HIGH Network	uclouvain opensuse	openjpeg leap	convert.c in OpenJPEG before 2.1.2 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via vectors involving the variable s.	CWE-476 NULL Pointer Dereference	CVE-2016-7445	2024-11-21 11:58	2016-10-4	Show	GitHub Exploit DB Packet Storm

266180	4.4	MEDIUM Local	sophos	unified_threat_management_software	The Frontend component in Sophos UTM with firmware 9.405-5 and earlier allows local administrators to obtain sensitive password information by reading the "value" field of the proxy user settings in …	CWE-200 Information Exposure	CVE-2016-7442	2024-11-21 11:58	2016-10-4	Show	GitHub Exploit DB Packet Storm