Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 5, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
240991 7.5 危険 midicart software - MidiCart ASP Shopping Cart などにおける SQL インジェクションの脆弱性 - CVE-2006-6209 2012-09-25 15:36 2006-11-30 Show GitHub Exploit DB Packet Storm
240992 5 警告 krishan - Mambo の flyspray コンポーネントにおけるディレクトリトラバーサルの脆弱性 - CVE-2006-6203 2012-09-25 15:36 2006-11-30 Show GitHub Exploit DB Packet Storm
240993 7.5 危険 nukeai - NukeAI モジュールの modules/NukeAI/util.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-6202 2012-09-25 15:36 2006-11-30 Show GitHub Exploit DB Packet Storm
240994 7.5 危険 Neocrome - Neocrome Seditio の system/core/users/users.profile.inc.php における SQL インジェクションの脆弱性 - CVE-2006-6177 2012-09-25 15:36 2006-11-30 Show GitHub Exploit DB Packet Storm
240995 7.5 危険 Horde - Horde Kronolith の lib/FBView.php におけるディレクトリトラバーサルの脆弱性 - CVE-2006-6175 2012-09-25 15:36 2006-11-30 Show GitHub Exploit DB Packet Storm
240996 7.5 危険 MPlayer project
Xine		 - xine/xine-lib などの Real Media 入力プラグインにおけるバッファオーバーフローの脆弱性 - CVE-2006-6172 2012-09-25 15:36 2006-11-30 Show GitHub Exploit DB Packet Storm
240997 7.2 危険 OpenBSD - OpenBSD の ELF ld.so における LD_PRELOAD などの危険な変数を受け渡される脆弱性 - CVE-2006-6164 2012-09-25 15:36 2006-11-19 Show GitHub Exploit DB Packet Storm
240998 7.5 危険 michaelis freunde - ContentNow の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2006-6157 2012-09-25 15:36 2006-11-28 Show GitHub Exploit DB Packet Storm
240999 4.3 警告 Hscripts - HSRS の auth/message.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-6156 2012-09-25 15:36 2006-11-28 Show GitHub Exploit DB Packet Storm
241000 7.5 危険 Hscripts - HSRS の addrating.php における SQL インジェクションの脆弱性 - CVE-2006-6155 2012-09-25 15:36 2006-11-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 6, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
266101 5.4 MEDIUM
Network 		ibm kenexa_lms_on_cloud IBM Kenexa LMS on Cloud 13.1 and 13.2 - 13.2.4 could allow a remote attacker to hijack the clicking action of the victim. By persuading a victim to visit a malicious Web site, a remote attacker could… CWE-254
 7PK - Security Features 		CVE-2016-8911 2024-11-21 12:00 2017-02-2 Show GitHub Exploit DB Packet Storm
266102 8.6 HIGH
Network 		cisco asa_cx_context-aware_security_software A vulnerability in the data plane IP fragment handler of the Cisco Adaptive Security Appliance (ASA) CX Context-Aware Security module could allow an unauthenticated, remote attacker to cause the CX m… CWE-399
 Resource Management Errors 		CVE-2016-9225 2024-11-21 12:00 2017-02-2 Show GitHub Exploit DB Packet Storm
266103 5.4 MEDIUM
Network 		tenable nessus Cross-site scripting (XSS) vulnerability in Tenable Nessus before 6.9 allows remote authenticated users to inject arbitrary web script or HTML via vectors related to handling of .nessus files. CWE-79
Cross-site Scripting 		CVE-2016-9260 2024-11-21 12:00 2017-02-1 Show GitHub Exploit DB Packet Storm
266104 5.5 MEDIUM
Local 		joyent smartos An exploitable denial of service exists in the Joyent SmartOS 20161110T013148Z Hyprlofs file system. The vulnerability is present in the Ioctl system call with the command HYPRLOFS_ADD_ENTRIES. An at… CWE-400
 Uncontrolled Resource Consumption 		CVE-2016-9039 2024-11-21 12:00 2017-02-1 Show GitHub Exploit DB Packet Storm
266105 7.5 HIGH
Network 		f5 big-ip_local_traffic_manager
big-ip_application_acceleration_manager
big-ip_advanced_firewall_manager
big-ip_analytics
big-ip_access_policy_manager
big-ip_application_security_manager<… 		An undisclosed traffic pattern received by a BIG-IP Virtual Server with TCP Fast Open enabled may cause the Traffic Management Microkernel (TMM) to restart, resulting in a Denial-of-Service (DoS). CWE-20
 Improper Input Validation  		CVE-2016-9249 2024-11-21 12:00 2017-02-1 Show GitHub Exploit DB Packet Storm
266106 9.8 CRITICAL
Network 		botan_project botan In Botan 1.8.0 through 1.11.33, when decoding BER data an integer overflow could occur, which would cause an incorrect length field to be computed. Some API callers may use the returned (incorrect an… CWE-190
 Integer Overflow or Wraparound 		CVE-2016-9132 2024-11-21 12:00 2017-01-31 Show GitHub Exploit DB Packet Storm
266107 6.1 MEDIUM
Network 		moinmo
canonical
debian 		moinmoin
ubuntu_linux
debian_linux 		Cross-site scripting (XSS) vulnerability in the link dialogue in GUI editor in MoinMoin before 1.9.8 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. CWE-79
Cross-site Scripting 		CVE-2016-9119 2024-11-21 12:00 2017-01-31 Show GitHub Exploit DB Packet Storm
266108 5.5 MEDIUM
Local 		imagemagick imagemagick Heap overflow in the WaveletDenoiseImage function in MagickCore/fx.c in ImageMagick before 6.9.6-4 and 7.x before 7.0.3-6 allows remote attackers to cause a denial of service (crash) via a crafted im… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-9298 2024-11-21 12:00 2017-01-28 Show GitHub Exploit DB Packet Storm
266109 9.8 CRITICAL
Network 		aerospike database_server An exploitable stack-based buffer overflow vulnerability exists in the querying functionality of Aerospike Database Server 3.10.0.3. A specially crafted packet can cause a stack-based buffer overflow… CWE-787
 Out-of-bounds Write 		CVE-2016-9054 2024-11-21 12:00 2017-01-27 Show GitHub Exploit DB Packet Storm
266110 9.8 CRITICAL
Network 		aerospike database_server An exploitable stack-based buffer overflow vulnerability exists in the querying functionality of Aerospike Database Server 3.10.0.3. A specially crafted packet can cause a stack-based buffer overflow… CWE-787
 Out-of-bounds Write 		CVE-2016-9052 2024-11-21 12:00 2017-01-27 Show GitHub Exploit DB Packet Storm