Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 2, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
240941 5 警告 マイクロソフト - System Information ActiveX control におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-4627 2012-09-25 15:35 2006-09-7 Show GitHub Exploit DB Packet Storm
240942 5.1 警告 John Lim - Intechnic In-link の John Lim ADOdb における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4618 2012-09-25 15:35 2006-09-6 Show GitHub Exploit DB Packet Storm
240943 5 警告 MailEnable - MailEnable の SMTP サービスにおけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-4616 2012-09-25 15:35 2006-09-6 Show GitHub Exploit DB Packet Storm
240944 7.5 危険 john andersson - ZIXForum の ReplyNew.asp における SQL インジェクションの脆弱性 - CVE-2006-4612 2012-09-25 15:35 2006-09-6 Show GitHub Exploit DB Packet Storm
240945 6.8 警告 longino - Longino Jacome php-Revista におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-4608 2012-09-25 15:35 2006-09-6 Show GitHub Exploit DB Packet Storm
240946 7.5 危険 longino - Longino Jacome php-Revista の admin/index.php における認証コントロールを回避される脆弱性 - CVE-2006-4607 2012-09-25 15:35 2006-09-6 Show GitHub Exploit DB Packet Storm
240947 7.5 危険 longino - Longino Jacome php-Revista における SQL インジェクションの脆弱性 - CVE-2006-4606 2012-09-25 15:35 2006-09-6 Show GitHub Exploit DB Packet Storm
240948 7.5 危険 longino - Longino Jacome php-Revista の index.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4605 2012-09-25 15:35 2006-09-6 Show GitHub Exploit DB Packet Storm
240949 7.5 危険 lanifex - Lanifex DMO の LFXlib/access_manager.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4604 2012-09-25 15:35 2006-09-6 Show GitHub Exploit DB Packet Storm
240950 7.5 危険 NCH Software - NCH Swift Sound Web Dictate における認証を回避される脆弱性 - CVE-2006-4603 2012-09-25 15:35 2006-09-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
266191 4.0 MEDIUM
Network 		siemens scalance_m-800_firmware
scalance_s615_firmware 		The integrated web server on Siemens SCALANCE M-800 and S615 modules with firmware before 4.02 does not set the secure flag for the session cookie in an https session, which makes it easier for remot… CWE-200
Information Exposure 		CVE-2016-7090 2024-11-21 11:57 2016-09-29 Show GitHub Exploit DB Packet Storm
266192 8.1 HIGH
Network 		microsoft azure_active_directory_passport The Microsoft Azure Active Directory Passport (aka Passport-Azure-AD) library 1.x before 1.4.6 and 2.x before 2.0.1 for Node.js does not recognize the validateIssuer setting, which allows remote atta… CWE-287
Improper Authentication 		CVE-2016-7191 2024-11-21 11:57 2016-09-29 Show GitHub Exploit DB Packet Storm
266193 7.5 HIGH
Network 		irssi
debian
canonical 		irssi
debian_linux
ubuntu_linux 		The format_send_to_gui function in the format parsing code in Irssi before 0.8.20 allows remote attackers to cause a denial of service (heap corruption and crash) via vectors involving the length of … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-7045 2024-11-21 11:57 2016-09-28 Show GitHub Exploit DB Packet Storm
266194 7.5 HIGH
Network 		irssi
debian
canonical 		irssi
debian_linux
ubuntu_linux 		The unformat_24bit_color function in the format parsing code in Irssi before 0.8.20, when compiled with true-color enabled, allows remote attackers to cause a denial of service (heap corruption and c… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-7044 2024-11-21 11:57 2016-09-28 Show GitHub Exploit DB Packet Storm
266195 7.5 HIGH
Network 		novell
openssl
nodejs 		suse_linux_enterprise_module_for_web_scripting
openssl
node.js 		crypto/x509/x509_vfy.c in OpenSSL 1.0.2i allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) by triggering a CRL operation. CWE-476
 NULL Pointer Dereference 		CVE-2016-7052 2024-11-21 11:57 2016-09-27 Show GitHub Exploit DB Packet Storm
266196 9.8 CRITICAL
Network 		adobe digital_editions Use-after-free vulnerability in Adobe Digital Editions before 4.5.2 allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2016-4263. CWE-416
 Use After Free 		CVE-2016-6980 2024-11-21 11:57 2016-09-27 Show GitHub Exploit DB Packet Storm
266197 5.4 MEDIUM
Network 		alienvault open_source_security_information_and_event_management
unified_security_management 		Cross-site scripting (XSS) vulnerability in AlienVault OSSIM before 5.3 and USM before 5.3 allows remote attackers to inject arbitrary web script or HTML via the back parameter to ossim/conf/reload.p… CWE-79
Cross-site Scripting 		CVE-2016-6913 2024-11-21 11:57 2016-09-27 Show GitHub Exploit DB Packet Storm
266198 6.5 MEDIUM
Network 		huawei ar_firmware
netengine_16ex_firmware 		Format string vulnerability in Huawei AR100, AR120, AR150, AR200, AR500, AR550, AR1200, AR2200, AR2500, AR3200, and AR3600 routers with software before V200R007C00SPC900 and NetEngine 16EX routers wi… CWE-20
 Improper Input Validation  		CVE-2016-6901 2024-11-21 11:57 2016-09-27 Show GitHub Exploit DB Packet Storm
266199 7.5 HIGH
Network 		canonical
file_roller_project 		ubuntu_linux
file_roller 		The _g_file_remove_directory function in file-utils.c in File Roller 3.5.4 through 3.20.2 allows remote attackers to delete arbitrary files via a symlink attack on a folder in an archive. CWE-20
 Improper Input Validation  		CVE-2016-7162 2024-11-21 11:57 2016-09-27 Show GitHub Exploit DB Packet Storm
266200 5.9 MEDIUM
Network 		inspircd
debian 		inspircd
debian_linux 		The m_sasl module in InspIRCd before 2.0.23, when used with a service that supports SASL_EXTERNAL authentication, allows remote attackers to spoof certificate fingerprints and consequently log in as … CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-7142 2024-11-21 11:57 2016-09-27 Show GitHub Exploit DB Packet Storm