Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 8, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
241321 7.5 危険 neosys - Neon WebMail の updateuser サーブレットにおける任意のユーザの情報を変更される脆弱性 - CVE-2006-4954 2012-09-25 15:35 2006-09-23 Show GitHub Exploit DB Packet Storm
241322 7.5 危険 neosys - Neon WebMail における SQL インジェクションの脆弱性 - CVE-2006-4953 2012-09-25 15:35 2006-09-23 Show GitHub Exploit DB Packet Storm
241323 7.5 危険 neosys - Neon WebMail の updatemail サーブレットにおける電子メールメッセージを移動される脆弱性 - CVE-2006-4952 2012-09-25 15:35 2006-09-23 Show GitHub Exploit DB Packet Storm
241324 7.5 危険 neosys - Neon WebMail における任意の JSP コードを実行される脆弱性 - CVE-2006-4951 2012-09-25 15:35 2006-09-23 Show GitHub Exploit DB Packet Storm
241325 5 警告 Moodle - Moodle の course/jumpto.php における重要な情報を取得される脆弱性 - CVE-2006-4943 2012-09-25 15:35 2006-09-12 Show GitHub Exploit DB Packet Storm
241326 4.6 警告 Moodle - Moodle における LaTeX 出力ファイルなどを dataroot ディレクトリの最上位レベルに書き込まれる脆弱性 - CVE-2006-4942 2012-09-25 15:35 2006-09-12 Show GitHub Exploit DB Packet Storm
241327 4.3 警告 Moodle - Moodle におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-4941 2012-09-25 15:35 2006-09-12 Show GitHub Exploit DB Packet Storm
241328 5 警告 Moodle - Moodle の login/forgot_password.php における重要な情報を取得される脆弱性 - CVE-2006-4940 2012-09-25 15:35 2006-09-12 Show GitHub Exploit DB Packet Storm
241329 5 警告 Moodle - Moodle の backup/backup_scheduled.php におけるパス名を取得される脆弱性 - CVE-2006-4939 2012-09-25 15:35 2006-09-12 Show GitHub Exploit DB Packet Storm
241330 4 警告 Moodle - Moodle の help.php におけるエラーメッセージ内のパスを取得される脆弱性 - CVE-2006-4938 2012-09-25 15:35 2006-09-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 8, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
265761 9.8 CRITICAL
Network 		dell sonicwall_secure_remote_access_server The SonicWall Secure Remote Access server (version 8.1.0.2-14sv) is vulnerable to two Remote Command Injection vulnerabilities in its web administrative interface. These vulnerabilities occur in the … CWE-77
Command Injection 		CVE-2016-9682 2024-11-21 12:01 2017-02-22 Show GitHub Exploit DB Packet Storm
265762 7.8 HIGH
Local 		libming libming Heap-based buffer overflow in the parseSWF_RGBA function in parser.c in the listswf tool in libming 0.4.7 allows remote attackers to have unspecified impact via a crafted SWF file. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-9831 2024-11-21 12:01 2017-02-17 Show GitHub Exploit DB Packet Storm
265763 7.8 HIGH
Local 		libming libming Heap-based buffer overflow in the parseSWF_DEFINEFONT function in parser.c in the listswf tool in libming 0.4.7 allows remote attackers to have unspecified impact via a crafted SWF file. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-9829 2024-11-21 12:01 2017-02-17 Show GitHub Exploit DB Packet Storm
265764 5.5 MEDIUM
Local 		libming libming The dumpBuffer function in read.c in the listswf tool in libming 0.4.7 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted SWF file. CWE-476
 NULL Pointer Dereference 		CVE-2016-9828 2024-11-21 12:01 2017-02-17 Show GitHub Exploit DB Packet Storm
265765 5.5 MEDIUM
Local 		libming libming The _iprintf function in outputtxt.c in the listswf tool in libming 0.4.7 allows remote attackers to cause a denial of service (buffer over-read) via a crafted SWF file. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-9827 2024-11-21 12:01 2017-02-17 Show GitHub Exploit DB Packet Storm
265766 9.1 CRITICAL
Network 		simplesamlphp simplesamlphp
saml2 		The validateSignature method in the SAML2\Utils class in SimpleSAMLphp before 1.14.10 and simplesamlphp/saml2 library before 1.9.1, 1.10.x before 1.10.3, and 2.x before 2.3.3 allows remote attackers … CWE-399
 Resource Management Errors 		CVE-2016-9814 2024-11-21 12:01 2017-02-17 Show GitHub Exploit DB Packet Storm
265767 5.5 MEDIUM
Local 		imagemagick imagemagick Heap-based buffer overflow in the IsPixelGray function in MagickCore/pixel-accessor.h in ImageMagick 7.0.3.8 allows remote attackers to cause a denial of service (out-of-bounds heap read) via a craft… CWE-119
CWE-125
Incorrect Access of Indexable Resource ('Range Error') 
Out-of-bounds Read 		CVE-2016-9773 2024-11-21 12:01 2017-02-17 Show GitHub Exploit DB Packet Storm
265768 7.5 HIGH
Local 		citrix xenserver The (1) ioport_read and (2) ioport_write functions in Xen, when qemu is used as a device model within Xen, might allow local x86 HVM guest OS administrators to gain qemu process privileges via vector… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-9637 2024-11-21 12:01 2017-02-17 Show GitHub Exploit DB Packet Storm
265769 9.1 CRITICAL
Network 		ibm websphere_message_broker
integration_bus 		IBM Integration Bus 9.0 and 10.0 and WebSphere Message Broker SOAP FLOWS is vulnerable to a denial of service, caused by an XML External Entity Injection (XXE) error when processing XML data. A remot… CWE-611
XXE 		CVE-2016-9706 2024-11-21 12:01 2017-02-16 Show GitHub Exploit DB Packet Storm
265770 7.8 HIGH
Local 		jasper_project
debian
redhat 		jasper
debian_linux
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
enterprise_linux_server_tus
enterprise_linux_server_aus
enterprise_linux_eus 		Stack-based buffer overflow in the jpc_tsfb_getbands2 function in jpc_tsfb.c in JasPer before 1.900.30 allows remote attackers to have unspecified impact via a crafted image. CWE-787
 Out-of-bounds Write 		CVE-2016-9560 2024-11-21 12:01 2017-02-16 Show GitHub Exploit DB Packet Storm