Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
242301 4.3 警告 6rbscript - 6rbScript の section.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-6453 2012-06-26 16:10 2009-03-13 Show GitHub Exploit DB Packet Storm
242302 7.5 危険 geniuscyber - CMS MAXSITE の Guestbook コンポーネントにおける guestbook に任意の PHP コードを挿入される脆弱性 CWE-94
コード・インジェクション 		CVE-2008-6446 2012-06-26 16:10 2009-03-9 Show GitHub Exploit DB Packet Storm
242303 10 危険 Baidu, Inc. - Baidu Hi IM の CSTransfer.dll におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-6444 2012-06-26 16:10 2009-03-9 Show GitHub Exploit DB Packet Storm
242304 9.3 危険 epic games - ゲーム製品で使用される Epic Games Unreal エンジンクライアントにおけるフォーマットストリングの脆弱性 CWE-134
書式文字列の問題 		CVE-2008-6441 2012-06-26 16:10 2009-03-9 Show GitHub Exploit DB Packet Storm
242305 5 警告 Cerberus, LLC - Cerberus Helpdesk における重要な情報を取得される脆弱性 CWE-287
不適切な認証 		CVE-2008-6440 2012-06-26 16:10 2009-03-6 Show GitHub Exploit DB Packet Storm
242306 4.3 警告 abledating - ABK-Soft AbleDating の search_results.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-6439 2012-06-26 16:10 2009-03-6 Show GitHub Exploit DB Packet Storm
242307 7.5 危険 e107.org
e107coders		 - e107 用 MacGuru BLOG Engine プラグイン のmacgurublog_menu/macgurublog.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6438 2012-06-26 16:10 2009-03-6 Show GitHub Exploit DB Packet Storm
242308 7.5 危険 Blue River - Blue River Interactive Group Sava CMS の index.cfm における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6434 2012-06-26 16:10 2009-03-6 Show GitHub Exploit DB Packet Storm
242309 4.3 警告 Blue River - Blue River Interactive Group Sava CMS の index.cfm におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-6433 2012-06-26 16:10 2009-03-6 Show GitHub Exploit DB Packet Storm
242310 4.3 警告 bmforum - BMForum におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-6431 2012-06-26 16:10 2009-03-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
267961 5.4 MEDIUM
Network 		ibm jazz_reporting_service Cross-site scripting (XSS) vulnerability in the Report Builder and Data Collection Component (DCC) in IBM Jazz Reporting Service (JRS) 5.x before 5.0.2 ifix016 and 6.x before 6.0.1 ifix005 allows rem… CWE-79
Cross-site Scripting 		CVE-2016-0313 2024-11-21 11:41 2016-07-8 Show GitHub Exploit DB Packet Storm
267962 7.8 HIGH
Local 		ibm i_access IBM i Access 7.1 on Windows allows local users to discover registry passwords via unspecified vectors. CWE-200
CWE-254
Information Exposure
 7PK - Security Features 		CVE-2016-0287 2024-11-21 11:41 2016-07-8 Show GitHub Exploit DB Packet Storm
267963 8.2 HIGH
Local 		ibm urbancode_deploy The agents in IBM UrbanCode Deploy 6.x before 6.0.1.14, 6.1.x before 6.1.3.3, and 6.2.x before 6.2.1.1 do not verify a server's identity in a JMS session or an HTTP session, which allows local users … CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-0271 2024-11-21 11:41 2016-07-8 Show GitHub Exploit DB Packet Storm
267964 5.1 MEDIUM
Local 		ibm control_center
sterling_control_center 		IBM Control Center 6.x before 6.0.0.1 iFix06 and Sterling Control Center 5.4.x before 5.4.2.1 iFix09 allow local users to decrypt the master key via unspecified vectors. CWE-200
Information Exposure 		CVE-2016-0252 2024-11-21 11:41 2016-07-8 Show GitHub Exploit DB Packet Storm
267965 5.3 MEDIUM
Network 		ibm websphere_application_server Admin Center in IBM WebSphere Application Server (WAS) 8.5.5.2 through 8.5.5.9 Liberty before Liberty Fix Pack 16.0.0.2 allows remote attackers to obtain sensitive information via unspecified vectors. CWE-200
Information Exposure 		CVE-2016-0389 2024-11-21 11:41 2016-07-7 Show GitHub Exploit DB Packet Storm
267966 6.8 MEDIUM
Physics 		ibm hardware_management_console IBM Power Hardware Management Console (HMC) 7.3 through 7.3.0 SP7, 7.9 through 7.9.0 SP3, 8.1 through 8.1.0 SP3, 8.2 through 8.2.0 SP2, 8.3 through 8.3.0 SP2, 8.4 through 8.4.0 SP1, and 8.5.0 allows … CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-0230 2024-11-21 11:41 2016-07-7 Show GitHub Exploit DB Packet Storm
267967 6.1 MEDIUM
Network 		ibm websphere_application_server CRLF injection vulnerability in IBM WebSphere Application Server (WAS) 7.0 before 7.0.0.43, 8.0 before 8.0.0.13, 8.5 Full before 8.5.5.10, and 8.5 Liberty before Liberty Fix Pack 16.0.0.2 allows remo… NVD-CWE-Other
CVE-2016-0359 2024-11-21 11:41 2016-07-4 Show GitHub Exploit DB Packet Storm
267968 5.4 MEDIUM
Network 		ibm cognos_business_intelligence Cross-site scripting (XSS) vulnerability in IBM Cognos Business Intelligence 10.2 before IF20, 10.2.1 before IF17, 10.2.1.1 before IF16, 10.2.2 before IF12, and 10.1.1 before IF19 allows remote authe… CWE-79
Cross-site Scripting 		CVE-2016-0346 2024-11-21 11:41 2016-07-4 Show GitHub Exploit DB Packet Storm
267969 5.4 MEDIUM
Network 		ibm cognos_business_intelligence Cross-site scripting (XSS) vulnerability in IBM Cognos TM1, as used in IBM Cognos Business Intelligence 10.2 before IF20, 10.2.1 before IF17, 10.2.1.1 before IF16, 10.2.2 before IF12, and 10.1.1 befo… CWE-79
Cross-site Scripting 		CVE-2016-0221 2024-11-21 11:41 2016-07-4 Show GitHub Exploit DB Packet Storm
267970 6.1 MEDIUM
Network 		ibm websphere_extreme_scale CRLF injection vulnerability in IBM WebSphere eXtreme Scale 7.1.0 before 7.1.0.3, 7.1.1 before 7.1.1.1, 8.5 before 8.5.0.3, and 8.6 before 8.6.0.8 allows remote attackers to inject arbitrary HTTP hea… NVD-CWE-Other
CVE-2016-0400 2024-11-21 11:41 2016-07-2 Show GitHub Exploit DB Packet Storm