Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 5, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230131 3.6 注意 VMware - Linux 用の VMware などの vmware-config.pl における SSL 鍵を読み取られる脆弱性 - CVE-2006-3589 2012-12-20 18:02 2006-07-21 Show GitHub Exploit DB Packet Storm
230132 5.1 警告 audacious media player team - Audacious AdPlug におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2006-3582 2012-12-20 18:02 2006-07-13 Show GitHub Exploit DB Packet Storm
230133 5.1 警告 audacious media player team - Audacious AdPlug におけるスタックベースのバッファーオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2006-3581 2012-12-20 18:02 2006-07-13 Show GitHub Exploit DB Packet Storm
230134 7.5 危険 asp stats generator - ASP Stats Generator の pages.asp における SQL インジェクションの脆弱性 - CVE-2006-3580 2012-12-20 18:02 2006-07-13 Show GitHub Exploit DB Packet Storm
230135 7.5 危険 LifeType - LifeType の index.php における SQL インジェクションの脆弱性 - CVE-2006-3577 2012-12-20 18:02 2006-07-13 Show GitHub Exploit DB Packet Storm
230136 7.5 危険 sensesites - SenseSites CommonSense CMS の search.php における SQL インジェクションの脆弱性 - CVE-2006-3576 2012-12-20 18:02 2006-07-13 Show GitHub Exploit DB Packet Storm
230137 2.1 注意 マカフィー - McAfee VirusScan Enterprise のバッファオーバーフロー保護におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-3575 2012-12-20 18:02 2006-07-13 Show GitHub Exploit DB Packet Storm
230138 6.8 警告 日立 - Hitachi Groupmax Collaboration Portal などの製品におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-3574 2012-12-20 18:02 2006-07-5 Show GitHub Exploit DB Packet Storm
230139 8.5 危険 シマンテック - Norton AntiVirus などで使用される Symantec NAVOPTS.DLL ActiveX コントロールにおけるコントロールをクラッシュされる脆弱性 CWE-94
コード・インジェクション 		CVE-2006-3456 2012-12-20 18:02 2007-05-9 Show GitHub Exploit DB Packet Storm
230140 5 警告 phpBB - phpBB における重要な情報を取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2006-2220 2012-12-20 18:02 2007-02-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 5, 2026, 4:51 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
314081 7.8 HIGH
Local 		ibm u2_universe cci_dir in IBM U2 UniVerse 10.0.0.9 and earlier creates hard links and unlinks files as root, which allows local users to gain privileges by deleting and overwriting arbitrary files. CWE-59
Link Following 		CVE-2003-0578 2024-01-27 02:19 2003-08-18 Show GitHub Exploit DB Packet Storm
314082 7.8 HIGH
Local 		oracle mysql Buffer overflow in MySQL daemon (mysqld) before 3.23.50, and 4.0 beta before 4.02, on the Win32 platform, allows local users to execute arbitrary code via a long "datadir" parameter in the my.ini ini… CWE-120
Classic Buffer Overflow 		CVE-2002-0969 2024-01-27 02:19 2002-10-11 Show GitHub Exploit DB Packet Storm
314083 5.5 MEDIUM
Local 		blackberry qnx_neutrino_real-time_operating_system Hard link and possibly symbolic link following vulnerabilities in QNX RTOS 4.25 (aka QNX4) allow local users to overwrite arbitrary files via (1) the -f argument to the monitor utility, (2) the -d ar… CWE-59
Link Following 		CVE-2002-0793 2024-01-27 02:18 2002-08-12 Show GitHub Exploit DB Packet Storm
314084 5.5 MEDIUM
Local 		kernel
avaya 		util-linux
cvlan
interactive_response
integrated_management_suit
intuity_lx
message_networking
messaging_storage_server 		script command in the util-linux package before 2.11n allows local users to overwrite arbitrary files by setting a hardlink from the typescript log file to any file on the system, then having root ex… CWE-59
Link Following 		CVE-2001-1494 2024-01-27 02:16 2001-12-31 Show GitHub Exploit DB Packet Storm
314085 7.1 HIGH
Local 		microsoft windows_nt The Winsock2ProtocolCatalogMutex mutex in Windows NT 4.0 has inappropriate Everyone/Full Control permissions, which allows local users to modify the permissions to "No Access" and disable Winsock net… CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2001-0006 2024-01-27 02:08 2001-02-12 Show GitHub Exploit DB Packet Storm
314086 4.7 MEDIUM
Local 		gnu
debian
canonical 		cpio
debian_linux
ubuntu_linux 		Race condition in cpio 2.6 and earlier allows local users to modify permissions of arbitrary files via a hard link attack on a file while it is being decompressed, whose permissions are changed by cp… CWE-59
CWE-367
Link Following
 Time-of-check Time-of-use (TOCTOU) Race Condition 		CVE-2005-1111 2024-01-27 02:07 2005-05-2 Show GitHub Exploit DB Packet Storm
314087 5.5 MEDIUM
Local 		gentoo linux
portage 		Portage before 2.0.50-r3 allows local users to overwrite arbitrary files via a hard link attack on the lockfiles. CWE-59
Link Following 		CVE-2004-1901 2024-01-27 02:07 2004-12-31 Show GitHub Exploit DB Packet Storm
314088 5.5 MEDIUM
Local 		cpanel cpanel cPanel 9.4.1-RELEASE-64 follows hard links, which allows local users to (1) read arbitrary files via the backup feature or (2) chown arbitrary files via the .htaccess file when Front Page extensions … CWE-59
Link Following 		CVE-2004-1603 2024-01-27 02:06 2004-10-18 Show GitHub Exploit DB Packet Storm
314089 7.1 HIGH
Local 		kde
debian 		kde
debian_linux 		KDE before 3.3.0 does not properly handle when certain symbolic links point to "stale" locations, which could allow local users to create or truncate arbitrary files. CWE-59
Link Following 		CVE-2004-0689 2024-01-27 02:06 2004-09-28 Show GitHub Exploit DB Packet Storm
314090 5.5 MEDIUM
Local 		ekg_project
debian 		ekg
debian_linux 		linki.py in ekg 2005-06-05 and earlier allows local users to overwrite or create arbitrary files via a symlink attack on temporary files. CWE-59
Link Following 		CVE-2005-1916 2024-01-27 02:01 2005-07-6 Show GitHub Exploit DB Packet Storm