Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
227101	7.5	危険	PHP Outburst	-	UPB の chat/login.php における任意の PHP コードを挿入される脆弱性	-	CVE-2006-6790	2012-12-20 18:02	2006-12-27	Show	GitHub Exploit DB Packet Storm

227102	7.5	危険	phpbbxtra	-	Phpbbxtra の includes/archive/archive_topic.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-6789	2012-12-20 18:02	2006-12-27	Show	GitHub Exploit DB Packet Storm

227103	6.8	警告	timberwolf	-	TimberWolf の shownews.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-6778	2012-12-20 18:02	2006-12-27	Show	GitHub Exploit DB Packet Storm

227104	9.3	危険	w3m project	-	w3m の file.c におけるフォーマットストリングの脆弱性	CWE-134 書式文字列の問題	CVE-2006-6772	2012-12-20 18:02	2006-12-27	Show	GitHub Exploit DB Packet Storm

227105	6.8	警告	pwp technologies	-	PWP Technologies The Classified Ad System の default.asp におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-6768	2012-12-20 18:02	2006-12-27	Show	GitHub Exploit DB Packet Storm

227106	7.5	危険	phpmymanga	-	Phpmymanga の template.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2006-6760	2012-12-20 18:02	2006-12-26	Show	GitHub Exploit DB Packet Storm

227107	2.1	注意	phpprofiles	-	phpProfiles におけるディレクトリコンテンツをリスト化される脆弱性	-	CVE-2006-6744	2012-12-20 18:02	2006-12-26	Show	GitHub Exploit DB Packet Storm

227108	4.6	警告	phpprofiles	-	phpProfiles におけるファイルを削除される脆弱性	-	CVE-2006-6743	2012-12-20 18:02	2006-12-26	Show	GitHub Exploit DB Packet Storm

227109	7.5	危険	phpprofiles	-	phpProfiles における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2006-6740	2012-12-20 18:02	2006-12-26	Show	GitHub Exploit DB Packet Storm

227110	5	警告	phpbuilder	-	PHPBuilder におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2006-6725	2012-12-20 18:02	2006-12-26	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 25, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
198921	7.5	HIGH Network	imagemagick	imagemagick	In ImageMagick 7.0.6-1, a memory exhaustion vulnerability was found in the function ReadMIFFImage in coders/miff.c, which allows attackers to cause a denial of service.	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2017-12429	2024-11-21 12:09	2017-08-4	Show	GitHub Exploit DB Packet Storm

198922	7.5	HIGH Network	imagemagick	imagemagick	In ImageMagick 7.0.6-1, a memory leak vulnerability was found in the function ReadWMFImage in coders/wmf.c, which allows attackers to cause a denial of service in CloneDrawInfo in draw.c.	CWE-772 Missing Release of Resource after Effective Lifetime	CVE-2017-12428	2024-11-21 12:09	2017-08-4	Show	GitHub Exploit DB Packet Storm

198923	6.5	MEDIUM Network	imagemagick	imagemagick	The ProcessMSLScript function in coders/msl.c in ImageMagick before 6.9.9-5 and 7.x before 7.0.6-5 allows remote attackers to cause a denial of service (memory leak) via a crafted file, related to th…	CWE-772 Missing Release of Resource after Effective Lifetime	CVE-2017-12427	2024-11-21 12:09	2017-08-4	Show	GitHub Exploit DB Packet Storm

198924	9.8	CRITICAL Network	shadow_project debian	shadow debian_linux	In shadow before 4.5, the newusers tool could be made to manipulate internal data structures in ways unintended by the authors. Malformed input may lead to crashes (with a buffer overflow or other me…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-12424	2024-11-21 12:09	2017-08-4	Show	GitHub Exploit DB Packet Storm

198925	7.5	HIGH Network	imagemagick	imagemagick	ImageMagick 7.0.6-5 has memory leaks in the parse8BIMW and format8BIM functions in coders/meta.c, related to the WriteImage function in MagickCore/constitute.c.	CWE-772 Missing Release of Resource after Effective Lifetime	CVE-2017-12418	2024-11-21 12:09	2017-08-4	Show	GitHub Exploit DB Packet Storm

198926	9.8	CRITICAL Network	pcfreetime	format_factory	Format Factory 4.1.0 has a DLL Hijacking Vulnerability because an untrusted search path is used for msimg32.dll, WindowsCodecs.dll, and dwmapi.dll.	CWE-426 Untrusted Search Path	CVE-2017-12414	2024-11-21 12:09	2017-08-4	Show	GitHub Exploit DB Packet Storm

198927	8.1	HIGH Network	electron	electron	GitHub Electron before 1.6.8 allows remote command execution because of a nodeIntegration bypass vulnerability. This also affects all applications that bundle Electron code equivalent to 1.6.8 or ear…	CWE-78 OS Command	CVE-2017-12581	2024-11-21 12:09	2017-08-6	Show	GitHub Exploit DB Packet Storm

198928	6.1	MEDIUM Network	etoilewebdesign	ultimate_product_catalog	The Etoile Ultimate Product Catalog plugin 4.2.11 for WordPress has XSS in the Add Product Manually component.	CWE-79 Cross-site Scripting	CVE-2017-12200	2024-11-21 12:09	2017-08-2	Show	GitHub Exploit DB Packet Storm

198929	4.9	MEDIUM Network	mantisbt	mantisbt	If, after successful installation of MantisBT through 2.5.2 on MySQL/MariaDB, the administrator does not remove the 'admin' directory (as recommended in the "Post-installation and upgrade tasks" sect…	CWE-200 Information Exposure	CVE-2017-12419	2024-11-21 12:09	2017-08-6	Show	GitHub Exploit DB Packet Storm

198930	7.8	HIGH Local	gnu	binutils	The bfd_cache_close function in bfd/cache.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29 and earlier, allows remote attackers to cause a heap use afte…	CWE-416 Use After Free	CVE-2017-12448	2024-11-21 12:09	2017-08-5	Show	GitHub Exploit DB Packet Storm