Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 4:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
250851 7.6 危険 シトリックス・システムズ - Citrix Access Gateway の Web ベースの管理コンソールにおけるクロスサイトリクエストフォージェリの脆弱性 - CVE-2007-4017 2012-06-26 15:54 2007-07-25 Show GitHub Exploit DB Packet Storm
250852 6.8 警告 シトリックス・システムズ - Citrix Access Gateway Standard Edition および Advanced Edition のクライアントコンポーネントにおける任意のコードを実行される脆弱性 - CVE-2007-4016 2012-06-26 15:54 2007-07-25 Show GitHub Exploit DB Packet Storm
250853 9.3 危険 シトリックス・システムズ - Firefox プラグインディレクトリの Net6Helper.DLL における詳細不明な脆弱性 - CVE-2007-4013 2012-06-26 15:54 2007-07-25 Show GitHub Exploit DB Packet Storm
250854 7.1 危険 シスコシステムズ - Cisco 4100 におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-4012 2012-06-26 15:54 2007-07-24 Show GitHub Exploit DB Packet Storm
250855 7.1 危険 シスコシステムズ - Cisco 4100 におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-4011 2012-06-26 15:54 2007-07-24 Show GitHub Exploit DB Packet Storm
250856 7.5 危険 entertainment cms - Entertainment Media Sharing CMS の custom.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2007-4008 2012-06-26 15:54 2007-07-25 Show GitHub Exploit DB Packet Storm
250857 9.3 危険 article directory - Article Directory の index.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-4007 2012-06-26 15:54 2007-07-25 Show GitHub Exploit DB Packet Storm
250858 4.3 警告 ASP indir - Asp cvmatik の cv.asp におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-3991 2012-06-26 15:54 2007-07-25 Show GitHub Exploit DB Packet Storm
250859 7.5 危険 ASP indir - Dora Emlak の default.asp における SQL インジェクションの脆弱性 - CVE-2007-3990 2012-06-26 15:54 2007-07-25 Show GitHub Exploit DB Packet Storm
250860 4.3 警告 ASP indir - Dora Emlak の default.asp におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-3989 2012-06-26 15:54 2007-07-25 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
277151 8.8 HIGH
Network
google
debian
canonical
redhat
suse
opensuse
chrome
debian_linux
ubuntu_linux
enterprise_linux_desktop
enterprise_linux_server
enterprise_linux_workstation
linux_enterprise
leap
opensuse
Use-after-free vulnerability in ports/SkFontHost_FreeType.cpp in Skia, as used in Google Chrome before 51.0.2704.63, allows remote attackers to cause a denial of service (heap memory corruption) or p… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2016-1680 2024-11-21 11:46 2016-06-6 Show GitHub Exploit DB Packet Storm
277152 6.5 MEDIUM
Network
google
debian
canonical
redhat
opensuse
suse
chrome
debian_linux
ubuntu_linux
enterprise_linux_desktop
enterprise_linux_server
opensuse
leap
linux_enterprise
enterprise_linux_workstation
v8
uri.js in Google V8 before 5.1.281.26, as used in Google Chrome before 51.0.2704.63, uses an incorrect array type, which allows remote attackers to obtain sensitive information by calling the decodeU… CWE-200
Information Exposure
CVE-2016-1677 2024-11-21 11:46 2016-06-6 Show GitHub Exploit DB Packet Storm
277153 8.8 HIGH
Network
debian
redhat
suse
opensuse
google
debian_linux
enterprise_linux_desktop
enterprise_linux_server
enterprise_linux_workstation
linux_enterprise
leap
opensuse
chrome
extensions/renderer/resources/binding.js in the extension bindings in Google Chrome before 51.0.2704.63 does not properly use prototypes, which allows remote attackers to bypass the Same Origin Polic… CWE-284
Improper Access Control
