Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227391 7.5 危険 web wiz forums - Web Wiz Forums の forum/search.asp における SQL インジェクションの脆弱性 - CVE-2006-5635 2012-12-20 18:02 2006-10-31 Show GitHub Exploit DB Packet Storm
227392 6.8 警告 phpprofiles - phpProfiles における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2006-5634 2012-12-20 18:02 2006-10-31 Show GitHub Exploit DB Packet Storm
227393 7.5 危険 unisor cms - UNISOR CMS の login.asp における SQL インジェクションの脆弱性 - CVE-2006-5628 2012-12-20 18:02 2006-10-31 Show GitHub Exploit DB Packet Storm
227394 7.5 危険 qnecms - QnECMS における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5627 2012-12-20 18:02 2006-10-31 Show GitHub Exploit DB Packet Storm
227395 4.3 警告 phpfaber - phpFaber CMS の cms_images/js/htmlarea/htmlarea.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-5626 2012-12-20 18:02 2006-10-31 Show GitHub Exploit DB Packet Storm
227396 7.5 危険 thepeak - Thepeak File Upload Manager の index.php におけるディレクトリトラバーサルの脆弱性 - CVE-2006-5617 2012-12-20 18:02 2006-10-30 Show GitHub Exploit DB Packet Storm
227397 7.5 危険 Textpattern - Textpattern の publish.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5615 2012-12-20 18:02 2006-10-30 Show GitHub Exploit DB Packet Storm
227398 10 危険 東芝 - Toshiba Bluetooth スタックにおける脆弱性 CWE-noinfo
情報不足 		CVE-2006-5611 2012-12-20 18:02 2006-10-30 Show GitHub Exploit DB Packet Storm
227399 5 警告 TorrentFlux - TorrentFlux の dir.php におけるディレクトリトラバーサルの脆弱性 - CVE-2006-5609 2012-12-20 18:02 2006-10-30 Show GitHub Exploit DB Packet Storm
227400 6.8 警告 phpcards - phpCards の phpcards.footer.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-5605 2012-12-20 18:02 2006-10-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 25, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
198121 6.5 MEDIUM
Network 		libtiff libtiff There is a reachable assertion abort in the function TIFFWriteDirectorySec() in LibTIFF 4.0.8, related to tif_dirwrite.c and a SubIFD tag. A crafted input will lead to a remote denial of service atta… CWE-617
 Reachable Assertion 		CVE-2017-13726 2024-11-21 12:11 2017-08-29 Show GitHub Exploit DB Packet Storm
198122 5.5 MEDIUM
Local 		sqlite sqlite The dump_callback function in SQLite 3.20.0 allows remote attackers to cause a denial of service (EXC_BAD_ACCESS and application crash) via a crafted file. CWE-20
 Improper Input Validation  		CVE-2017-13685 2024-11-21 12:11 2017-08-29 Show GitHub Exploit DB Packet Storm
198123 9.8 CRITICAL
Network 		linux linux_kernel The __skb_flow_dissect function in net/core/flow_dissector.c in the Linux kernel before 4.3 does not ensure that n_proto, ip_proto, and thoff are initialized, which allows remote attackers to cause a… CWE-665
 Improper Initialization 		CVE-2017-13715 2024-11-21 12:11 2017-08-29 Show GitHub Exploit DB Packet Storm
198124 5.5 MEDIUM
Local 		gnu binutils The C++ symbol demangler routine in cplus-dem.c in libiberty, as distributed in GNU Binutils 2.29, allows remote attackers to cause a denial of service (excessive memory allocation and application cr… CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2017-13716 2024-11-21 12:11 2017-08-29 Show GitHub Exploit DB Packet Storm
198125 7.5 HIGH
Network 		lame_project lame NULL Pointer Dereference in the id3v2AddAudioDuration function in libmp3lame/id3tag.c in LAME 3.99.5 allows attackers to perform Denial of Service by triggering a NULL first argument. CWE-476
 NULL Pointer Dereference 		CVE-2017-13712 2024-11-21 12:11 2017-08-29 Show GitHub Exploit DB Packet Storm
198126 7.5 HIGH
Network 		gnu binutils The setup_group function in elf.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29, allows remote attackers to cause a denial of service (NULL pointer der… CWE-476
 NULL Pointer Dereference 		CVE-2017-13710 2024-11-21 12:11 2017-08-28 Show GitHub Exploit DB Packet Storm
198127 7.5 HIGH
Network 		flightgear flightgear In FlightGear before version 2017.3.1, Main/logger.cxx in the FGLogger subsystem allows one to overwrite any file via a resource that affects the contents of the global Property Tree. CWE-20
 Improper Input Validation  		CVE-2017-13709 2024-11-21 12:11 2017-08-28 Show GitHub Exploit DB Packet Storm
198128 9.8 CRITICAL
Network 		axcient replibit Privilege escalation in Replibit Backup Manager earlier than version 2017.08.04 allows attackers to gain root privileges via sudo command execution. The vi program can be accessed through sudo, in or… CWE-269
 Improper Privilege Management 		CVE-2017-13707 2024-11-21 12:11 2017-08-28 Show GitHub Exploit DB Packet Storm
198129 6.1 MEDIUM
Network 		finecms_project finecms controllers/member/api.php in dayrui FineCms 5.0.11 has XSS related to the dirname variable. CWE-79
Cross-site Scripting 		CVE-2017-13697 2024-11-21 12:11 2017-08-26 Show GitHub Exploit DB Packet Storm
198130 5.5 MEDIUM
Local 		linux linux_kernel The acpi_ns_evaluate() function in drivers/acpi/acpica/nseval.c in the Linux kernel through 4.12.9 does not flush the operand cache and causes a kernel stack dump, which allows local users to obtain … CWE-200
Information Exposure 		CVE-2017-13695 2024-11-21 12:11 2017-08-25 Show GitHub Exploit DB Packet Storm