Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
251131 4 警告 activeWeb - activeWeb contentserver CMS における任意のディレクトリのファイルを作成される脆弱性 - CVE-2007-3018 2012-06-26 15:46 2007-07-16 Show GitHub Exploit DB Packet Storm
251132 4 警告 activeWeb - activeWeb contentserver CMS の WYSIWYG エディタアプレットにおける任意の JavaScript を挿入される脆弱性 - CVE-2007-3017 2012-06-26 15:46 2007-07-16 Show GitHub Exploit DB Packet Storm
251133 4.3 警告 activeWeb - activeWeb contentserver におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-3014 2012-06-26 15:46 2007-07-15 Show GitHub Exploit DB Packet Storm
251134 6.5 警告 activeWeb - activeWeb contentserver における SQL インジェクションの脆弱性 - CVE-2007-3013 2012-06-26 15:46 2007-07-15 Show GitHub Exploit DB Packet Storm
251135 5 警告 富士通 - Fujitsu-Siemens Computers PRIMERGY BX300 における重要な情報を取得される脆弱性 - CVE-2007-3012 2012-06-26 15:46 2007-07-5 Show GitHub Exploit DB Packet Storm
251136 7.5 危険 富士通 - Fujitsu-Siemens Computers ServerView におけるコマンドを実行される脆弱性 - CVE-2007-3011 2012-06-26 15:46 2007-07-5 Show GitHub Exploit DB Packet Storm
251137 6.8 警告 acoustica - Acoustica MP3 CD Burner におけるバッファオーバフローの脆弱性 - CVE-2007-3006 2012-06-26 15:46 2007-06-4 Show GitHub Exploit DB Packet Storm
251138 7.5 危険 diangemilang - DGNews の news.php における SQL インジェクションの脆弱性 - CVE-2007-2994 2012-06-26 15:46 2007-06-4 Show GitHub Exploit DB Packet Storm
251139 4.3 警告 evenzia - Evenzia CMS の includes/send.inc.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-2991 2012-06-26 15:46 2007-06-4 Show GitHub Exploit DB Packet Storm
251140 9.3 危険 btglobalservices - British Telecommunications Business Connect webhelper の ActiveX コントロールにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2007-2983 2012-06-26 15:46 2007-10-25 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
274091 8.8 HIGH
Network
oxidforge oxid_eshop OXID eShop before 2016-06-13 allows remote attackers to execute arbitrary code via a GET or POST request to the oxuser class. Fixed versions are Enterprise Edition v5.1.12, Enterprise Edition v5.2.9,… CWE-94
Code Injection
CVE-2016-5072 2024-11-21 11:53 2017-04-10 Show GitHub Exploit DB Packet Storm
274092 8.8 HIGH
Network
sierrawireless aleos_firmware Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 execute the management web application as root. CWE-264
Permissions, Privileges, and Access Controls
CVE-2016-5071 2024-11-21 11:53 2017-04-10 Show GitHub Exploit DB Packet Storm
274093 9.8 CRITICAL
Network
sierrawireless aleos_firmware Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 store passwords in cleartext. CWE-255
Credentials Management
CVE-2016-5070 2024-11-21 11:53 2017-04-10 Show GitHub Exploit DB Packet Storm
274094 9.8 CRITICAL
Network
sierrawireless aleos_firmware Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 use guessable session tokens, which are in the URL. CWE-613
 Insufficient Session Expiration
CVE-2016-5069 2024-11-21 11:53 2017-04-10 Show GitHub Exploit DB Packet Storm
274095 9.8 CRITICAL
Network
sierrawireless aleos_firmware Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 do not require authentication for Embedded_Ace_Get_Task.cgi requests. CWE-287
Improper Authentication
CVE-2016-5068 2024-11-21 11:53 2017-04-10 Show GitHub Exploit DB Packet Storm
274096 8.8 HIGH
Network
sierrawireless aleos_firmware Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 allow Hayes AT command injection. CWE-77
Command Injection
CVE-2016-5067 2024-11-21 11:53 2017-04-10 Show GitHub Exploit DB Packet Storm
274097 9.8 CRITICAL
Network
sierrawireless aleos_firmware Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 have weak passwords for admin, rauser, sconsole, and user. CWE-255
Credentials Management
CVE-2016-5066 2024-11-21 11:53 2017-04-10 Show GitHub Exploit DB Packet Storm
274098 9.8 CRITICAL
Network
sierrawireless aleos_firmware Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 allow Embedded_Ace_Set_Task.cgi command injection. CWE-77
Command Injection
CVE-2016-5065 2024-11-21 11:53 2017-04-10 Show GitHub Exploit DB Packet Storm
274099 6.5 MEDIUM
Network
osram lightify_pro OSRAM SYLVANIA Osram Lightify Pro before 2016-07-26 allows attackers to obtain sensitive information by reading screenshots under /private/var/mobile/Containers/Data/Application. CWE-200
Information Exposure
CVE-2016-5059 2024-11-21 11:53 2017-04-10 Show GitHub Exploit DB Packet Storm
274100 7.5 HIGH
Network
osram lightify_pro OSRAM SYLVANIA Osram Lightify Pro through 2016-07-26 allows Zigbee replay. CWE-284
Improper Access Control
CVE-2016-5058 2024-11-21 11:53 2017-04-10 Show GitHub Exploit DB Packet Storm