Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 6, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
241251	7.5	危険	PHP Web Scripts	-	PHP Web Scripts Easy Banner Free の functions.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5166	2012-09-25 15:36	2006-10-5	Show	GitHub Exploit DB Packet Storm

241252	3.6	注意	IBM	-	Linux の IBM Informix Dynamic Server における任意のファイルへデータを追加される脆弱性	-	CVE-2006-5163	2012-09-25 15:36	2006-10-5	Show	GitHub Exploit DB Packet Storm

241253	5	警告	マイクロソフト	-	Microsoft Internet Explorer の wininet.dll におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-5162	2012-09-25 15:36	2006-10-5	Show	GitHub Exploit DB Packet Storm

241254	6.4	警告	IBM	-	IBM Client Security Password Manager におけるユーザ名などの資格情報を取得される脆弱性	-	CVE-2006-5161	2012-09-25 15:36	2006-10-5	Show	GitHub Exploit DB Packet Storm

241255	10	危険	マカフィー	-	McAfee ePolicy Orchestrator などにおけるバッファオーバーフローの脆弱性	-	CVE-2006-5156	2012-09-25 15:36	2006-10-5	Show	GitHub Exploit DB Packet Storm

241256	5	警告	Kerio Technologies	-	Sunbelt Kerio Personal Firewall の fwdrv.sys ドライバにおけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-5153	2012-09-25 15:36	2006-10-5	Show	GitHub Exploit DB Packet Storm

241257	6.8	警告	マイクロソフト	-	Microsoft Internet Explorer 6 におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-5152	2012-09-25 15:36	2006-10-5	Show	GitHub Exploit DB Packet Storm

241258	6.5	警告	openbiblio	-	OpenBiblio の reports system における SQL インジェクションの脆弱性	-	CVE-2006-5150	2012-09-25 15:36	2006-10-5	Show	GitHub Exploit DB Packet Storm

241259	7.5	危険	openbiblio	-	OpenBiblio におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2006-5149	2012-09-25 15:36	2006-10-5	Show	GitHub Exploit DB Packet Storm

241260	7.5	危険	olate	-	OlateDownload における SQL インジェクションの脆弱性	-	CVE-2006-5145	2012-09-25 15:36	2006-10-5	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 7, 2026, 4:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
265791	9.8	CRITICAL Network	mybb	merge_system mybb	SQL injection vulnerability in the users data handler in MyBB (aka MyBulletinBoard) before 1.8.8 and MyBB Merge System before 1.8.8 allows remote attackers to execute arbitrary SQL commands via unspe…	CWE-89 SQL Injection	CVE-2016-9416	2024-11-21 12:01	2017-02-1	Show	GitHub Exploit DB Packet Storm

265792	7.5	HIGH Network	mybb	merge_system mybb	MyBB (aka MyBulletinBoard) before 1.8.8 on Windows and MyBB Merge System before 1.8.8 on Windows allow remote attackers to overwrite arbitrary CSS files via vectors related to "style import."	CWE-284 Improper Access Control	CVE-2016-9415	2024-11-21 12:01	2017-02-1	Show	GitHub Exploit DB Packet Storm

265793	7.5	HIGH Network	mybb	mybb merge_system	MyBB (aka MyBulletinBoard) before 1.8.7 and MyBB Merge System before 1.8.7 allow remote attackers to obtain sensitive information by leveraging missing directory listing protection in upload director…	CWE-200 Information Exposure	CVE-2016-9414	2024-11-21 12:01	2017-02-1	Show	GitHub Exploit DB Packet Storm

265794	6.5	MEDIUM Network	mybb	mybb merge_system	The Admin control panel in MyBB (aka MyBulletinBoard) before 1.8.7 and MyBB Merge System before 1.8.7 allows remote attackers to conduct clickjacking attacks via unspecified vectors.	CWE-284 Improper Access Control	CVE-2016-9413	2024-11-21 12:01	2017-02-1	Show	GitHub Exploit DB Packet Storm

265795	9.8	CRITICAL Network	mybb	mybb merge_system	MyBB (aka MyBulletinBoard) before 1.8.7 and MyBB Merge System before 1.8.7 allow attackers to have unspecified impact via vectors related to low adminsid and sid entropy.	CWE-284 Improper Access Control	CVE-2016-9412	2024-11-21 12:01	2017-02-1	Show	GitHub Exploit DB Packet Storm

265796	5.3	MEDIUM Network	mybb	mybb merge_system	The Admin control panel in MyBB (aka MyBulletinBoard) before 1.8.7 and MyBB Merge System before 1.8.7 allows remote attackers to obtain the installation path via vectors involving sending mails.	CWE-200 Information Exposure	CVE-2016-9411	2024-11-21 12:01	2017-02-1	Show	GitHub Exploit DB Packet Storm

265797	7.5	HIGH Network	mybb	mybb merge_system	MyBB (aka MyBulletinBoard) before 1.8.7 and MyBB Merge System before 1.8.7 might allow remote attackers to obtain sensitive database information via vectors involving templates.	CWE-200 Information Exposure	CVE-2016-9410	2024-11-21 12:01	2017-02-1	Show	GitHub Exploit DB Packet Storm

265798	6.1	MEDIUM Network	mybb	mybb merge_system	Cross-site scripting (XSS) vulnerability in the Admin control panel in MyBB (aka MyBulletinBoard) before 1.8.7 and MyBB Merge System before 1.8.7 might allow remote attackers to inject arbitrary web …	CWE-79 Cross-site Scripting	CVE-2016-9409	2024-11-21 12:01	2017-02-1	Show	GitHub Exploit DB Packet Storm

265799	6.1	MEDIUM Network	mybb	mybb merge_system	Cross-site scripting (XSS) vulnerability in the Mod control panel in MyBB (aka MyBulletinBoard) before 1.8.7 and MyBB Merge System before 1.8.7 might allow remote attackers to inject arbitrary web sc…	CWE-79 Cross-site Scripting	CVE-2016-9408	2024-11-21 12:01	2017-02-1	Show	GitHub Exploit DB Packet Storm

265800	6.1	MEDIUM Network	mybb	mybb merge_system	Cross-site scripting (XSS) vulnerability in MyBB (aka MyBulletinBoard) before 1.8.7 and MyBB Merge System before 1.8.7 might allow remote attackers to inject arbitrary web script or HTML via vectors …	CWE-79 Cross-site Scripting	CVE-2016-9407	2024-11-21 12:01	2017-02-1	Show	GitHub Exploit DB Packet Storm