Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
227781	7.5	危険	zonemetrics	-	ZoneMetrics ZoneX Publishers Gold Edition の includes/usercp_register.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4036	2012-12-20 18:02	2006-08-9	Show	GitHub Exploit DB Packet Storm

227782	10	危険	WordPress.org	-	WordPress における脆弱性	CWE-noinfo 情報不足	CVE-2006-4028	2012-12-20 18:02	2006-07-29	Show	GitHub Exploit DB Packet Storm

227783	7.5	危険	Red Graphic Systems	-	SAPID CMS における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2006-4026	2012-12-20 18:02	2006-08-8	Show	GitHub Exploit DB Packet Storm

227784	7.5	危険	xennobb	-	XennoBB の profile.php における SQL インジェクションの脆弱性	-	CVE-2006-4025	2012-12-20 18:02	2006-08-8	Show	GitHub Exploit DB Packet Storm

227785	2.6	注意	scatterchat	-	ScatterChat の cryptographic モジュールにおける大量のメッセージのパターンを特定される脆弱性	-	CVE-2006-4021	2012-12-20 18:02	2006-08-17	Show	GitHub Exploit DB Packet Storm

227786	4.3	警告	toenda software development	-	toendaCMS stable および unstable の /toendaCMS におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-4016	2012-12-20 18:02	2006-08-7	Show	GitHub Exploit DB Packet Storm

227787	5	警告	シマンテック	-	SBAS におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-4014	2012-12-20 18:02	2006-07-27	Show	GitHub Exploit DB Packet Storm

227788	7.6	危険	シマンテック	-	SBAS におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2006-4013	2012-12-20 18:02	2006-07-27	Show	GitHub Exploit DB Packet Storm

227789	5.1	警告	savewebportal	-	circeOS SaveWeb Portal における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4012	2012-12-20 18:02	2006-08-7	Show	GitHub Exploit DB Packet Storm

227790	7.5	危険	VWar	-	Vwar の war.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2006-4010	2012-12-20 18:02	2006-08-7	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 20, 2026, 4:09 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
198401	6.5	MEDIUM Network	exiv2	exiv2	There is an infinite loop in the Exiv2::Image::printIFDStructure function of image.cpp in Exiv2 0.26. A crafted input will lead to a remote denial of service attack.	CWE-835 Loop with Unreachable Exit Condition ('Infinite Loop')	CVE-2017-11338	2024-11-21 12:07	2017-07-17	Show	GitHub Exploit DB Packet Storm

198402	6.5	MEDIUM Network	exiv2	exiv2	There is an invalid free in the Action::TaskFactory::cleanup function of actions.cpp in Exiv2 0.26. A crafted input will lead to a remote denial of service attack.	CWE-416 Use After Free	CVE-2017-11337	2024-11-21 12:07	2017-07-17	Show	GitHub Exploit DB Packet Storm

198403	6.5	MEDIUM Network	exiv2	exiv2	There is a heap-based buffer over-read in the Image::printIFDStructure function in image.cpp in Exiv2 0.26. A Crafted input will lead to a remote denial of service attack.	CWE-125 Out-of-bounds Read	CVE-2017-11336	2024-11-21 12:07	2017-07-17	Show	GitHub Exploit DB Packet Storm

198404	8.8	HIGH Network	libtiff	libtiff	There is a heap based buffer overflow in tools/tiff2pdf.c of LibTIFF 4.0.8 via a PlanarConfig=Contig image, which causes a more than one hundred bytes out-of-bounds write (related to the ZIPDecode fu…	CWE-787 Out-of-bounds Write	CVE-2017-11335	2024-11-21 12:07	2017-07-17	Show	GitHub Exploit DB Packet Storm

198405	9.8	CRITICAL Network	glpi-project	glpi	GLPI before 9.1.5 allows SQL injection via an ajax/getDropdownValue.php request with an entity_restrict parameter that is not a list of integers.	CWE-89 SQL Injection	CVE-2017-11329	2024-11-21 12:07	2017-07-17	Show	GitHub Exploit DB Packet Storm

198406	5.5	MEDIUM Local	virustotal	yara	Heap buffer overflow in the yr_object_array_set_item() function in object.c in YARA 3.x allows a denial-of-service attack by scanning a crafted .NET file.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-11328	2024-11-21 12:07	2017-07-17	Show	GitHub Exploit DB Packet Storm

198407	8.1	HIGH Network	cobiansoft	cobian_backup	Cobian Backup 11 client allows man-in-the-middle attackers to add and execute new backup tasks when the master server is spoofed. In addition, the attacker can execute system commands remotely by abu…	CWE-78 OS Command	CVE-2017-11318	2024-11-21 12:07	2017-07-17	Show	GitHub Exploit DB Packet Storm

198408	7.8	HIGH Local	openmpt	libopenmpt openmpt	soundlib/Load_psm.cpp in OpenMPT through 1.26.12.00 and libopenmpt before 0.2.8461-beta26 has a heap buffer overflow with the potential for arbitrary code execution via a crafted PSM File that trigge…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-11311	2024-11-21 12:07	2017-07-17	Show	GitHub Exploit DB Packet Storm

198409	8.8	HIGH Network	imagemagick	imagemagick	The read_user_chunk_callback function in coders\png.c in ImageMagick 7.0.6-1 Q16 2017-06-21 (beta) has memory leak vulnerabilities via crafted PNG files.	CWE-772 Missing Release of Resource after Effective Lifetime	CVE-2017-11310	2024-11-21 12:07	2017-07-14	Show	GitHub Exploit DB Packet Storm

198410	8.1	HIGH Network	heimdal_project freebsd samba apple debian	heimdal freebsd samba mac_os_x iphone_os debian_linux	Heimdal before 7.4 allows remote attackers to impersonate services with Orpheus' Lyre attacks because it obtains service-principal names in a way that violates the Kerberos 5 protocol specification. …	CWE-345 Insufficient Verification of Data Authenticity	CVE-2017-11103	2024-11-21 12:07	2017-07-13	Show	GitHub Exploit DB Packet Storm