Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 12, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
242671 5.1 警告 mybulletinboard - MyBB の archive/index.php/forum-4.html におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-4972 2012-09-25 15:36 2006-09-24 Show GitHub Exploit DB Packet Storm
242672 5 警告 mybulletinboard - MyBB における重要な情報を取得される脆弱性 - CVE-2006-4971 2012-09-25 15:36 2006-09-24 Show GitHub Exploit DB Packet Storm
242673 6.8 警告 nextage - NextAge Cart におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-4967 2012-09-25 15:36 2006-09-24 Show GitHub Exploit DB Packet Storm
242674 6.8 警告 neosys - Java 用の Neon WebMail におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-4956 2012-09-25 15:36 2006-09-23 Show GitHub Exploit DB Packet Storm
242675 5 警告 neosys - Java 用の Neon WebMail におけるディレクトリトラバーサルの脆弱性 - CVE-2006-4955 2012-09-25 15:36 2006-09-23 Show GitHub Exploit DB Packet Storm
242676 7.5 危険 neosys - Neon WebMail の updateuser サーブレットにおける任意のユーザの情報を変更される脆弱性 - CVE-2006-4954 2012-09-25 15:35 2006-09-23 Show GitHub Exploit DB Packet Storm
242677 7.5 危険 neosys - Neon WebMail における SQL インジェクションの脆弱性 - CVE-2006-4953 2012-09-25 15:35 2006-09-23 Show GitHub Exploit DB Packet Storm
242678 7.5 危険 neosys - Neon WebMail の updatemail サーブレットにおける電子メールメッセージを移動される脆弱性 - CVE-2006-4952 2012-09-25 15:35 2006-09-23 Show GitHub Exploit DB Packet Storm
242679 7.5 危険 neosys - Neon WebMail における任意の JSP コードを実行される脆弱性 - CVE-2006-4951 2012-09-25 15:35 2006-09-23 Show GitHub Exploit DB Packet Storm
242680 5 警告 Moodle - Moodle の course/jumpto.php における重要な情報を取得される脆弱性 - CVE-2006-4943 2012-09-25 15:35 2006-09-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 12, 2026, 4:20 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
267121 7.8 HIGH
Local 		libming libming Heap-based buffer overflow in the parseSWF_RGBA function in parser.c in the listswf tool in libming 0.4.7 allows remote attackers to have unspecified impact via a crafted SWF file. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-9831 2024-11-21 12:01 2017-02-17 Show GitHub Exploit DB Packet Storm
267122 7.8 HIGH
Local 		libming libming Heap-based buffer overflow in the parseSWF_DEFINEFONT function in parser.c in the listswf tool in libming 0.4.7 allows remote attackers to have unspecified impact via a crafted SWF file. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-9829 2024-11-21 12:01 2017-02-17 Show GitHub Exploit DB Packet Storm
267123 5.5 MEDIUM
Local 		libming libming The dumpBuffer function in read.c in the listswf tool in libming 0.4.7 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted SWF file. CWE-476
 NULL Pointer Dereference 		CVE-2016-9828 2024-11-21 12:01 2017-02-17 Show GitHub Exploit DB Packet Storm
267124 5.5 MEDIUM
Local 		libming libming The _iprintf function in outputtxt.c in the listswf tool in libming 0.4.7 allows remote attackers to cause a denial of service (buffer over-read) via a crafted SWF file. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-9827 2024-11-21 12:01 2017-02-17 Show GitHub Exploit DB Packet Storm
267125 9.1 CRITICAL
Network 		simplesamlphp simplesamlphp
saml2 		The validateSignature method in the SAML2\Utils class in SimpleSAMLphp before 1.14.10 and simplesamlphp/saml2 library before 1.9.1, 1.10.x before 1.10.3, and 2.x before 2.3.3 allows remote attackers … CWE-399
 Resource Management Errors 		CVE-2016-9814 2024-11-21 12:01 2017-02-17 Show GitHub Exploit DB Packet Storm
267126 5.5 MEDIUM
Local 		imagemagick imagemagick Heap-based buffer overflow in the IsPixelGray function in MagickCore/pixel-accessor.h in ImageMagick 7.0.3.8 allows remote attackers to cause a denial of service (out-of-bounds heap read) via a craft… CWE-119
CWE-125
Incorrect Access of Indexable Resource ('Range Error') 
Out-of-bounds Read 		CVE-2016-9773 2024-11-21 12:01 2017-02-17 Show GitHub Exploit DB Packet Storm
267127 7.5 HIGH
Local 		citrix xenserver The (1) ioport_read and (2) ioport_write functions in Xen, when qemu is used as a device model within Xen, might allow local x86 HVM guest OS administrators to gain qemu process privileges via vector… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-9637 2024-11-21 12:01 2017-02-17 Show GitHub Exploit DB Packet Storm
267128 9.1 CRITICAL
Network 		ibm websphere_message_broker
integration_bus 		IBM Integration Bus 9.0 and 10.0 and WebSphere Message Broker SOAP FLOWS is vulnerable to a denial of service, caused by an XML External Entity Injection (XXE) error when processing XML data. A remot… CWE-611
XXE 		CVE-2016-9706 2024-11-21 12:01 2017-02-16 Show GitHub Exploit DB Packet Storm
267129 7.8 HIGH
Local 		jasper_project
debian
redhat 		jasper
debian_linux
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
enterprise_linux_server_tus
enterprise_linux_server_aus
enterprise_linux_eus 		Stack-based buffer overflow in the jpc_tsfb_getbands2 function in jpc_tsfb.c in JasPer before 1.900.30 allows remote attackers to have unspecified impact via a crafted image. CWE-787
 Out-of-bounds Write 		CVE-2016-9560 2024-11-21 12:01 2017-02-16 Show GitHub Exploit DB Packet Storm
267130 5.3 MEDIUM
Physics 		bd alaris_8015_pc_unit An issue was discovered in Becton, Dickinson and Company (BD) Alaris 8015 Point of Care (PC) unit, Version 9.5 and prior versions, and Version 9.7. An unauthorized user with physical access to an Ala… CWE-255
Credentials Management 		CVE-2016-9355 2024-11-21 12:01 2017-02-14 Show GitHub Exploit DB Packet Storm