Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 31, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
240851	6.8	警告	nextage	-	NextAge Cart におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-4967	2012-09-25 15:36	2006-09-24	Show	GitHub Exploit DB Packet Storm

240852	6.8	警告	neosys	-	Java 用の Neon WebMail におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-4956	2012-09-25 15:36	2006-09-23	Show	GitHub Exploit DB Packet Storm

240853	5	警告	neosys	-	Java 用の Neon WebMail におけるディレクトリトラバーサルの脆弱性	-	CVE-2006-4955	2012-09-25 15:36	2006-09-23	Show	GitHub Exploit DB Packet Storm

240854	7.5	危険	neosys	-	Neon WebMail の updateuser サーブレットにおける任意のユーザの情報を変更される脆弱性	-	CVE-2006-4954	2012-09-25 15:35	2006-09-23	Show	GitHub Exploit DB Packet Storm

240855	7.5	危険	neosys	-	Neon WebMail における SQL インジェクションの脆弱性	-	CVE-2006-4953	2012-09-25 15:35	2006-09-23	Show	GitHub Exploit DB Packet Storm

240856	7.5	危険	neosys	-	Neon WebMail の updatemail サーブレットにおける電子メールメッセージを移動される脆弱性	-	CVE-2006-4952	2012-09-25 15:35	2006-09-23	Show	GitHub Exploit DB Packet Storm

240857	7.5	危険	neosys	-	Neon WebMail における任意の JSP コードを実行される脆弱性	-	CVE-2006-4951	2012-09-25 15:35	2006-09-23	Show	GitHub Exploit DB Packet Storm

240858	5	警告	Moodle	-	Moodle の course/jumpto.php における重要な情報を取得される脆弱性	-	CVE-2006-4943	2012-09-25 15:35	2006-09-12	Show	GitHub Exploit DB Packet Storm

240859	4.6	警告	Moodle	-	Moodle における LaTeX 出力ファイルなどを dataroot ディレクトリの最上位レベルに書き込まれる脆弱性	-	CVE-2006-4942	2012-09-25 15:35	2006-09-12	Show	GitHub Exploit DB Packet Storm

240860	4.3	警告	Moodle	-	Moodle におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-4941	2012-09-25 15:35	2006-09-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
269141	5.4	MEDIUM Network	open-xchange	open-xchange_appsuite	An issue was discovered in Open-Xchange OX AppSuite before 7.8.0-rev27. The aria-label parameter of tiles at the Portal can be used to inject script code. Those labels use the name of the file (e.g. …	CWE-79 Cross-site Scripting	CVE-2016-3173	2024-11-21 11:49	2016-12-15	Show	GitHub Exploit DB Packet Storm

269142	8.1	HIGH Network	ibm	filenet_workplace	IBM FileNet Workplace 4.0.2 before 4.0.2.14 LA012 allows remote authenticated users to read arbitrary files or cause a denial of service (memory consumption) via an XML document containing an externa…	CWE-611 XXE	CVE-2016-3055	2024-11-21 11:49	2016-12-1	Show	GitHub Exploit DB Packet Storm

269143	6.8	MEDIUM Network	ibm	filenet_workplace	Open redirect vulnerability in IBM FileNet Workplace 4.0.2 through 4.0.2.14 IF001 allows remote authenticated users to redirect users to arbitrary web sites and conduct phishing attacks via unspecifi…	CWE-601 Open Redirect	CVE-2016-3047	2024-11-21 11:49	2016-12-1	Show	GitHub Exploit DB Packet Storm

269144	6.5	MEDIUM Local	ibm	powerkvm	The Linux kernel component in IBM PowerKVM 2.1 before 2.1.1.3-65.10 and 3.1 before 3.1.0.2 allows guest OS users to cause a denial of service (host OS infinite loop and hang) via unspecified vectors.	CWE-20 CWE-284 Improper Input Validation Improper Access Control	CVE-2016-3044	2024-11-21 11:49	2016-12-1	Show	GitHub Exploit DB Packet Storm

269145	8.1	HIGH Network	ibm	appscan_source	IBM AppScan Source 8.7 through 9.0.3.3 allows remote authenticated users to read arbitrary files or cause a denial of service (memory consumption) via an XML document containing an external entity de…	CWE-611 XXE	CVE-2016-3033	2024-11-21 11:49	2016-12-1	Show	GitHub Exploit DB Packet Storm

269146	7.5	HIGH Network	ibm	network_path_manager api_connect	IBM API Connect (aka APIConnect) before 5.0.3.0 with NPM before 2.2.8 includes certain internal server credentials in the software package, which might allow remote attackers to bypass intended acces…	CWE-200 Information Exposure	CVE-2016-3012	2024-11-21 11:49	2016-12-1	Show	GitHub Exploit DB Packet Storm

269147	5.4	MEDIUM Network	ibm	urbancode_deploy	Cross-site scripting (XSS) vulnerability in IBM UrbanCode Deploy 6.2.x before 6.2.1.2 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.	CWE-79 Cross-site Scripting	CVE-2016-2994	2024-11-21 11:49	2016-12-1	Show	GitHub Exploit DB Packet Storm

269148	5.4	MEDIUM Network	ibm	lotus_protector_for_mail_security	Multiple cross-site scripting (XSS) vulnerabilities in IBM Lotus Protector for Mail Security 2.8.0.0 through 2.8.1.0 before 2.8.1.0-22115 allow remote authenticated users to inject arbitrary web scri…	CWE-79 Cross-site Scripting	CVE-2016-2991	2024-11-21 11:49	2016-12-1	Show	GitHub Exploit DB Packet Storm

269149	5.4	MEDIUM Network	ibm	connections	Cross-site scripting (XSS) vulnerability in IBM Connections 5.0 before CR4 and 5.5 before CR1 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.	CWE-79 Cross-site Scripting	CVE-2016-2955	2024-11-21 11:49	2016-12-1	Show	GitHub Exploit DB Packet Storm

269150	7.8	HIGH Local	ibm	tivoli_monitoring	Stack-based buffer overflow in the ax Shared Libraries in the Agent in IBM Tivoli Monitoring (ITM) 6.2.2 before FP9, 6.2.3 before FP5, and 6.3.0 before FP2 on Linux and UNIX allows local users to gai…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-2946	2024-11-21 11:49	2016-12-1	Show	GitHub Exploit DB Packet Storm