Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 6, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
240861	6.8	警告	mxbb	-	mxBB 用の mx_charts における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-6650	2012-09-25 15:36	2006-12-19	Show	GitHub Exploit DB Packet Storm

240862	6.8	警告	hypervm	-	HyperVM の display.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-6649	2012-09-25 15:36	2006-12-19	Show	GitHub Exploit DB Packet Storm

240863	7.5	危険	mxbb	-	mxBB 用の mx_links における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-6645	2012-09-25 15:36	2006-12-19	Show	GitHub Exploit DB Packet Storm

240864	6.8	警告	mxbb	-	mxBB 用の mx_meeting における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-6644	2012-09-25 15:36	2006-12-19	Show	GitHub Exploit DB Packet Storm

240865	6.8	警告	omniture	-	Omniture SiteCatalyst におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-6640	2012-09-25 15:36	2006-12-19	Show	GitHub Exploit DB Packet Storm

240866	5	警告	IBM	-	IBM DB2 におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-6638	2012-09-25 15:36	2006-12-19	Show	GitHub Exploit DB Packet Storm

240867	7.5	危険	jumbacms	-	JumbaCMS の includes/functions.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-6635	2012-09-25 15:36	2006-12-18	Show	GitHub Exploit DB Packet Storm

240868	7.5	危険	Mambo Foundation	-	Mambo 用の extcalendar コンポーネントにおける PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-6634	2012-09-25 15:36	2006-12-18	Show	GitHub Exploit DB Packet Storm

240869	6.8	警告	ibiblio	-	osprey の lib/xml/oai/GetRecord.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-6631	2012-09-25 15:36	2006-12-18	Show	GitHub Exploit DB Packet Storm

240870	7.5	危険	ibiblio	-	osprey の ListRecords.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-6630	2012-09-25 15:36	2006-12-18	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 6, 2026, 4:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
269271	6.5	MEDIUM Network	redhat	enterprise_linux_desktop enterprise_linux_workstation ceph_storage_osd ceph_storage_mon enterprise_linux_for_scientific_computing enterprise_linux_server ceph	The handle_command function in mon/Monitor.cc in Ceph allows remote authenticated users to cause a denial of service (segmentation fault and ceph monitor crash) via an (1) empty or (2) crafted prefix.	CWE-20 Improper Input Validation	CVE-2016-5009	2024-11-21 11:53	2016-07-13	Show	GitHub Exploit DB Packet Storm

269272	7.8	HIGH Local	gimp	gimp	Use-after-free vulnerability in the xcf_load_image function in app/xcf/xcf-load.c in GIMP allows remote attackers to cause a denial of service (program crash) or possibly execute arbitrary code via a…	CWE-416 Use After Free	CVE-2016-4994	2024-11-21 11:53	2016-07-13	Show	GitHub Exploit DB Packet Storm

269273	7.5	HIGH Network	redhat canonical	openstack openstack_ironic	The ironic-api service in OpenStack Ironic before 4.2.5 (Liberty) and 5.x before 5.1.2 (Mitaka) allows remote attackers to obtain sensitive information about a registered node by leveraging knowledge…	CWE-200 Information Exposure	CVE-2016-4985	2024-11-21 11:53	2016-07-13	Show	GitHub Exploit DB Packet Storm

269274	7.8	HIGH Local	linecorp	line line_installer	Untrusted search path vulnerability in LINE and LINE Installer 4.7.0 and earlier on Windows allows local users to gain privileges via a Trojan horse DLL in an unspecified directory.	NVD-CWE-Other	CVE-2016-4831	2024-11-21 11:53	2016-07-12	Show	GitHub Exploit DB Packet Storm

269275	7.5	HIGH Network	apache	http_server	The Apache HTTP Server 2.4.18 through 2.4.20, when mod_http2 and mod_ssl are enabled, does not properly recognize the "SSLVerifyClient require" directive for HTTP/2 request authorization, which allow…	CWE-284 Improper Access Control	CVE-2016-4979	2024-11-21 11:53	2016-07-6	Show	GitHub Exploit DB Packet Storm

269276	6.1	MEDIUM Network	phpmyadmin opensuse	phpmyadmin opensuse	Cross-site scripting (XSS) vulnerability in phpMyAdmin 4.4.x before 4.4.15.6 and 4.6.x before 4.6.2 allows remote attackers to inject arbitrary web script or HTML via special characters that are mish…	CWE-79 Cross-site Scripting	CVE-2016-5099	2024-11-21 11:53	2016-07-5	Show	GitHub Exploit DB Packet Storm

269277	5.3	MEDIUM Network	phpmyadmin opensuse	phpmyadmin opensuse	Directory traversal vulnerability in libraries/error_report.lib.php in phpMyAdmin before 4.6.2-prerelease allows remote attackers to determine the existence of arbitrary files by triggering an error.	CWE-22 Path Traversal	CVE-2016-5098	2024-11-21 11:53	2016-07-5	Show	GitHub Exploit DB Packet Storm

269278	5.3	MEDIUM Network	opensuse phpmyadmin	opensuse phpmyadmin	phpMyAdmin before 4.6.2 places tokens in query strings and does not arrange for them to be stripped before external navigation, which allows remote attackers to obtain sensitive information by readin…	CWE-200 Information Exposure	CVE-2016-5097	2024-11-21 11:53	2016-07-5	Show	GitHub Exploit DB Packet Storm

269279	7.5	HIGH Network	ntp oracle novell suse opensuse	ntp solaris suse_manager linux_enterprise_server openstack_cloud manager_proxy linux_enterprise_desktop leap opensuse	ntpd in NTP before 4.2.8p8 allows remote attackers to cause a denial of service (daemon crash) via a crypto-NAK packet. NOTE: this vulnerability exists because of an incorrect fix for CVE-2016-1547.	CWE-476 NULL Pointer Dereference	CVE-2016-4957	2024-11-21 11:53	2016-07-5	Show	GitHub Exploit DB Packet Storm

269280	5.3	MEDIUM Network	ntp oracle novell suse opensuse siemens	ntp solaris suse_manager linux_enterprise_server openstack_cloud manager_proxy linux_enterprise_desktop leap opensuse simatic_net_cp_443-1_opc_ua_firmware	ntpd in NTP 4.x before 4.2.8p8 allows remote attackers to cause a denial of service (interleaved-mode transition and time change) via a spoofed broadcast packet. NOTE: this vulnerability exists beca…	NVD-CWE-noinfo	CVE-2016-4956	2024-11-21 11:53	2016-07-5	Show	GitHub Exploit DB Packet Storm