Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227791 4.3 警告 VWar - Vwar の war.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-4009 2012-12-20 18:02 2006-08-7 Show GitHub Exploit DB Packet Storm
227792 6.4 警告 vbportal - vbPortal の index.php におけるディレクトリトラバーサルの脆弱性 - CVE-2006-4004 2012-12-20 18:02 2006-08-7 Show GitHub Exploit DB Packet Storm
227793 7.5 危険 wowroster - WoWRoster の conf.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-3998 2012-12-20 18:02 2006-07-17 Show GitHub Exploit DB Packet Storm
227794 7.5 危険 wowroster - WoWRoster の hsList.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-3997 2012-12-20 18:02 2006-07-17 Show GitHub Exploit DB Packet Storm
227795 6.8 警告 user home pages - Mambo または Joomla! 用の User Home Pages コンポーネントにおける PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2006-3995 2012-12-20 18:02 2006-08-4 Show GitHub Exploit DB Packet Storm
227796 7.5 危険 xmb software - XMB の u2u.inc.php における SQL インジェクションの脆弱性 - CVE-2006-3994 2012-12-20 18:02 2006-08-4 Show GitHub Exploit DB Packet Storm
227797 5.1 警告 tsep - Olaf Noehring TSEP の copyright.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-3993 2012-12-20 18:02 2006-08-4 Show GitHub Exploit DB Packet Storm
227798 7.5 危険 voc-project - Cisco Unified Wireless IP Phone 7921 における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-3991 2012-12-20 18:02 2006-08-4 Show GitHub Exploit DB Packet Storm
227799 7.5 危険 phpsavant - Paul M. Jones Savant2 における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-3990 2012-12-20 18:02 2006-08-4 Show GitHub Exploit DB Packet Storm
227800 5 警告 scott weedon - Scott Weedon Ajax Chat の visitor/livesupport/chat.php におけるディレクトリトラバーサルの脆弱性 - CVE-2006-3972 2012-12-20 18:02 2006-08-2 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 26, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
197661 7.8 HIGH
Local 		xnview xnview XnView Classic for Windows Version 2.40 allows attackers to execute arbitrary code or cause a denial of service via a crafted .jb2 file, related to a "User Mode Write AV starting at ntdll_77400000!Rt… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-14270 2024-11-21 12:12 2017-09-12 Show GitHub Exploit DB Packet Storm
197662 7.8 HIGH
Local 		jungo windriver This vulnerability allows local attackers to escalate privileges on Jungo WinDriver 12.4.0 and earlier. An attacker must first obtain the ability to execute low-privileged code on the target system i… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-14153 2024-11-21 12:12 2017-09-12 Show GitHub Exploit DB Packet Storm
197663 7.8 HIGH
Local 		jungo windriver This vulnerability allows local attackers to escalate privileges on Jungo WinDriver 12.4.0 and earlier. An attacker must first obtain the ability to execute low-privileged code on the target system i… CWE-787
 Out-of-bounds Write 		CVE-2017-14075 2024-11-21 12:12 2017-09-12 Show GitHub Exploit DB Packet Storm
197664 9.8 CRITICAL
Network 		ee 4gee_wifi_mbb_firmware EE 4GEE WiFi MBB (before EE60_00_05.00_31) devices allow remote attackers to obtain sensitive information via a JSONP endpoint, as demonstrated by passwords and SMS content. CWE-200
Information Exposure 		CVE-2017-14269 2024-11-21 12:12 2017-09-11 Show GitHub Exploit DB Packet Storm
197665 6.1 MEDIUM
Network 		ee 4gee_wifi_mbb_firmware EE 4GEE WiFi MBB (before EE60_00_05.00_31) devices have XSS in the sms_content parameter in a getSMSlist request. CWE-79
Cross-site Scripting 		CVE-2017-14268 2024-11-21 12:12 2017-09-11 Show GitHub Exploit DB Packet Storm
197666 8.8 HIGH
Network 		ee 4gee_wifi_mbb_firmware EE 4GEE WiFi MBB (before EE60_00_05.00_31) devices have CSRF, related to goform/AddNewProfile, goform/setWanDisconnect, goform/setSMSAutoRedirectSetting, goform/setReset, and goform/uploadBackupSetti… CWE-352
 Origin Validation Error 		CVE-2017-14267 2024-11-21 12:12 2017-09-11 Show GitHub Exploit DB Packet Storm
197667 9.8 CRITICAL
Network 		libraw libraw A Stack-based Buffer Overflow was discovered in xtrans_interpolate in internal/dcraw_common.cpp in LibRaw before 0.18.3. It could allow a remote denial of service or code execution attack. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-14265 2024-11-21 12:12 2017-09-11 Show GitHub Exploit DB Packet Storm
197668 8.1 HIGH
Network 		honeywell enterprise_dvr_firmware
maxpro_nvr_hybrid_se_firmware
maxpro_nvr_hybrid_xe_firmware
maxpro_nvr_se_firmware
maxpro_nvr_xe_firmware
fusion_iv_rev_c_firmware
maxpro_nvr_pe_firmware 		Honeywell NVR devices allow remote attackers to create a user account in the admin group by leveraging access to a guest account to obtain a session ID, and then sending that session ID in a userMana… CWE-384
 Session Fixation 		CVE-2017-14263 2024-11-21 12:12 2017-09-11 Show GitHub Exploit DB Packet Storm
197669 8.1 HIGH
Network 		samsung srn_1670d_firmware
srn_1000_firmware
srn_472s_firmware
srn_470d_firmware 		On Samsung NVR devices, remote attackers can read the MD5 password hash of the 'admin' account via certain szUserName JSON data to cgi-bin/main-cgi, and login to the device with that hash in the szUs… CWE-326
Inadequate Encryption Strength 		CVE-2017-14262 2024-11-21 12:12 2017-09-11 Show GitHub Exploit DB Packet Storm
197670 7.8 HIGH
Local 		bento4 bento4 In the SDK in Bento4 1.5.0-616, the AP4_StszAtom class in Ap4StszAtom.cpp file contains a Read Memory Access Violation vulnerability. It is possible to exploit this vulnerability by opening a crafted… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-14261 2024-11-21 12:12 2017-09-11 Show GitHub Exploit DB Packet Storm