Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 20, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
240941 5.5 警告 hosting controller - Hosting Controller における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2007-6502 2012-09-25 16:59 2007-12-20 Show GitHub Exploit DB Packet Storm
240942 5.5 警告 hosting controller - Hosting Controller における "支払方法" を有効または無効にされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-6501 2012-09-25 16:59 2007-12-20 Show GitHub Exploit DB Packet Storm
240943 4.9 警告 hosting controller - Hosting Controller における "ゲートウェイ情報" を削除される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-6500 2012-09-25 16:59 2007-12-20 Show GitHub Exploit DB Packet Storm
240944 5.5 警告 hosting controller - Hosting Controller における任意のアカウントの FrontPage 拡張をアンインストールされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-6499 2012-09-25 16:59 2007-12-20 Show GitHub Exploit DB Packet Storm
240945 7.5 危険 hosting controller - Hosting Controller における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-6498 2012-09-25 16:59 2007-12-20 Show GitHub Exploit DB Packet Storm
240946 7.5 危険 hosting controller - Hosting Controller における任意のユーザプロファイルを変更される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-6497 2012-09-25 16:59 2007-12-20 Show GitHub Exploit DB Packet Storm
240947 6.8 警告 hosting controller - Hosting Controller における任意のユーザを登録される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-6496 2012-09-25 16:59 2007-12-20 Show GitHub Exploit DB Packet Storm
240948 6.5 警告 hosting controller - Hosting Controller の inc_newuser.asp におけるディレクトリ名 db のパーミッションを変更される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-6495 2012-09-25 16:59 2007-12-20 Show GitHub Exploit DB Packet Storm
240949 10 危険 hosting controller - Hosting Controller におけるログインアクセスを取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2007-6494 2012-09-25 16:59 2007-12-20 Show GitHub Exploit DB Packet Storm
240950 10 危険 imesh.com - iMesh の IMWeb.dll における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2007-6493 2012-09-25 16:59 2007-12-20 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 20, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
269631 7.8 HIGH
Local 		nvidia shield_tablet_firmware
shield_tablet_tk1_firmware
shield_tv_firmware
video_driver 		Stack-based buffer overflow in nvhost_job.c in the NVIDIA video driver for Android, Shield TV before OTA 3.3, Shield Table before OTA 4.4, and Shield Table TK1 before OTA 1.5. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-6915 2024-11-21 11:57 2017-04-25 Show GitHub Exploit DB Packet Storm
269632 7.8 HIGH
Local 		nvidia shield_tablet_firmware
shield_tablet_tk1_firmware
shield_tv_firmware
video_driver 		Buffer overflow in nvhost_job.c in the NVIDIA video driver for Android, Shield TV before OTA 3.3, Shield Table before OTA 4.4, and Shield Table TK1 before OTA 1.5. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-6917 2024-11-21 11:57 2017-04-25 Show GitHub Exploit DB Packet Storm
269633 7.8 HIGH
Local 		nvidia shield_tablet_firmware
shield_tablet_tk1_firmware
shield_tv_firmware
video_driver 		Integer overflow in nvhost_job.c in the NVIDIA video driver for Android, Shield TV before OTA 3.3, Shield Table before OTA 4.4, and Shield Table TK1 before OTA 1.5 allows local users to cause a denia… CWE-190
 Integer Overflow or Wraparound 		CVE-2016-6916 2024-11-21 11:57 2017-04-25 Show GitHub Exploit DB Packet Storm
269634 9.9 CRITICAL
Network 		lshell_project lshell lshell 0.9.16 allows remote authenticated users to break out of a limited shell and execute arbitrary commands. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-6903 2024-11-21 11:57 2017-04-25 Show GitHub Exploit DB Packet Storm
269635 9.9 CRITICAL
Network 		lshell_project lshell lshell 0.9.16 allows remote authenticated users to break out of a limited shell and execute arbitrary commands. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-6902 2024-11-21 11:57 2017-04-25 Show GitHub Exploit DB Packet Storm
269636 4.6 MEDIUM
Physics 		redhat quickstart_cloud_installer The web interface in Red Hat QuickStart Cloud Installer (QCI) 1.0 does not mask passwords fields, which allows physically proximate attackers to obtain sensitive password information by reading the d… CWE-200
Information Exposure 		CVE-2016-7060 2024-11-21 11:57 2017-04-15 Show GitHub Exploit DB Packet Storm
269637 8.6 HIGH
Network 		fasterxml jackson-dataformat-xml XmlMapper in the Jackson XML dataformat component (aka jackson-dataformat-xml) before 2.7.8 and 2.8.x before 2.8.4 allows remote attackers to conduct server-side request forgery (SSRF) attacks via ve… CWE-611
CWE-918
XXE
Server-Side Request Forgery (SSRF)  		CVE-2016-7051 2024-11-21 11:57 2017-04-15 Show GitHub Exploit DB Packet Storm
269638 7.0 HIGH
Local 		todd_miller sudo sudo_noexec.so in Sudo before 1.8.15 on Linux might allow local users to bypass intended noexec command restrictions via an application that calls the (1) system or (2) popen function. CWE-284
Improper Access Control 		CVE-2016-7032 2024-11-21 11:57 2017-04-15 Show GitHub Exploit DB Packet Storm
269639 7.5 HIGH
Network 		botan_project botan The X509_Certificate::allowed_usage function in botan 1.11.x before 1.11.31 might allow attackers to have unspecified impact by leveraging a call with more than one Key_Usage set in the enum value. CWE-320
 Key Management Errors 		CVE-2016-6879 2024-11-21 11:57 2017-04-11 Show GitHub Exploit DB Packet Storm
269640 9.8 CRITICAL
Network 		botan_project botan The Curve25519 code in botan before 1.11.31, on systems without a native 128-bit integer type, might allow attackers to have unspecified impact via vectors related to undefined behavior, as demonstra… CWE-20
 Improper Input Validation  		CVE-2016-6878 2024-11-21 11:57 2017-04-11 Show GitHub Exploit DB Packet Storm