Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227781 7.5 危険 zonemetrics - ZoneMetrics ZoneX Publishers Gold Edition の includes/usercp_register.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4036 2012-12-20 18:02 2006-08-9 Show GitHub Exploit DB Packet Storm
227782 10 危険 WordPress.org - WordPress における脆弱性 CWE-noinfo
情報不足 		CVE-2006-4028 2012-12-20 18:02 2006-07-29 Show GitHub Exploit DB Packet Storm
227783 7.5 危険 Red Graphic Systems - SAPID CMS における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2006-4026 2012-12-20 18:02 2006-08-8 Show GitHub Exploit DB Packet Storm
227784 7.5 危険 xennobb - XennoBB の profile.php における SQL インジェクションの脆弱性 - CVE-2006-4025 2012-12-20 18:02 2006-08-8 Show GitHub Exploit DB Packet Storm
227785 2.6 注意 scatterchat - ScatterChat の cryptographic モジュールにおける大量のメッセージのパターンを特定される脆弱性 - CVE-2006-4021 2012-12-20 18:02 2006-08-17 Show GitHub Exploit DB Packet Storm
227786 4.3 警告 toenda software development - toendaCMS stable および unstable の /toendaCMS におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-4016 2012-12-20 18:02 2006-08-7 Show GitHub Exploit DB Packet Storm
227787 5 警告 シマンテック - SBAS におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-4014 2012-12-20 18:02 2006-07-27 Show GitHub Exploit DB Packet Storm
227788 7.6 危険 シマンテック - SBAS におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2006-4013 2012-12-20 18:02 2006-07-27 Show GitHub Exploit DB Packet Storm
227789 5.1 警告 savewebportal - circeOS SaveWeb Portal における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4012 2012-12-20 18:02 2006-08-7 Show GitHub Exploit DB Packet Storm
227790 7.5 危険 VWar - Vwar の war.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2006-4010 2012-12-20 18:02 2006-08-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 23, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
198021 6.5 MEDIUM
Network 		mindwerks wildmidi The _WM_SetupMidiEvent function in internal_midi.c:2122 in WildMIDI 0.4.2 can cause a denial of service (invalid memory read and application crash) via a crafted mid file. CWE-125
Out-of-bounds Read 		CVE-2017-11664 2024-11-21 12:08 2017-08-18 Show GitHub Exploit DB Packet Storm
198022 6.5 MEDIUM
Network 		mindwerks wildmidi The _WM_SetupMidiEvent function in internal_midi.c:2315 in WildMIDI 0.4.2 can cause a denial of service (invalid memory read and application crash) via a crafted mid file. CWE-125
Out-of-bounds Read 		CVE-2017-11663 2024-11-21 12:08 2017-08-18 Show GitHub Exploit DB Packet Storm
198023 7.5 HIGH
Network 		mindwerks wildmidi The _WM_ParseNewMidi function in f_midi.c in WildMIDI 0.4.2 can cause a denial of service (invalid memory read and application crash) via a crafted mid file. CWE-125
Out-of-bounds Read 		CVE-2017-11662 2024-11-21 12:08 2017-08-18 Show GitHub Exploit DB Packet Storm
198024 7.5 HIGH
Network 		mindwerks wildmidi The _WM_SetupMidiEvent function in internal_midi.c:2318 in WildMIDI 0.4.2 can cause a denial of service (invalid memory read and application crash) via a crafted mid file. CWE-125
Out-of-bounds Read 		CVE-2017-11661 2024-11-21 12:08 2017-08-18 Show GitHub Exploit DB Packet Storm
198025 8.8 HIGH
Local 		hashicorp vagrant_vmware_fusion HashiCorp Vagrant VMware Fusion plugin (aka vagrant-vmware-fusion) before 4.0.24 uses weak permissions for the sudo helper scripts, allows local users to execute arbitrary code with root privileges b… CWE-276
Incorrect Default Permissions  		CVE-2017-11741 2024-11-21 12:08 2017-08-9 Show GitHub Exploit DB Packet Storm
198026 7.3 HIGH
Local 		dashlane dashlane Dashlane might allow local users to gain privileges by placing a Trojan horse WINHTTP.dll in the %APPDATA%\Dashlane directory. CWE-426
 Untrusted Search Path 		CVE-2017-11657 2024-11-21 12:08 2017-08-4 Show GitHub Exploit DB Packet Storm
198027 9.8 CRITICAL
Network 		ioquake3 ioquake3 Buffer overflow in ioquake3 before 2017-08-02 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted packet. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-11721 2024-11-21 12:08 2017-08-3 Show GitHub Exploit DB Packet Storm
198028 6.5 MEDIUM
Network 		libquicktime libquicktime In libquicktime 1.2.4, an allocation failure was found in the function quicktime_read_ftyp in ftyp.c, which allows attackers to cause a denial of service via a crafted file. CWE-20
 Improper Input Validation  		CVE-2017-12145 2024-11-21 12:08 2017-08-2 Show GitHub Exploit DB Packet Storm
198029 5.5 MEDIUM
Local 		ytnef_project ytnef In ytnef 1.9.2, an allocation failure was found in the function TNEFFillMapi in ytnef.c, which allows attackers to cause a denial of service via a crafted file. CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2017-12144 2024-11-21 12:08 2017-08-2 Show GitHub Exploit DB Packet Storm
198030 6.5 MEDIUM
Network 		libquicktime libquicktime In libquicktime 1.2.4, an allocation failure was found in the function quicktime_read_info in lqt_quicktime.c, which allows attackers to cause a denial of service via a crafted file. CWE-20
 Improper Input Validation  		CVE-2017-12143 2024-11-21 12:08 2017-08-2 Show GitHub Exploit DB Packet Storm