Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 9, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
241821	7.5	危険	otscms	-	OTSCMS の OTSCMS/OTSCMS.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5548	2012-09-25 15:36	2006-10-26	Show	GitHub Exploit DB Packet Storm

241822	7.5	危険	otscms	-	OTSCMS の OTSCMS/OTSCMS.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5547	2012-09-25 15:36	2006-10-26	Show	GitHub Exploit DB Packet Storm

241823	5.1	警告	otscms	-	OTSCMS の OTSCMS/OTSCMS.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5546	2012-09-25 15:36	2006-10-26	Show	GitHub Exploit DB Packet Storm

241824	6.4	警告	マイクロソフト	-	Microsoft Internet Explorer 7 におけるフィッシング攻撃を実行される脆弱性	-	CVE-2006-5544	2012-09-25 15:36	2006-10-26	Show	GitHub Exploit DB Packet Storm

241825	5.1	警告	pgosd	-	PGOSD の PHP Generator における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5543	2012-09-25 15:36	2006-10-26	Show	GitHub Exploit DB Packet Storm

241826	7.5	危険	intelimen	-	Intelimen InteliEditor における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5527	2012-09-25 15:36	2006-10-26	Show	GitHub Exploit DB Packet Storm

241827	7.5	危険	johannes erdfelt	-	Johannes Erdfelt Kawf における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5522	2012-09-25 15:36	2006-10-26	Show	GitHub Exploit DB Packet Storm

241828	7.5	危険	net-dns.org	-	Net_DNS の DNS/RR.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5521	2012-09-25 15:36	2006-10-26	Show	GitHub Exploit DB Packet Storm

241829	6.8	警告	mambweather	-	Mambo 用の MambWeather コンポーネントにおける PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2006-5519	2012-09-25 15:36	2006-10-26	Show	GitHub Exploit DB Packet Storm

241830	4.3	警告	phpadsnew phppgads	-	phpAdsNew などの製品で使用される lib-history.inc.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-5515	2012-09-25 15:36	2006-10-26	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 10, 2026, 5 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
267041	5.4	MEDIUM Network	ibm	websphere_application_server	IBM WebSphere Application Server is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality poten…	CWE-79 Cross-site Scripting	CVE-2016-8934	2024-11-21 12:00	2017-02-2	Show	GitHub Exploit DB Packet Storm

267042	6.1	MEDIUM Network	ibm	web_content_manager_production_analytics websphere_portal	Exphox WebRadar is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to…	CWE-79 Cross-site Scripting	CVE-2016-8922	2024-11-21 12:00	2017-02-2	Show	GitHub Exploit DB Packet Storm

267043	8.8	HIGH Network	ibm	filenet_workplace_xt	IBM FileNet WorkPlace XT could allow a remote attacker to upload arbitrary files, which could allow the attacker to execute arbitrary code on the vulnerable server.	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2016-8921	2024-11-21 12:00	2017-02-2	Show	GitHub Exploit DB Packet Storm

267044	5.4	MEDIUM Network	ibm	kenexa_lms_on_cloud	IBM Kenexa LMS on Cloud 13.1 and 13.2 - 13.2.4 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended funct…	CWE-79 Cross-site Scripting	CVE-2016-8920	2024-11-21 12:00	2017-02-2	Show	GitHub Exploit DB Packet Storm

267045	5.9	MEDIUM Network	ibm	integration_bus	IBM Integration Bus, under non default configurations, could allow a remote user to authenticate without providing valid credentials.	CWE-255 Credentials Management	CVE-2016-8918	2024-11-21 12:00	2017-02-2	Show	GitHub Exploit DB Packet Storm

267046	6.5	MEDIUM Network	ibm	kenexa_lms_on_cloud	IBM Kenexa LMS on Cloud 13.1 and 13.2 - 13.2.4 could allow a remote attacker to traverse directories on the system. An attacker could send a specially-crafted URL request containing "dot dot" sequenc…	CWE-22 Path Traversal	CVE-2016-8913	2024-11-21 12:00	2017-02-2	Show	GitHub Exploit DB Packet Storm

267047	4.3	MEDIUM Network	ibm	kenexa_lms_on_cloud	IBM Kenexa LMS on Cloud 13.1 and 13.2 - 13.2.4 stores potentially sensitive information in in log files that could be read by an authenticated user.	CWE-532 Inclusion of Sensitive Information in Log Files	CVE-2016-8912	2024-11-21 12:00	2017-02-2	Show	GitHub Exploit DB Packet Storm

267048	5.4	MEDIUM Network	ibm	kenexa_lms_on_cloud	IBM Kenexa LMS on Cloud 13.1 and 13.2 - 13.2.4 could allow a remote attacker to hijack the clicking action of the victim. By persuading a victim to visit a malicious Web site, a remote attacker could…	CWE-254 7PK - Security Features	CVE-2016-8911	2024-11-21 12:00	2017-02-2	Show	GitHub Exploit DB Packet Storm

267049	8.6	HIGH Network	cisco	asa_cx_context-aware_security_software	A vulnerability in the data plane IP fragment handler of the Cisco Adaptive Security Appliance (ASA) CX Context-Aware Security module could allow an unauthenticated, remote attacker to cause the CX m…	CWE-399 Resource Management Errors	CVE-2016-9225	2024-11-21 12:00	2017-02-2	Show	GitHub Exploit DB Packet Storm

267050	5.4	MEDIUM Network	tenable	nessus	Cross-site scripting (XSS) vulnerability in Tenable Nessus before 6.9 allows remote authenticated users to inject arbitrary web script or HTML via vectors related to handling of .nessus files.	CWE-79 Cross-site Scripting	CVE-2016-9260	2024-11-21 12:00	2017-02-1	Show	GitHub Exploit DB Packet Storm