Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227371 6 警告 WordPress.org - WordPress の plugins/wp-db-backup.php におけるディレクトリトラバーサルの脆弱性 - CVE-2006-5705 2012-12-20 18:02 2006-10-27 Show GitHub Exploit DB Packet Storm
227372 4.3 警告 Tiki Software Community Association - Tikiwiki の featured_link.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2006-5703 2012-12-20 18:02 2006-11-3 Show GitHub Exploit DB Packet Storm
227373 5 警告 Tiki Software Community Association - Tikiwiki における重要な情報 (MySQL ユーザ名およびパスワード) を取得される脆弱性 CWE-200
情報漏えい 		CVE-2006-5702 2012-12-20 18:02 2006-11-3 Show GitHub Exploit DB Packet Storm
227374 6.4 警告 uni-vert - Uni-Vert PhpLeague の consult/classement.php における SQL インジェクションの脆弱性 - CVE-2006-5676 2012-12-20 18:02 2006-11-2 Show GitHub Exploit DB Packet Storm
227375 7.5 危険 spider friendly - phpBB モジュール Spider Friendly の admin/modules_data.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5665 2012-12-20 18:02 2006-11-2 Show GitHub Exploit DB Packet Storm
227376 6.8 警告 virtech - VIRtech Netquery の nquser.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-5661 2012-12-20 18:02 2006-11-2 Show GitHub Exploit DB Packet Storm
227377 7.6 危険 studio achtundachtzig - BlooMooWeb ActiveX コントロールにおける任意のファイルをダウンロードされる脆弱性 - CVE-2006-5658 2012-12-20 18:02 2006-11-2 Show GitHub Exploit DB Packet Storm
227378 10 危険 vilistextum - Vilistextum の src/text.c における脆弱性 - CVE-2006-5657 2012-12-20 18:02 2006-11-2 Show GitHub Exploit DB Packet Storm
227379 5 警告 vilistextum - Vilistextum の src/util.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2006-5656 2012-12-20 18:02 2006-11-2 Show GitHub Exploit DB Packet Storm
227380 4.3 警告 サン・マイクロシステムズ - Sun Java System Messenger Express の index スクリプトにおけるクロスサイトスクリプティングの脆弱性 - CVE-2006-5653 2012-12-20 18:02 2006-11-2 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 25, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
198131 5.5 MEDIUM
Local 		linux linux_kernel The acpi_ps_complete_final_op() function in drivers/acpi/acpica/psobject.c in the Linux kernel through 4.12.9 does not flush the node and node_ext caches and causes a kernel stack dump, which allows … CWE-200
Information Exposure 		CVE-2017-13694 2024-11-21 12:11 2017-08-25 Show GitHub Exploit DB Packet Storm
198132 5.5 MEDIUM
Local 		linux linux_kernel The acpi_ds_create_operands() function in drivers/acpi/acpica/dsutils.c in the Linux kernel through 4.12.9 does not flush the operand cache and causes a kernel stack dump, which allows local users to… CWE-200
Information Exposure 		CVE-2017-13693 2024-11-21 12:11 2017-08-25 Show GitHub Exploit DB Packet Storm
198133 7.5 HIGH
Network 		htacg tidy In Tidy 5.5.31, the IsURLCodePoint function in attrs.c allows attackers to cause a denial of service (Segmentation Fault), as demonstrated by an invalid ISALNUM argument. CWE-20
 Improper Input Validation  		CVE-2017-13692 2024-11-21 12:11 2017-08-25 Show GitHub Exploit DB Packet Storm
198134 7.8 HIGH
Local 		linux linux_kernel net/ipv4/route.c in the Linux kernel 4.13-rc1 through 4.13-rc6 is too late to check for a NULL fi field when RTM_F_FIB_MATCH is set, which allows local users to cause a denial of service (NULL pointe… CWE-476
 NULL Pointer Dereference 		CVE-2017-13686 2024-11-21 12:11 2017-08-25 Show GitHub Exploit DB Packet Storm
198135 6.1 MEDIUM
Network 		misp misp app/View/Helper/CommandHelper.php in MISP before 2.4.79 has persistent XSS via comments. It only impacts the users of the same instance because the comment field is not part of the MISP synchronisati… CWE-79
Cross-site Scripting 		CVE-2017-13671 2024-11-21 12:11 2017-08-25 Show GitHub Exploit DB Packet Storm
198136 9.8 CRITICAL
Network 		nexusphp nexusphp SQL Injection exists in NexusPHP 1.5.beta5.20120707 via the setanswered parameter to staffbox.php. CWE-89
SQL Injection 		CVE-2017-13669 2024-11-21 12:11 2017-08-25 Show GitHub Exploit DB Packet Storm
198137 5.5 MEDIUM
Local 		multicorewareinc x265 An integer underflow vulnerability exists in pixel-a.asm, the x86 assembly code for planeClipAndMax() in MulticoreWare x265 through 2.5, as used in libbpg and other products. A small height value can… CWE-191
 Integer Underflow (Wrap or Wraparound) 		CVE-2017-13666 2024-11-21 12:11 2017-08-24 Show GitHub Exploit DB Packet Storm
198138 6.5 MEDIUM
Network 		imagemagick imagemagick In ImageMagick before 6.9.9-3 and 7.x before 7.0.6-3, there is a missing NULL check in the ReadMATImage function in coders/mat.c, leading to a denial of service (assertion failure and application exi… CWE-617
 Reachable Assertion 		CVE-2017-13658 2024-11-21 12:11 2017-08-24 Show GitHub Exploit DB Packet Storm
198139 5.5 MEDIUM
Local 		unrealircd unrealircd UnrealIRCd 4.0.13 and earlier creates a PID file after dropping privileges to a non-root account, which might allow local users to kill arbitrary processes by leveraging access to this non-root accou… CWE-665
 Improper Initialization 		CVE-2017-13649 2024-11-21 12:11 2017-08-24 Show GitHub Exploit DB Packet Storm
198140 6.5 MEDIUM
Network 		graphicsmagick graphicsmagick In GraphicsMagick 1.3.26, a memory leak vulnerability was found in the function ReadMATImage in coders/mat.c. CWE-772
 Missing Release of Resource after Effective Lifetime 		CVE-2017-13648 2024-11-21 12:11 2017-08-24 Show GitHub Exploit DB Packet Storm