Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227321 7.5 危険 viksoe - viksoe GMail Drive シェルエクステンションにおける仮想ファイルシステムのアクションを実行される脆弱性 - CVE-2006-5902 2012-12-20 18:02 2006-11-15 Show GitHub Exploit DB Packet Storm
227322 6.8 警告 Zend Technologies Ltd. - Zend Framework Preview の incubator/tests/Zend/Http/_files/testRedirections.php サンプルコードにおけるクロスサイトスクリプティングの脆弱性 - CVE-2006-5900 2012-12-20 18:02 2006-11-15 Show GitHub Exploit DB Packet Storm
227323 5 警告 php heaven - PhpMyChat の localization/languages.lib.php3 におけるディレクトリトラバーサルの脆弱性 - CVE-2006-5898 2012-12-20 18:02 2006-11-15 Show GitHub Exploit DB Packet Storm
227324 5 警告 php heaven - PhpMyChat Plus におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2006-5897 2012-12-20 18:02 2006-11-15 Show GitHub Exploit DB Packet Storm
227325 5 警告 remlab - REMLAB Web Mech Designer におけるスクリプトのフルパスを取得される脆弱性 - CVE-2006-5896 2012-12-20 18:02 2006-11-27 Show GitHub Exploit DB Packet Storm
227326 6.8 警告 rama cms - Rama CMS の lang.php におけるディレクトリトラバーサルの脆弱性 - CVE-2006-5894 2012-12-20 18:02 2006-11-14 Show GitHub Exploit DB Packet Storm
227327 7.5 危険 the net guys - The Net Guys ASPired2Poll の MoreInfo.asp における SQL インジェクションの脆弱性 - CVE-2006-5892 2012-12-20 18:02 2006-11-14 Show GitHub Exploit DB Packet Storm
227328 7.5 危険 superfreaker studios - Superfreaker Studios Ustore の detail.asp における SQL インジェクションの脆弱性 - CVE-2006-5891 2012-12-20 18:02 2006-11-14 Show GitHub Exploit DB Packet Storm
227329 7.5 危険 superfreaker studios - Superfreaker Studios Usupport の detail.asp における SQL インジェクションの脆弱性 - CVE-2006-5890 2012-12-20 18:02 2006-11-14 Show GitHub Exploit DB Packet Storm
227330 7.5 危険 superfreaker studios - Superfreaker Studios UPublisher の viewarticle.asp における SQL インジェクションの脆弱性 - CVE-2006-5888 2012-12-20 18:02 2006-11-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 25, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
199131 4.3 MEDIUM
Network 		microsoft edge Microsoft Edge in Microsoft Windows 10 1703 allows an attacker to obtain information to further compromise the user's system, due to how Microsoft Edge handles objects in memory, aka "Microsoft Edge … CWE-200
Information Exposure 		CVE-2017-11794 2024-11-21 12:08 2017-10-13 Show GitHub Exploit DB Packet Storm
199132 4.3 MEDIUM
Network 		microsoft internet_explorer Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 201… CWE-200
Information Exposure 		CVE-2017-11790 2024-11-21 12:08 2017-10-13 Show GitHub Exploit DB Packet Storm
199133 8.8 HIGH
Network 		microsoft lync
skype_for_business 		Skype for Business in Microsoft Lync 2013 SP1 and Skype for Business 2016 allows an attacker to steal an authentication hash that can be reused elsewhere, due to how Skype for Business handles authen… CWE-294
Authentication Bypass by Capture-replay  		CVE-2017-11786 2024-11-21 12:08 2017-10-13 Show GitHub Exploit DB Packet Storm
199134 7.0 HIGH
Local 		microsoft windows_rt_8.1
windows_server_2012
windows_server_2016
windows_10
windows_8.1 		Microsoft Windows 8.1, Windows Server 2012 R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allows an elevation of privilege vulnerability in the way it handles call… NVD-CWE-noinfo
CVE-2017-11783 2024-11-21 12:08 2017-10-13 Show GitHub Exploit DB Packet Storm
199135 7.8 HIGH
Local 		microsoft windows_server_2016
windows_10 		The Microsoft Server Block Message (SMB) on Microsoft Windows 10 1607 and Windows Server 2016, allows an elevation of privilege vulnerability when an attacker sends specially crafted requests to the … CWE-20
 Improper Input Validation  		CVE-2017-11782 2024-11-21 12:08 2017-10-13 Show GitHub Exploit DB Packet Storm
199136 8.1 HIGH
Network 		microsoft windows_rt_8.1
windows_server_2012
windows_server_2016
windows_10
windows_8.1 		The Microsoft Windows Domain Name System (DNS) DNSAPI.dll on Microsoft Windows 8.1, Windows Server 2012 R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allows a rem… NVD-CWE-noinfo
CVE-2017-11779 2024-11-21 12:08 2017-10-13 Show GitHub Exploit DB Packet Storm
199137 5.4 MEDIUM
Network 		microsoft sharepoint_enterprise_server Microsoft SharePoint Enterprise Server 2013 SP1 and Microsoft SharePoint Enterprise Server 2016 allow an attacker to exploit a cross-site scripting (XSS) vulnerability by sending a specially crafted … CWE-79
Cross-site Scripting 		CVE-2017-11777 2024-11-21 12:08 2017-10-13 Show GitHub Exploit DB Packet Storm
199138 7.5 HIGH
Network 		microsoft outlook Microsoft Outlook 2016 allows an attacker to obtain the email content of a user, due to how Outlook 2016 discloses user email content, aka "Microsoft Outlook Information Disclosure Vulnerability." CWE-200
Information Exposure 		CVE-2017-11776 2024-11-21 12:08 2017-10-13 Show GitHub Exploit DB Packet Storm
199139 5.4 MEDIUM
Network 		microsoft sharepoint_enterprise_server Microsoft SharePoint Enterprise Server 2013 SP1 and Microsoft SharePoint Enterprise Server 2016 allow an attacker to exploit a cross-site scripting (XSS) vulnerability by sending a specially crafted … CWE-79
Cross-site Scripting 		CVE-2017-11775 2024-11-21 12:08 2017-10-13 Show GitHub Exploit DB Packet Storm
199140 7.8 HIGH
Local 		microsoft outlook Microsoft Outlook 2010 SP2, Outlook 2013 SP1 and RT SP1, and Outlook 2016 allow an attacker to execute arbitrary commands, due to how Microsoft Office handles objects in memory, aka "Microsoft Outloo… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-11774 2024-11-21 12:08 2017-10-13 Show GitHub Exploit DB Packet Storm