Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
227701	4	警告	wikepage	-	Wikepage Opus の index.php におけるディレクトリトラバーサルの脆弱性	-	CVE-2006-4418	2012-12-20 18:02	2006-08-28	Show	GitHub Exploit DB Packet Storm

227702	7.5	危険	XOOPS	-	Xoops の edituser.php における SQL インジェクションの脆弱性	-	CVE-2006-4417	2012-12-20 18:02	2006-08-28	Show	GitHub Exploit DB Packet Storm

227703	7.5	危険	redblog	-	RedBLoG の index.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4366	2012-12-20 18:02	2006-08-26	Show	GitHub Exploit DB Packet Storm

227704	7.5	危険	vistabb	-	VistaBB における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4365	2012-12-20 18:02	2006-08-26	Show	GitHub Exploit DB Packet Storm

227705	5.1	警告	trident software	-	Windows 2000 上で稼動している Trident Software PowerZip におけるスタックベースのバッファオーバーフローの脆弱性	-	CVE-2006-4359	2012-12-20 18:02	2006-08-26	Show	GitHub Exploit DB Packet Storm

227706	5	警告	サン・マイクロシステムズ	-	Sun Java System Content Delivery Server における任意のファイルからデータを読まれる脆弱性	-	CVE-2006-4353	2012-12-20 18:02	2006-08-24	Show	GitHub Exploit DB Packet Storm

227707	7.5	危険	shadows rising rpg	-	Shadows Rising RPG における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4329	2012-12-20 18:02	2006-08-23	Show	GitHub Exploit DB Packet Storm

227708	6.5	警告	texas imperial software	-	WFTPD Server におけるバッファオーバーフローの脆弱性	-	CVE-2006-4318	2012-12-20 18:02	2006-08-23	Show	GitHub Exploit DB Packet Storm

227709	6.8	警告	woltlab	-	WBB の attachment.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-4317	2012-12-20 18:02	2006-08-23	Show	GitHub Exploit DB Packet Storm

227710	7.2	危険	SSH コミュニケーションズ・セキュリティ	-	SSH Tectia Management Agent における root 権限を取得される脆弱性	-	CVE-2006-4316	2012-12-20 18:02	2006-08-23	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 20, 2026, 4:09 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
198751	9.8	CRITICAL Network	irssi	irssi	An issue was discovered in Irssi before 1.0.4. While updating the internal nick list, Irssi could incorrectly use the GHashTable interface and free the nick while updating it. This would then result …	CWE-416 Use After Free	CVE-2017-10966	2024-11-21 12:06	2017-07-7	Show	GitHub Exploit DB Packet Storm

198752	9.8	CRITICAL Network	irssi	irssi	An issue was discovered in Irssi before 1.0.4. When receiving messages with invalid time stamps, Irssi would try to dereference a NULL pointer.	CWE-476 NULL Pointer Dereference	CVE-2017-10965	2024-11-21 12:06	2017-07-7	Show	GitHub Exploit DB Packet Storm

198753	9.8	CRITICAL Network	sqlite	sqlite	The getNodeSize function in ext/rtree/rtree.c in SQLite through 3.19.3, as used in GDAL and other products, mishandles undersized RTree blobs in a crafted database, leading to a heap-based buffer ove…	CWE-125 Out-of-bounds Read	CVE-2017-10989	2024-11-21 12:06	2017-07-7	Show	GitHub Exploit DB Packet Storm

198754	7.5	HIGH Network	yaws	yaws	Yaws 1.91 allows Unauthenticated Remote File Disclosure via HTTP Directory Traversal with /%5C../ to port 8080. NOTE: this CVE is only about use of an initial /%5C sequence to defeat traversal protec…	CWE-22 Path Traversal	CVE-2017-10974	2024-11-21 12:06	2017-07-7	Show	GitHub Exploit DB Packet Storm

198755	9.8	CRITICAL Network	finecms_project	finecms	In FineCMS through 2017-07-07, application\core\controller\template.php allows remote PHP code execution by placing the code after "<?php" in a route=template request.	CWE-94 Code Injection	CVE-2017-10968	2024-11-21 12:06	2017-07-7	Show	GitHub Exploit DB Packet Storm

198756	6.5	MEDIUM Network	finecms_project	finecms	In FineCMS before 2017-07-06, application/lib/ajax/get_image_data.php has SSRF, related to requests for non-image files with a modified HTTP Host header.	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2017-10973	2024-11-21 12:06	2017-07-7	Show	GitHub Exploit DB Packet Storm

198757	6.1	MEDIUM Network	finecms_project	finecms	In FineCMS before 2017-07-06, application\core\controller\config.php allows XSS in the (1) key_name, (2) key_value, and (3) meaning parameters.	CWE-79 Cross-site Scripting	CVE-2017-10967	2024-11-21 12:06	2017-07-7	Show	GitHub Exploit DB Packet Storm

198758	7.5	HIGH Network	swftools	swftools	When SWFTools 0.9.2 processes a crafted file in ttftool, it can lead to a heap-based buffer over-read in the readBlock() function in lib/ttf.c.	CWE-125 Out-of-bounds Read	CVE-2017-10976	2024-11-21 12:06	2017-07-7	Show	GitHub Exploit DB Packet Storm

198759	6.1	MEDIUM Network	lutim_project	lutim	Cross-site scripting (XSS) vulnerability in Lutim before 0.8 might allow remote attackers to inject arbitrary web script or HTML via a crafted filename that is mishandled in an upload notification an…	CWE-79 Cross-site Scripting	CVE-2017-10975	2024-11-21 12:06	2017-07-6	Show	GitHub Exploit DB Packet Storm

198760	6.5	MEDIUM Network	x.org	xorg-server	Uninitialized data in endianness conversion in the XEvent handling of the X.Org X Server before 2017-06-19 allowed authenticated malicious users to access potentially privileged data from the X serve…	CWE-665 Improper Initialization	CVE-2017-10972	2024-11-21 12:06	2017-07-6	Show	GitHub Exploit DB Packet Storm