Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227691 7.5 危険 phpecard - phpECard の functions.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4456 2012-12-20 18:02 2006-08-31 Show GitHub Exploit DB Packet Storm
227692 4.3 警告 PmWiki - PmWiki におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-4453 2012-12-20 18:02 2006-08-30 Show GitHub Exploit DB Packet Storm
227693 7.5 危険 web3king - Web3news の security/include/_class.security.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4452 2012-12-20 18:02 2006-08-30 Show GitHub Exploit DB Packet Storm
227694 5.1 警告 phpBB - PHPBB の usercp_avatar.php における Web のプロキシとしてサーバが使用される脆弱性 - CVE-2006-4450 2012-12-20 18:02 2006-08-29 Show GitHub Exploit DB Packet Storm
227695 7.2 危険 X.Org Foundation - libX11 などを含む X.Org および XFree86 における権限を取得される脆弱性 - CVE-2006-4447 2012-12-20 18:02 2006-08-29 Show GitHub Exploit DB Packet Storm
227696 7.5 危険 venture nine - Tagger LE における任意の PHP コードを実行される脆弱性 - CVE-2006-4437 2012-12-20 18:02 2006-09-14 Show GitHub Exploit DB Packet Storm
227697 7.5 危険 Zend Technologies Ltd. - Zend Platform におけるディレクトリトラバーサルの脆弱性 - CVE-2006-4432 2012-12-20 18:02 2006-08-28 Show GitHub Exploit DB Packet Storm
227698 7.5 危険 Zend Technologies Ltd. - Zend Platform の Session Clustering Daemon および mod_cluster モジュールにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2006-4431 2012-12-20 18:02 2006-08-28 Show GitHub Exploit DB Packet Storm
227699 4.3 警告 yapig - YaPIG の template/default/thanks_comment.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-4421 2012-12-20 18:02 2006-08-28 Show GitHub Exploit DB Packet Storm
227700 7.5 危険 promanager - ProManager の note.php における SQL インジェクションの脆弱性 - CVE-2006-4419 2012-12-20 18:02 2006-08-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 26, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
197711 6.5 MEDIUM
Network 		graphicsmagick graphicsmagick The ReadSUNImage function in coders/sun.c in GraphicsMagick 1.3.26 has an issue where memory allocation is excessive because it depends only on a length field in a header. This may lead to remote den… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-14165 2024-11-21 12:12 2017-09-7 Show GitHub Exploit DB Packet Storm
197712 8.8 HIGH
Network 		uclouvain openjpeg A size-validation issue was discovered in opj_j2k_write_sot in lib/openjp2/j2k.c in OpenJPEG 2.2.0. The vulnerability causes an out-of-bounds write, which may lead to remote denial of service (heap-b… CWE-119
CWE-787
Incorrect Access of Indexable Resource ('Range Error') 
 Out-of-bounds Write 		CVE-2017-14164 2024-11-21 12:12 2017-09-7 Show GitHub Exploit DB Packet Storm
197713 4.7 MEDIUM
Local 		openldap
oracle 		openldap
blockchain_platform 		slapd in OpenLDAP 2.4.45 and earlier creates a PID file after dropping privileges to a non-root account, which might allow local users to kill arbitrary processes by leveraging access to this non-roo… CWE-665
 Improper Initialization 		CVE-2017-14159 2024-11-21 12:12 2017-09-6 Show GitHub Exploit DB Packet Storm
197714 7.5 HIGH
Network 		scrapy scrapy Scrapy 1.4 allows remote attackers to cause a denial of service (memory consumption) via large files because arbitrarily many files are read into memory, which is especially problematic if the files … CWE-400
 Uncontrolled Resource Consumption 		CVE-2017-14158 2024-11-21 12:12 2017-09-6 Show GitHub Exploit DB Packet Storm
197715 5.5 MEDIUM
Local 		linux linux_kernel The atyfb_ioctl function in drivers/video/fbdev/aty/atyfb_base.c in the Linux kernel through 4.12.10 does not initialize a certain data structure, which allows local users to obtain sensitive informa… CWE-200
Information Exposure 		CVE-2017-14156 2024-11-21 12:12 2017-09-6 Show GitHub Exploit DB Packet Storm
197716 8.8 HIGH
Network 		uclouvain
debian 		openjpeg
debian_linux 		A mishandled zero case was discovered in opj_j2k_set_cinema_parameters in lib/openjp2/j2k.c in OpenJPEG 2.2.0. The vulnerability causes an out-of-bounds write, which may lead to remote denial of serv… CWE-787
 Out-of-bounds Write 		CVE-2017-14152 2024-11-21 12:12 2017-09-6 Show GitHub Exploit DB Packet Storm
197717 8.8 HIGH
Network 		uclouvain
debian 		openjpeg
debian_linux 		An off-by-one error was discovered in opj_tcd_code_block_enc_allocate_data in lib/openjp2/tcd.c in OpenJPEG 2.2.0. The vulnerability causes an out-of-bounds write, which may lead to remote denial of … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-14151 2024-11-21 12:12 2017-09-6 Show GitHub Exploit DB Packet Storm
197718 7.5 HIGH
Network 		embedthis goahead GoAhead 3.4.0 through 3.6.5 has a NULL Pointer Dereference in the websDecodeUrl function in http.c, leading to a crash for a "POST / HTTP/1.1" request. CWE-476
 NULL Pointer Dereference 		CVE-2017-14149 2024-11-21 12:12 2017-09-5 Show GitHub Exploit DB Packet Storm
197719 8.8 HIGH
Network 		helpdezk helpdezk HelpDEZk 1.1.1 allows remote authenticated users to execute arbitrary PHP code by uploading a .php attachment and then requesting it in the helpdezk\app\uploads\helpdezk\attachments\ directory. CWE-94
Code Injection 		CVE-2017-14146 2024-11-21 12:12 2017-09-5 Show GitHub Exploit DB Packet Storm
197720 9.8 CRITICAL
Network 		helpdezk helpdezk HelpDEZk 1.1.1 has SQL Injection in app\modules\admin\controllers\loginController.php via the admin/login/getWarningInfo/id/ PATH_INFO, related to the selectWarning function. CWE-89
SQL Injection 		CVE-2017-14145 2024-11-21 12:12 2017-09-5 Show GitHub Exploit DB Packet Storm