Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 6, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230141 5 警告 phpBB - phpBB における重要な情報を取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2006-2219 2012-12-20 18:02 2007-02-8 Show GitHub Exploit DB Packet Storm
230142 1.2 注意 SGI - SGI ProPack カーネルにおける重要な情報を取得される脆弱性 - CVE-2006-1167 2012-12-20 18:02 2007-02-6 Show GitHub Exploit DB Packet Storm
230143 10 危険 milan mimica - Milan Mimica Sparklet の agl_text.cpp におけるフォーマットストリングの脆弱性 CWE-134
書式文字列の問題 		CVE-2006-3573 2012-12-20 18:02 2006-07-13 Show GitHub Exploit DB Packet Storm
230144 4.9 警告 zonelabs - Check Point Zone Labs ZoneAlarm Internet Security Suite におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-3540 2012-12-20 18:02 2006-07-12 Show GitHub Exploit DB Packet Storm
230145 4.3 警告 dkscript - DKScript.com Dragon's Kingdom Script におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2006-3539 2012-12-20 18:02 2006-07-12 Show GitHub Exploit DB Packet Storm
230146 5.8 警告 beatificfaith - BeatificFaith Eprayer Alpha の demo.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-3538 2012-12-20 18:02 2006-07-12 Show GitHub Exploit DB Packet Storm
230147 7.5 危険 randshop - Randshop の index.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-3537 2012-12-20 18:02 2006-07-12 Show GitHub Exploit DB Packet Storm
230148 7.5 危険 ej3 - EJ3 TOPo の code/class_db_text.php における任意の PHP コードを実行される脆弱性 - CVE-2006-3536 2012-12-20 18:02 2006-07-12 Show GitHub Exploit DB Packet Storm
230149 5 警告 Nullsoft - Nullsoft SHOUTcast DSP におけるディレクトリトラバーサルの脆弱性 - CVE-2006-3535 2012-12-20 18:02 2006-07-12 Show GitHub Exploit DB Packet Storm
230150 7.8 危険 Nullsoft - Nullsoft SHOUTcast DSP におけるディレクトリトラバーサルの脆弱性 - CVE-2006-3534 2012-12-20 18:02 2006-07-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
313921 7.5 HIGH
Network 		ethereal
debian 		ethereal
debian_linux 		SMB dissector in Ethereal 0.9.3 and earlier allows remote attackers to cause a denial of service (crash) or execute arbitrary code via malformed packets that cause Ethereal to dereference a NULL poin… CWE-476
 NULL Pointer Dereference 		CVE-2002-0401 2024-02-17 02:07 2002-06-18 Show GitHub Exploit DB Packet Storm
313922 7.5 HIGH
Network 		linux linux_kernel xattr.c in the ext2 and ext3 file system code for Linux kernel 2.6 does not properly compare the name_index fields when sharing xattr blocks, which could prevent default ACLs from being applied. CWE-697
 Incorrect Comparison 		CVE-2005-2801 2024-02-17 01:53 2005-09-7 Show GitHub Exploit DB Packet Storm
313923 9.8 CRITICAL
Network 		freebsd freebsd TCP Wrappers (tcp_wrappers) in FreeBSD 4.1.1 through 4.3 with the PARANOID ACL option enabled does not properly check the result of a reverse DNS lookup, which could allow remote attackers to bypass … CWE-863
 Incorrect Authorization 		CVE-2001-1155 2024-02-17 01:51 2001-08-23 Show GitHub Exploit DB Packet Storm
313924 5.5 MEDIUM
Local 		openbsd openbsd The uipc system calls (uipc_syscalls.c) in OpenBSD 2.9 and 3.0 provide user mode return instead of versus rval kernel mode values to the fdrelease function, which allows local users to cause a denial… CWE-476
 NULL Pointer Dereference 		CVE-2001-1559 2024-02-16 23:16 2001-12-31 Show GitHub Exploit DB Packet Storm
313925 7.1 HIGH
Local 		ibm db2_universal_database Shared memory sections and events in IBM DB2 8.1 have default permissions of read and write for the Everyone group, which allows local users to gain unauthorized access, gain sensitive information, s… CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2005-4868 2024-02-16 23:10 2005-12-31 Show GitHub Exploit DB Packet Storm
313926 7.5 HIGH
Network 		microsoft windows_xp
windows_2000
windows_server_2003 		The Negotiate Security Software Provider (SSP) interface in Windows 2000, Windows XP, and Windows Server 2003, allows remote attackers to cause a denial of service (crash from null dereference) or ex… CWE-476
 NULL Pointer Dereference 		CVE-2004-0119 2024-02-16 06:44 2004-06-1 Show GitHub Exploit DB Packet Storm
313927 7.5 HIGH
Network 		realnetworks helix_universal_server RealNetworks Helix Universal Server 9.0.1 and 9.0.2 allows remote attackers to cause a denial of service (crash) via malformed requests that trigger a null dereference, as demonstrated using (1) GET_… CWE-476
 NULL Pointer Dereference 		CVE-2004-0389 2024-02-16 06:42 2004-06-1 Show GitHub Exploit DB Packet Storm
313928 9.8 CRITICAL
Network 		infodrom cfingerd Format string vulnerability in Infodrom cfingerd 1.4.3 and earlier allows a remote attacker to gain additional privileges via a malformed ident reply that is passed to the syslog function. CWE-193
 Off-by-one Error 		CVE-2001-0609 2024-02-16 06:29 2001-08-2 Show GitHub Exploit DB Packet Storm
313929 7.5 HIGH
Network 		microsoft internet_information_services Off-by-one error in the CodeBrws.asp sample script in Microsoft IIS 5.0 allows remote attackers to view the source code for files with extensions containing with one additional character after .html,… CWE-193
 Off-by-one Error 		CVE-2002-1745 2024-02-16 06:28 2002-12-31 Show GitHub Exploit DB Packet Storm
313930 9.8 CRITICAL
Network 		redshift atphttpd Off-by-one buffer overflow in the sock_gets function in sockhelp.c for ATPhttpd 0.4b and earlier allows remote attackers to execute arbitrary code via a long HTTP GET request. CWE-193
 Off-by-one Error 		CVE-2002-1816 2024-02-16 06:28 2002-12-31 Show GitHub Exploit DB Packet Storm