Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
227481	7.5	危険	sh-news	-	SH-News における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5282	2012-12-20 18:02	2006-10-13	Show	GitHub Exploit DB Packet Storm

227482	7.5	危険	phpmyagenda	-	phpMyAgenda の templates/header.php3 におけるディレクトリトラバーサルの脆弱性	-	CVE-2006-5263	2012-12-20 18:02	2006-10-12	Show	GitHub Exploit DB Packet Storm

227483	7.5	危険	phpmynews	-	PHPMyNews における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5261	2012-12-20 18:02	2006-10-12	Show	GitHub Exploit DB Packet Storm

227484	5.1	警告	webmedia explorer	-	Webmedia Explorer の includes/core.lib.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5252	2012-12-20 18:02	2006-10-12	Show	GitHub Exploit DB Packet Storm

227485	7.5	危険	tagit	-	tagit2b の tagmin/delTagUser.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5249	2012-12-20 18:02	2006-10-11	Show	GitHub Exploit DB Packet Storm

227486	7.8	危険	Polycom	-	Polycom SoundPoint IP 301 VoIP Desktop Phone におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-5233	2012-12-20 18:02	2006-10-10	Show	GitHub Exploit DB Packet Storm

227487	7.5	危険	rob hensley	-	Rob Hensley ackerTodo の Google Gadget login.php における SQL インジェクションの脆弱性	-	CVE-2006-5228	2012-12-20 18:02	2006-10-10	Show	GitHub Exploit DB Packet Storm

227488	6.8	警告	TorrentFlux	-	TorrentFlux の admin.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-5227	2012-12-20 18:02	2006-10-10	Show	GitHub Exploit DB Packet Storm

227489	7.5	危険	sergey lyubka	-	Sergey Lyubka Simple HTTPD におけるスタックベースのバッファオーバーフローの脆弱性	-	CVE-2006-5216	2012-12-20 18:02	2006-10-10	Show	GitHub Exploit DB Packet Storm

227490	5	警告	トレンドマイクロ	-	SMB および OSCE 用の CSM Suite におけるファイルを削除される脆弱性	-	CVE-2006-5212	2012-12-20 18:02	2006-04-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 26, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
211841	9.8	CRITICAL Network	php	php	Zend/zend_exceptions.c in PHP before 5.4.44, 5.5.x before 5.5.28, and 5.6.x before 5.6.12 does not validate certain Exception objects, which allows remote attackers to cause a denial of service (NULL…	NVD-CWE-Other	CVE-2015-8876	2024-11-21 11:39	2016-05-22	Show	GitHub Exploit DB Packet Storm

211842	7.5	HIGH Network	php canonical	php ubuntu_linux	The openssl_random_pseudo_bytes function in ext/openssl/openssl.c in PHP before 5.4.44, 5.5.x before 5.5.28, and 5.6.x before 5.6.12 incorrectly relies on the deprecated RAND_pseudo_bytes function, w…	CWE-310 Cryptographic Issues	CVE-2015-8867	2024-11-21 11:39	2016-05-22	Show	GitHub Exploit DB Packet Storm

211843	9.6	CRITICAL Network	php canonical suse opensuse	php ubuntu_linux linux_enterprise_software_development_kit linux_enterprise_module_for_web_scripting leap opensuse	ext/libxml/libxml.c in PHP before 5.5.22 and 5.6.x before 5.6.6, when PHP-FPM is used, does not isolate each thread from libxml_disable_entity_loader changes in other threads, which allows remote att…	CWE-611 XXE	CVE-2015-8866	2024-11-21 11:39	2016-05-22	Show	GitHub Exploit DB Packet Storm

211844	6.1	MEDIUM Network	wordpress	wordpress	Cross-site scripting (XSS) vulnerability in wp-includes/wp-db.php in WordPress before 4.2.2 allows remote attackers to inject arbitrary web script or HTML via a long comment that is improperly stored…	CWE-79 Cross-site Scripting	CVE-2015-8834	2024-11-21 11:39	2016-05-22	Show	GitHub Exploit DB Packet Storm

211845	7.3	HIGH Local	php apple	php mac_os_x	The file_check_mem function in funcs.c in file before 5.23, as used in the Fileinfo component in PHP before 5.5.34, 5.6.x before 5.6.20, and 7.x before 7.0.5, mishandles continuation-level jumps, whi…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2015-8865	2024-11-21 11:39	2016-05-20	Show	GitHub Exploit DB Packet Storm

211846	7.5	HIGH Network	opensuse php	leap php	Stack consumption vulnerability in GD in PHP before 5.6.12 allows remote attackers to cause a denial of service via a crafted imagefilltoborder call.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2015-8874	2024-11-21 11:39	2016-05-16	Show	GitHub Exploit DB Packet Storm

211847	7.5	HIGH Network	php opensuse	php leap	Stack consumption vulnerability in Zend/zend_exceptions.c in PHP before 5.4.44, 5.5.x before 5.5.28, and 5.6.x before 5.6.12 allows remote attackers to cause a denial of service (segmentation fault) …	CWE-20 Improper Input Validation	CVE-2015-8873	2024-11-21 11:39	2016-05-16	Show	GitHub Exploit DB Packet Storm

211848	5.9	MEDIUM Network	php	php	ext/mysqlnd/mysqlnd.c in PHP before 5.4.43, 5.5.x before 5.5.27, and 5.6.x before 5.6.11 uses a client SSL option to mean that SSL is optional, which allows man-in-the-middle attackers to spoof serve…	CWE-284 Improper Access Control	CVE-2015-8838	2024-11-21 11:39	2016-05-16	Show	GitHub Exploit DB Packet Storm

211849	9.8	CRITICAL Network	php	php	The make_http_soap_request function in ext/soap/php_http.c in PHP before 5.4.44, 5.5.x before 5.5.28, and 5.6.x before 5.6.12 does not properly retrieve keys, which allows remote attackers to cause a…	NVD-CWE-Other	CVE-2015-8835	2024-11-21 11:39	2016-05-16	Show	GitHub Exploit DB Packet Storm

211850	7.8	HIGH Local	fedoraproject debian canonical freedesktop	fedora debian_linux ubuntu_linux poppler	Heap-based buffer overflow in the ExponentialFunction::ExponentialFunction function in Poppler before 0.40.0 allows remote attackers to cause a denial of service (memory corruption and crash) or poss…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2015-8868	2024-11-21 11:39	2016-05-7	Show	GitHub Exploit DB Packet Storm