CVE-2016-1676 2024-11-21 11:46 2016-06-6 Show GitHub Exploit DB Packet Storm
277154 8.8 HIGH
Network
google
debian
canonical
redhat
suse
opensuse
chrome
debian_linux
ubuntu_linux
enterprise_linux_desktop
enterprise_linux_server
enterprise_linux_workstation
linux_enterprise
leap
opensuse
The ToV8Value function in content/child/v8_value_converter_impl.cc in the V8 bindings in Google Chrome before 51.0.2704.63 does not properly restrict use of getters and setters, which allows remote a… NVD-CWE-Other
CVE-2016-1679 2024-11-21 11:46 2016-06-6 Show GitHub Exploit DB Packet Storm
277155 8.8 HIGH
Network
google
debian
canonical
redhat
suse
opensuse
v8
chrome
debian_linux
ubuntu_linux
enterprise_linux_desktop
enterprise_linux_server
enterprise_linux_workstation
linux_enterprise
leap
opensuse
objects.cc in Google V8 before 5.0.71.32, as used in Google Chrome before 51.0.2704.63, does not properly restrict lazy deoptimization, which allows remote attackers to cause a denial of service (hea… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2016-1678 2024-11-21 11:46 2016-06-6 Show GitHub Exploit DB Packet Storm
277156 8.8 HIGH
Network
debian
canonical
redhat
suse
opensuse
google
debian_linux
ubuntu_linux
enterprise_linux_desktop
enterprise_linux_server
enterprise_linux_workstation
linux_enterprise
leap
opensuse
chrome
Blink, as used in Google Chrome before 51.0.2704.63, allows remote attackers to bypass the Same Origin Policy by leveraging the mishandling of Document reattachment during destruction, related to Fra… CWE-284
Improper Access Control
CVE-2016-1675 2024-11-21 11:46 2016-06-6 Show GitHub Exploit DB Packet Storm
277157 8.8 HIGH
Network
debian
redhat
suse
opensuse
google
debian_linux
enterprise_linux_desktop
enterprise_linux_server
enterprise_linux_workstation
linux_enterprise
leap
opensuse
chrome
The extensions subsystem in Google Chrome before 51.0.2704.63 allows remote attackers to bypass the Same Origin Policy via unspecified vectors. NVD-CWE-noinfo
CVE-2016-1674 2024-11-21 11:46 2016-06-6 Show GitHub Exploit DB Packet Storm
277158 8.8 HIGH
Network
google
debian
canonical
redhat
suse
opensuse
chrome
debian_linux
ubuntu_linux
enterprise_linux_desktop
enterprise_linux_server
enterprise_linux_workstation
linux_enterprise
leap
opensuse
Blink, as used in Google Chrome before 51.0.2704.63, allows remote attackers to bypass the Same Origin Policy via unspecified vectors. NVD-CWE-noinfo
CVE-2016-1673 2024-11-21 11:46 2016-06-6 Show GitHub Exploit DB Packet Storm
277159 8.8 HIGH
Network
google
debian
redhat
suse
opensuse
chrome
debian_linux
enterprise_linux_desktop
enterprise_linux_server
enterprise_linux_workstation
linux_enterprise
leap
opensuse
The ModuleSystem::RequireForJsInner function in extensions/renderer/module_system.cc in the extension bindings in Google Chrome before 51.0.2704.63 mishandles properties, which allows remote attacker… CWE-254
CWE-284
 7PK - Security Features
Improper Access Control
CVE-2016-1672 2024-11-21 11:46 2016-06-6 Show GitHub Exploit DB Packet Storm
277160 7.8 HIGH
Local
cisco ip_phone_8800_series_firmware CISCO IP 8800 phones with software 11.0.1 and earlier allow local users to gain privileges for OS command execution via crafted CLI commands, aka Bug ID CSCuz03005. CWE-20
 Improper Input Validation 
CVE-2016-1403 2024-11-21 11:46 2016-06-4 Show GitHub Exploit DB Packet Storm