Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
227561	5	警告	walter beschmout	-	Walter Beschmout PhpQuiz の back/upload_img.php などにおける任意の PHP コードをアップロードされる脆弱性	-	CVE-2006-4977	2012-12-20 18:02	2006-09-24	Show	GitHub Exploit DB Packet Storm

227562	2.6	注意	Yahoo!	-	WAP 用の Yahoo! Messenger における任意の Web スクリプトまたは HTML を挿入される脆弱性	-	CVE-2006-4975	2012-12-20 18:02	2006-09-24	Show	GitHub Exploit DB Packet Storm

227563	7.5	危険	wahm e-commerce	-	WAHM E-Commerce Pie Cart Pro の enc/content.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4970	2012-12-20 18:02	2006-09-24	Show	GitHub Exploit DB Packet Storm

227564	7.5	危険	wahm e-commerce	-	WAHM E-Commerce Pie Cart Pro における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4969	2012-12-20 18:02	2006-09-24	Show	GitHub Exploit DB Packet Storm

227565	7.5	危険	postnuke software foundation	-	PNphpBB の includes/functions_admin.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4968	2012-12-20 18:02	2006-09-24	Show	GitHub Exploit DB Packet Storm

227566	5	警告	サン・マイクロシステムズ	-	SSGD におけるホスト名などを含む重要な情報を取得される脆弱性	-	CVE-2006-4959	2012-12-20 18:02	2006-09-23	Show	GitHub Exploit DB Packet Storm

227567	6.8	警告	サン・マイクロシステムズ	-	SSGD におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-4958	2012-12-20 18:02	2006-09-23	Show	GitHub Exploit DB Packet Storm

227568	7.5	危険	the myreview system	-	MyReview の functions.php における SQL インジェクションの脆弱性	-	CVE-2006-4957	2012-12-20 18:02	2006-09-23	Show	GitHub Exploit DB Packet Storm

227569	7.5	危険	prosysinfo	-	ProSysInfo TFTP Server TFTPDWIN の tftpd.exe におけるスタックベースのバッファオーバーフローの脆弱性	-	CVE-2006-4948	2012-12-20 18:02	2006-09-22	Show	GitHub Exploit DB Packet Storm

227570	4.6	警告	シマンテック	-	Symantec AntiVirus などの製品で使用される NAVENG などのデバイスドライバにおける権限を取得される脆弱性	-	CVE-2006-4927	2012-12-20 18:02	2006-10-4	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 21, 2026, 4:10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
198581	7.5	HIGH Network	php	php	In PHP before 5.6.31, 7.x before 7.0.21, and 7.1.x before 7.1.7, an error in the date extension's timelib_meridian parsing code could be used by attackers able to supply date strings to leak informat…	CWE-200 Information Exposure	CVE-2017-11145	2024-11-21 12:07	2017-07-10	Show	GitHub Exploit DB Packet Storm

198582	7.5	HIGH Network	php	php	In PHP before 5.6.31, 7.x before 7.0.21, and 7.1.x before 7.1.7, the openssl extension PEM sealing code did not check the return value of the OpenSSL sealing function, which could lead to a crash of …	CWE-754 Improper Check for Unusual or Exceptional Conditions	CVE-2017-11144	2024-11-21 12:07	2017-07-10	Show	GitHub Exploit DB Packet Storm

198583	7.5	HIGH Network	php	php	In PHP before 5.6.31, an invalid free in the WDDX deserialization of boolean parameters could be used by attackers able to inject XML for deserialization to crash the PHP interpreter, related to an i…	CWE-416 CWE-502 Use After Free Deserialization of Untrusted Data	CVE-2017-11143	2024-11-21 12:07	2017-07-10	Show	GitHub Exploit DB Packet Storm

198584	7.5	HIGH Network	php	php	In PHP before 5.6.31, 7.x before 7.0.17, and 7.1.x before 7.1.3, remote attackers could cause a CPU consumption denial of service attack by injecting long form variables, related to main/php_variable…	CWE-400 Uncontrolled Resource Consumption	CVE-2017-11142	2024-11-21 12:07	2017-07-10	Show	GitHub Exploit DB Packet Storm

198585	6.5	MEDIUM Network	imagemagick	imagemagick	The ReadMATImage function in coders\mat.c in ImageMagick 7.0.5-6 has a memory leak vulnerability that can cause memory exhaustion via a crafted MAT file, related to incorrect ordering of a SetImageEx…	CWE-772 Missing Release of Resource after Effective Lifetime	CVE-2017-11141	2024-11-21 12:07	2017-07-10	Show	GitHub Exploit DB Packet Storm

198586	5.5	MEDIUM Local	graphicsmagick	graphicsmagick	The ReadJPEGImage function in coders/jpeg.c in GraphicsMagick 1.3.26 creates a pixel cache before a successful read of a scanline, which allows remote attackers to cause a denial of service (resource…	CWE-400 CWE-755 Uncontrolled Resource Consumption Improper Handling of Exceptional Conditions	CVE-2017-11140	2024-11-21 12:07	2017-07-10	Show	GitHub Exploit DB Packet Storm

198587	9.8	CRITICAL Network	graphicsmagick debian	graphicsmagick debian_linux	GraphicsMagick 1.3.26 has double free vulnerabilities in the ReadOneJNGImage() function in coders/png.c.	CWE-415 Double Free	CVE-2017-11139	2024-11-21 12:07	2017-07-10	Show	GitHub Exploit DB Packet Storm

198588	5.5	MEDIUM Local	mpg123	mpg123	The III_i_stereo function in libmpg123/layer3.c in mpg123 through 1.25.1 allows remote attackers to cause a denial of service (buffer over-read and application crash) via a crafted audio file that is…	CWE-125 Out-of-bounds Read	CVE-2017-11126	2024-11-21 12:07	2017-07-10	Show	GitHub Exploit DB Packet Storm

198589	9.8	CRITICAL Network	xar_project	xar	libxar.so in xar 1.6.1 has a NULL pointer dereference in the xar_get_path function in util.c.	CWE-476 NULL Pointer Dereference	CVE-2017-11125	2024-11-21 12:07	2017-07-10	Show	GitHub Exploit DB Packet Storm

198590	9.8	CRITICAL Network	xar_project	xar	libxar.so in xar 1.6.1 has a NULL pointer dereference in the xar_unserialize function in archive.c.	CWE-476 NULL Pointer Dereference	CVE-2017-11124	2024-11-21 12:07	2017-07-10	Show	GitHub Exploit DB Packet Storm