Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 20, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
241021	4.3	警告	m2scripts	-	M2Scripts の MySpace Sctipts Poll Creator におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-6136	2012-09-25 16:59	2007-11-27	Show	GitHub Exploit DB Packet Storm

241022	10	危険	irc services	-	IRC Services における脆弱性	CWE-noinfo 情報不足	CVE-2007-6123	2012-09-25 16:59	2007-11-26	Show	GitHub Exploit DB Packet Storm

241023	5	警告	irc services	-	IRC Services の encrypt.c の default_encrypt 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2007-6122	2012-09-25 16:59	2007-11-26	Show	GitHub Exploit DB Packet Storm

241024	5	警告	ihu	-	IHU におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2007-6103	2012-09-25 16:59	2007-11-23	Show	GitHub Exploit DB Packet Storm

241025	10	危険	ingate	-	Ingate Firewall および SIParator における不正な操作を実施される脆弱性	CWE-DesignError	CVE-2007-6099	2012-09-25 16:59	2007-11-21	Show	GitHub Exploit DB Packet Storm

241026	7.5	危険	ingate	-	Ingate Firewall および SIParator における有効なログイン認証情報を推測される脆弱性	CWE-DesignError	CVE-2007-6098	2012-09-25 16:59	2007-11-21	Show	GitHub Exploit DB Packet Storm

241027	10	危険	ingate	-	Ingate Firewall および SIParator の ICMP 実装における脆弱性	CWE-noinfo 情報不足	CVE-2007-6097	2012-09-25 16:59	2007-11-21	Show	GitHub Exploit DB Packet Storm

241028	5	警告	ingate	-	Ingate Firewall および SIParator における平文パスワードを読まれる脆弱性	CWE-255 証明書・パスワード管理	CVE-2007-6096	2012-09-25 16:59	2007-11-21	Show	GitHub Exploit DB Packet Storm

241029	4	警告	ingate	-	Ingate Firewall などの SIP コンポーネントにおけるその他のユーザ宛のメッセージを受信される脆弱性	CWE-200 CWE-DesignError	CVE-2007-6095	2012-09-25 16:59	2007-11-21	Show	GitHub Exploit DB Packet Storm

241030	4.3	警告	ingate	-	Ingate Firewall などの VPN コンポーネントにおけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2007-6094	2012-09-25 16:59	2007-11-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 20, 2026, 4:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
269651	8.8	HIGH Network	dropbear_ssh_project	dropbear_ssh	The dbclient in Dropbear SSH before 2016.74 allows remote attackers to execute arbitrary code via a crafted (1) -m or (2) -c argument.	CWE-284 Improper Access Control	CVE-2016-7408	2024-11-21 11:57	2017-03-4	Show	GitHub Exploit DB Packet Storm

269652	9.8	CRITICAL Network	dropbear_ssh_project	dropbear_ssh	The dropbearconvert command in Dropbear SSH before 2016.74 allows attackers to execute arbitrary code via a crafted OpenSSH key file.	CWE-20 Improper Input Validation	CVE-2016-7407	2024-11-21 11:57	2017-03-4	Show	GitHub Exploit DB Packet Storm

269653	9.8	CRITICAL Network	dropbear_ssh_project	dropbear_ssh	Format string vulnerability in Dropbear SSH before 2016.74 allows remote attackers to execute arbitrary code via format string specifiers in the (1) username or (2) host argument.	CWE-20 Improper Input Validation	CVE-2016-7406	2024-11-21 11:57	2017-03-4	Show	GitHub Exploit DB Packet Storm

269654	6.5	MEDIUM Network	matrixssl	matrixssl	TLS cipher suites with CBC mode in TLS 1.1 and 1.2 in MatrixSSL before 3.8.3 allow remote attackers to cause a denial of service (out-of-bounds read) via a crafted message.	CWE-125 Out-of-bounds Read	CVE-2016-6884	2024-11-21 11:57	2017-03-4	Show	GitHub Exploit DB Packet Storm

269655	5.9	MEDIUM Network	matrixssl	matrixssl	MatrixSSL before 3.8.3 configured with RSA Cipher Suites allows remote attackers to obtain sensitive information via a Bleichenbacher variant attack.	CWE-200 Information Exposure	CVE-2016-6883	2024-11-21 11:57	2017-03-4	Show	GitHub Exploit DB Packet Storm

269656	5.9	MEDIUM Network	matrixssl	matrixssl	MatrixSSL before 3.8.7, when the DHE_RSA based cipher suite is supported, makes it easier for remote attackers to obtain RSA private key information by conducting a Lenstra side-channel attack.	CWE-200 CWE-320 Information Exposure Key Management Errors	CVE-2016-6882	2024-11-21 11:57	2017-03-4	Show	GitHub Exploit DB Packet Storm

269657	4.7	MEDIUM Network	mantisbt	mantisbt	MantisBT before 1.3.1 and 2.x before 2.0.0-beta.2 uses a weak Content Security Policy when using the Gravatar plugin, which allows remote attackers to conduct cross-site scripting (XSS) attacks via u…	CWE-79 Cross-site Scripting	CVE-2016-7111	2024-11-21 11:57	2017-02-18	Show	GitHub Exploit DB Packet Storm

269658	5.5	MEDIUM Local	libav	libav	Stack-based buffer overflow in the aac_sync function in aac_parser.c in Libav before 11.5 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted file.	CWE-125 Out-of-bounds Read	CVE-2016-7393	2024-11-21 11:57	2017-02-16	Show	GitHub Exploit DB Packet Storm

269659	5.5	MEDIUM Local	autotrace_project	autotrace	Heap-based buffer overflow in the pstoedit_suffix_table_init function in output-pstoedit.c in AutoTrace 0.31.1 allows remote attackers to cause a denial of service (out-of-bounds write) via a crafted…	CWE-787 Out-of-bounds Write	CVE-2016-7392	2024-11-21 11:57	2017-02-16	Show	GitHub Exploit DB Packet Storm

269660	9.8	CRITICAL Network	exponentcms	exponent_cms	Multiple SQL injection vulnerabilities in Exponent CMS before 2.4.0 allow remote attackers to execute arbitrary SQL commands via the (1) id parameter in an activate_address address controller action,…	CWE-89 SQL Injection	CVE-2016-7400	2024-11-21 11:57	2017-02-8	Show	GitHub Exploit DB Packet Storm