Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
227381	4.3	警告	サン・マイクロシステムズ	-	Sun iPlanet Messaging Server Messenger Express におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-5652	2012-12-20 18:02	2006-11-2	Show	GitHub Exploit DB Packet Storm

227382	4.6	警告	Canonical	-	PPC 用の Ubuntu におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-5649	2012-12-20 18:02	2006-12-13	Show	GitHub Exploit DB Packet Storm

227383	4.6	警告	Canonical	-	PPC 用の Ubuntu Linux におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-5648	2012-12-20 18:02	2006-12-13	Show	GitHub Exploit DB Packet Storm

227384	6.4	警告	ソフォス	-	Sophos Anti-Virus などのプラットフォーム用の Anti-Virus におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2006-5647	2012-12-20 18:02	2006-11-1	Show	GitHub Exploit DB Packet Storm

227385	5	警告	ソフォス	-	Sophos Anti-Virus などのプラットフォーム用の Anti-Virus におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2006-5646	2012-12-20 18:02	2006-11-1	Show	GitHub Exploit DB Packet Storm

227386	5	警告	ソフォス	-	Sophos Anti-Virus 用などの Anti-Virus におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2006-5645	2012-12-20 18:02	2006-11-1	Show	GitHub Exploit DB Packet Storm

227387	7.5	危険	techno dreams	-	Techno Dreams Announcement の MainAnnounce2.asp における SQL インジェクションの脆弱性	-	CVE-2006-5641	2012-12-20 18:02	2006-10-31	Show	GitHub Exploit DB Packet Storm

227388	7.5	危険	techno dreams	-	Techno Dreams Guest Book の guestbookview.asp における SQL インジェクションの脆弱性	-	CVE-2006-5640	2012-12-20 18:02	2006-10-31	Show	GitHub Exploit DB Packet Storm

227389	7.5	危険	phpmyring	-	PHPMyRing の cherche.php における SQL インジェクションの脆弱性	-	CVE-2006-5638	2012-12-20 18:02	2006-10-31	Show	GitHub Exploit DB Packet Storm

227390	5.1	警告	sws	-	SWS の common.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5636	2012-12-20 18:02	2006-10-31	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 23, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
198501	9.8	CRITICAL Network	humaxdigital	hg100r_firmware	The Humax Wi-Fi Router model HG100R-* 2.0.6 is prone to an authentication bypass vulnerability via specially crafted requests to the management console. The bug is exploitable remotely when the route…	CWE-200 Information Exposure	CVE-2017-11435	2024-11-21 12:07	2017-07-19	Show	GitHub Exploit DB Packet Storm

198502	7.5	HIGH Network	wireshark	wireshark	In Wireshark through 2.0.13 and 2.2.x through 2.2.7, the openSAFETY dissector could crash or exhaust system memory. This was addressed in epan/dissectors/packet-opensafety.c by adding length validati…	CWE-20 Improper Input Validation	CVE-2017-11411	2024-11-21 12:07	2017-07-19	Show	GitHub Exploit DB Packet Storm

198503	7.5	HIGH Network	wireshark	wireshark	In Wireshark through 2.0.13 and 2.2.x through 2.2.7, the WBXML dissector could go into an infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissecto…	CWE-20 CWE-835 Improper Input Validation Loop with Unreachable Exit Condition ('Infinite Loop')	CVE-2017-11410	2024-11-21 12:07	2017-07-19	Show	GitHub Exploit DB Packet Storm

198504	7.5	HIGH Network	wireshark debian	wireshark debian_linux	In Wireshark 2.0.0 to 2.0.13, the GPRS LLC dissector could go into a large loop. This was addressed in epan/dissectors/packet-gprs-llc.c by using a different integer data type.	CWE-834 Excessive Iteration	CVE-2017-11409	2024-11-21 12:07	2017-07-19	Show	GitHub Exploit DB Packet Storm

198505	7.5	HIGH Network	wireshark	wireshark	In Wireshark 2.2.0 to 2.2.7 and 2.0.0 to 2.0.13, the AMQP dissector could crash. This was addressed in epan/dissectors/packet-amqp.c by checking for successful list dissection.	CWE-20 Improper Input Validation	CVE-2017-11408	2024-11-21 12:07	2017-07-19	Show	GitHub Exploit DB Packet Storm

198506	7.5	HIGH Network	wireshark debian	wireshark debian_linux	In Wireshark 2.2.0 to 2.2.7 and 2.0.0 to 2.0.13, the MQ dissector could crash. This was addressed in epan/dissectors/packet-mq.c by validating the fragment length before a reassembly attempt.	CWE-20 Improper Input Validation	CVE-2017-11407	2024-11-21 12:07	2017-07-19	Show	GitHub Exploit DB Packet Storm

198507	7.5	HIGH Network	wireshark debian	wireshark debian_linux	In Wireshark 2.2.0 to 2.2.7 and 2.0.0 to 2.0.13, the DOCSIS dissector could go into an infinite loop. This was addressed in plugins/docsis/packet-docsis.c by rejecting invalid Frame Control parameter…	CWE-835 Loop with Unreachable Exit Condition ('Infinite Loop')	CVE-2017-11406	2024-11-21 12:07	2017-07-19	Show	GitHub Exploit DB Packet Storm

198508	5.5	MEDIUM Local	libmspack_project	libmspack	The cabd_read_string function in mspack/cabd.c in libmspack 0.5alpha, as used in ClamAV 0.99.2 and other products, allows remote attackers to cause a denial of service (stack-based buffer over-read a…	CWE-125 Out-of-bounds Read	CVE-2017-11423	2024-11-21 12:07	2017-07-19	Show	GitHub Exploit DB Packet Storm

198509	7.8	HIGH Local	gnome-exe-thumbnailer_project	gnome-exe-thumbnailer	gnome-exe-thumbnailer before 0.9.5 is prone to a VBScript Injection when generating thumbnails for MSI files, aka the "Bad Taste" issue. There is a local attack if the victim uses the GNOME Files fil…	CWE-94 Code Injection	CVE-2017-11421	2024-11-21 12:07	2017-07-19	Show	GitHub Exploit DB Packet Storm

198510	9.8	CRITICAL Network	fiyo	fiyo_cms	Fiyo CMS 2.0.7 has SQL injection in /apps/app_article/controller/editor.php via $_POST['id'] and $_POST['art_title'].	CWE-89 SQL Injection	CVE-2017-11419	2024-11-21 12:07	2017-07-18	Show	GitHub Exploit DB Packet Storm