Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 17, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
243331	7.5	危険	マイクロソフト	-	Windows XP SP2 上の Internet Explorer 6 における任意の JavaScript を実行される脆弱性	-	CVE-2006-4560	2012-09-25 15:35	2006-09-5	Show	GitHub Exploit DB Packet Storm

243332	6.8	警告	Mambo Foundation Joomla!	-	Mambo および Joomla! 用の com_comprofiler コンポーネントにおける脆弱性	CWE-94 コード・インジェクション	CVE-2006-4553	2012-09-25 15:35	2006-09-5	Show	GitHub Exploit DB Packet Storm

243333	7.8	危険	Novell	-	Novell eDirectory の ncp におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-4520	2012-09-25 15:35	2007-04-30	Show	GitHub Exploit DB Packet Storm

243334	6.5	警告	Lyris	-	Lyris ListManager における重要な情報を取得される脆弱性	-	CVE-2006-4547	2012-09-25 15:35	2006-09-5	Show	GitHub Exploit DB Packet Storm

243335	6.5	警告	Lyris	-	Lyris ListManager における任意のリストに新規管理者を追加される脆弱性	-	CVE-2006-4546	2012-09-25 15:35	2006-09-5	Show	GitHub Exploit DB Packet Storm

243336	6.8	警告	hlstats	-	HLStats の index.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-4543	2012-09-25 15:35	2006-09-5	Show	GitHub Exploit DB Packet Storm

243337	4.6	警告	インターネットセキュリティシステムズ	-	BlackICE PC Protection の RapDrv.sys におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2006-4541	2012-09-25 15:35	2006-09-5	Show	GitHub Exploit DB Packet Storm

243338	6.8	警告	learn.com	-	Learn.com LearnCenter の learncenter.asp におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-4540	2012-09-25 15:35	2006-09-5	Show	GitHub Exploit DB Packet Storm

243339	7.5	危険	membrepass	-	membrepass の include/change.php における任意の PHP コードを実行される脆弱性	-	CVE-2006-4530	2012-09-25 15:35	2006-09-1	Show	GitHub Exploit DB Packet Storm

243340	7.5	危険	membrepass	-	membrepass の recherchemembre.php における SQL インジェクションの脆弱性	-	CVE-2006-4529	2012-09-25 15:35	2006-09-1	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 17, 2026, 4:19 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
268961	7.8	HIGH Local	potrace_project	potrace	The bm_new function in bitmap.h in potrace 1.13 allows remote attackers to have unspecified impact via a crafted image, which triggers a memory allocation failure.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-8686	2024-11-21 11:59	2017-02-1	Show	GitHub Exploit DB Packet Storm

268962	5.5	MEDIUM Local	potrace_project	potrace	The findnext function in decompose.c in potrace 1.13 allows remote attackers to cause a denial of service (invalid memory access and crash) via a crafted BMP image.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-8685	2024-11-21 11:59	2017-02-1	Show	GitHub Exploit DB Packet Storm

268963	9.8	CRITICAL Network	tcpdump	tcpdump	The Q.933 parser in tcpdump before 4.9.0 has a buffer overflow in print-fr.c:q933_print(), a different vulnerability than CVE-2017-5482.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-8575	2024-11-21 11:59	2017-01-28	Show	GitHub Exploit DB Packet Storm

268964	9.8	CRITICAL Network	tcpdump	tcpdump	The FRF.15 parser in tcpdump before 4.9.0 has a buffer overflow in print-fr.c:frf15_print().	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-8574	2024-11-21 11:59	2017-01-28	Show	GitHub Exploit DB Packet Storm

268965	3.7	LOW Network	oracle	solaris	Vulnerability in the Solaris component of Oracle Sun Systems Products Suite (subcomponent: Kernel). The supported version that is affected is 11.3. Difficult to exploit vulnerability allows unauthent…	CWE-284 Improper Access Control	CVE-2016-8330	2024-11-21 11:59	2017-01-28	Show	GitHub Exploit DB Packet Storm

268966	9.8	CRITICAL Network	google	android	Buffer overflow vulnerability while processing QMI QOS TLVs. Product: Android. Versions: versions that have qmi_qos_srvc.c. Android ID: 31805216. References: QC CR#912775.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-8411	2024-11-21 11:59	2017-01-28	Show	GitHub Exploit DB Packet Storm

268967	7.8	HIGH Local	libbpg_project	libbpg	An exploitable heap write out of bounds vulnerability exists in the decoding of BPG images in Libbpg library. A crafted BPG image decoded by libbpg can cause an integer underflow vulnerability causin…	CWE-787 Out-of-bounds Write	CVE-2016-8710	2024-11-21 11:59	2017-01-27	Show	GitHub Exploit DB Packet Storm

268968	7.8	HIGH Local	lenovo	transition	Privilege escalation vulnerability in Lenovo Transition application used in Lenovo Yoga, Flex and Miix systems running Windows allows local users to execute code with elevated privileges.	CWE-284 Improper Access Control	CVE-2016-8227	2024-11-21 11:59	2017-01-27	Show	GitHub Exploit DB Packet Storm

268969	4.9	MEDIUM Network	lenovo	system_x3650_m5_bios flex_system_x280_m6_bios system_x3500_m5_bios flex_system_x240_m5_bios system_x3250_m6_bios system_x3550_m5_bios flex_system_x880_x6_bios nextscale_nx360_m5_…	The BIOS in Lenovo System X M5, M6, and X6 systems allows administrators to cause a denial of service via updating a UEFI data structure.	CWE-19 Data Processing Errors	CVE-2016-8226	2024-11-21 11:59	2017-01-27	Show	GitHub Exploit DB Packet Storm

268970	7.8	HIGH Local	lenovo	edge_keyboard_driver slim_usb_keyboard_driver	Unquoted service path vulnerability in Lenovo Edge and Lenovo Slim USB Keyboard Driver versions earlier than 1.21 allows local users to execute code with elevated privileges.	CWE-428 Unquoted Search Path or Element	CVE-2016-8225	2024-11-21 11:59	2017-01-27	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed