Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227051 7.8 危険 softinform - FineBrowser Freeware における他のドメインから制限された情報をアクセスされる脆弱性 - CVE-2006-6987 2012-12-20 18:18 2007-02-8 Show GitHub Exploit DB Packet Storm
227052 7.5 危険 phpgraphy - phpGraphy における任意の PHP コードを実行される脆弱性 - CVE-2006-6966 2012-12-20 18:18 2007-02-3 Show GitHub Exploit DB Packet Storm
227053 6.8 警告 ウェブルート株式会社 - WebRoot Spy Sweeper におけるマルウェアを回避される脆弱性 - CVE-2006-6961 2012-12-20 18:18 2007-01-29 Show GitHub Exploit DB Packet Storm
227054 6.8 警告 ウェブルート株式会社 - WebRoot Spy Sweeper の Compression Sweep 機能におけるマルウェアの検出を回避される脆弱性 - CVE-2006-6960 2012-12-20 18:18 2007-01-29 Show GitHub Exploit DB Packet Storm
227055 4.6 警告 ウェブルート株式会社 - WebRoot Spy Sweeper における "スタートアップシールド" セキュリティ制限を回避される脆弱性 - CVE-2006-6959 2012-12-20 18:18 2007-01-29 Show GitHub Exploit DB Packet Storm
227056 7.5 危険 php blue dragon - phpBlueDragon における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2006-6958 2012-12-20 18:18 2007-01-29 Show GitHub Exploit DB Packet Storm
227057 7.5 危険 VirtueMart - Virtuemart における SQL インジェクションの脆弱性 - CVE-2006-6945 2012-12-20 18:18 2007-01-19 Show GitHub Exploit DB Packet Storm
227058 7.5 危険 The phpMyAdmin Project - phpMyAdmin におけるアクセスルールを回避される脆弱性 - CVE-2006-6944 2012-12-20 18:18 2007-01-17 Show GitHub Exploit DB Packet Storm
227059 5 警告 The phpMyAdmin Project - PhpMyAdmin におけるサーバのフルパスを取得される脆弱性 - CVE-2006-6943 2012-12-20 18:18 2007-01-17 Show GitHub Exploit DB Packet Storm
227060 6.8 警告 The phpMyAdmin Project - PhpMyAdmin におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-6942 2012-12-20 18:18 2007-01-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 26, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
198881 7.5 HIGH
Network 		apache tomcat When using a VirtualDirContext with Apache Tomcat 7.0.0 to 7.0.80 it was possible to bypass security constraints and/or view the source code of JSPs for resources served by the VirtualDirContext usin… CWE-200
Information Exposure 		CVE-2017-12616 2024-11-21 12:09 2017-09-19 Show GitHub Exploit DB Packet Storm
198882 8.1 HIGH
Network 		apache
netapp
redhat 		tomcat
oncommand_balance
oncommand_shift
7-mode_transition_tool
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_for_scientific_computing
enterprise_linux_s… 		When running Apache Tomcat 7.0.0 to 7.0.79 on Windows with HTTP PUTs enabled (e.g. via setting the readonly initialisation parameter of the Default to false) it was possible to upload a JSP file to t… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2017-12615 2024-11-21 12:09 2017-09-19 Show GitHub Exploit DB Packet Storm
198883 9.1 CRITICAL
Network 		cisco meeting_server A vulnerability in the Traversal Using Relay NAT (TURN) server included with Cisco Meeting Server (CMS) could allow an authenticated, remote attacker to gain unauthenticated or unauthorized access to… CWE-668
 Exposure of Resource to Wrong Sphere 		CVE-2017-12249 2024-11-21 12:09 2017-09-14 Show GitHub Exploit DB Packet Storm
198884 7.8 HIGH
Local 		apache spark In Apache Spark 1.6.0 until 2.1.1, the launcher API performs unsafe deserialization of data received by its socket. This makes applications launched programmatically using the launcher API potentiall… CWE-502
 Deserialization of Untrusted Data 		CVE-2017-12612 2024-11-21 12:09 2017-09-14 Show GitHub Exploit DB Packet Storm
198885 5.4 MEDIUM
Network 		cisco emergency_responder A vulnerability in the SQL database interface for Cisco Emergency Responder could allow an authenticated, remote attacker to conduct a blind SQL injection attack. The vulnerability is due to a failur… CWE-89
SQL Injection 		CVE-2017-12227 2024-11-21 12:09 2017-09-8 Show GitHub Exploit DB Packet Storm
198886 6.5 MEDIUM
Network 		cisco prime_lan_management_solution A vulnerability in the web functionality of the Cisco Prime LAN Management Solution could allow an authenticated, remote attacker to hijack another user's administrative session, aka a Session Fixati… CWE-384
 Session Fixation 		CVE-2017-12225 2024-11-21 12:09 2017-09-8 Show GitHub Exploit DB Packet Storm
198887 6.5 MEDIUM
Network 		cisco meeting_server A vulnerability in the ability for guest users to join meetings via a hyperlink with Cisco Meeting Server could allow an authenticated, remote attacker to enter a meeting with a hyperlink URL, even t… CWE-200
Information Exposure 		CVE-2017-12224 2024-11-21 12:09 2017-09-8 Show GitHub Exploit DB Packet Storm
198888 6.4 MEDIUM
Physics 		cisco ir800_integrated_services_router_firmware A vulnerability in the ROM Monitor (ROMMON) code of Cisco IR800 Integrated Services Router Software could allow an unauthenticated, local attacker to boot an unsigned Hypervisor on an affected device… CWE-20
 Improper Input Validation  		CVE-2017-12223 2024-11-21 12:09 2017-09-8 Show GitHub Exploit DB Packet Storm
198889 5.4 MEDIUM
Network 		cisco firepower_management_center A vulnerability in the web framework of Cisco Firepower Management Center could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web interf… CWE-79
Cross-site Scripting 		CVE-2017-12221 2024-11-21 12:09 2017-09-8 Show GitHub Exploit DB Packet Storm
198890 6.1 MEDIUM
Network 		cisco firepower_management_center A vulnerability in the web-based management interface of Cisco Firepower Management Center could allow an unauthenticated, remote attacker to conduct a reflected cross-site scripting (XSS) attack aga… CWE-79
Cross-site Scripting 		CVE-2017-12220 2024-11-21 12:09 2017-09-8 Show GitHub Exploit DB Packet Storm