Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
227791	4.3	警告	VWar	-	Vwar の war.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-4009	2012-12-20 18:02	2006-08-7	Show	GitHub Exploit DB Packet Storm

227792	6.4	警告	vbportal	-	vbPortal の index.php におけるディレクトリトラバーサルの脆弱性	-	CVE-2006-4004	2012-12-20 18:02	2006-08-7	Show	GitHub Exploit DB Packet Storm

227793	7.5	危険	wowroster	-	WoWRoster の conf.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-3998	2012-12-20 18:02	2006-07-17	Show	GitHub Exploit DB Packet Storm

227794	7.5	危険	wowroster	-	WoWRoster の hsList.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-3997	2012-12-20 18:02	2006-07-17	Show	GitHub Exploit DB Packet Storm

227795	6.8	警告	user home pages	-	Mambo または Joomla! 用の User Home Pages コンポーネントにおける PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2006-3995	2012-12-20 18:02	2006-08-4	Show	GitHub Exploit DB Packet Storm

227796	7.5	危険	xmb software	-	XMB の u2u.inc.php における SQL インジェクションの脆弱性	-	CVE-2006-3994	2012-12-20 18:02	2006-08-4	Show	GitHub Exploit DB Packet Storm

227797	5.1	警告	tsep	-	Olaf Noehring TSEP の copyright.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-3993	2012-12-20 18:02	2006-08-4	Show	GitHub Exploit DB Packet Storm

227798	7.5	危険	voc-project	-	Cisco Unified Wireless IP Phone 7921 における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-3991	2012-12-20 18:02	2006-08-4	Show	GitHub Exploit DB Packet Storm

227799	7.5	危険	phpsavant	-	Paul M. Jones Savant2 における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-3990	2012-12-20 18:02	2006-08-4	Show	GitHub Exploit DB Packet Storm

227800	5	警告	scott weedon	-	Scott Weedon Ajax Chat の visitor/livesupport/chat.php におけるディレクトリトラバーサルの脆弱性	-	CVE-2006-3972	2012-12-20 18:02	2006-08-2	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 25, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
197711	8.1	HIGH Network	arm	mbed_tls	ARM mbed TLS before 1.3.21 and 2.x before 2.1.9, if optional authentication is configured, allows remote attackers to bypass peer authentication via an X.509 certificate chain with many intermediates…	CWE-287 Improper Authentication	CVE-2017-14032	2024-11-21 12:12	2017-08-31	Show	GitHub Exploit DB Packet Storm

197712	5.5	MEDIUM Local	apple	mac_os_x	An access issue was addressed with additional sandbox restrictions on applications. This issue is fixed in macOS High Sierra 10.13. An application may be able to access restricted files.	NVD-CWE-noinfo	CVE-2017-13910	2024-11-21 12:11	2021-12-24	Show	GitHub Exploit DB Packet Storm

197713	5.5	MEDIUM Local	apple	mac_os_x	An issue existed in the storage of sensitive tokens. This issue was addressed by placing the tokens in Keychain. This issue is fixed in macOS High Sierra 10.13. A local attacker may gain access to iC…	CWE-922 Insecure Storage of Sensitive Information	CVE-2017-13909	2024-11-21 12:11	2021-12-24	Show	GitHub Exploit DB Packet Storm

197714	7.8	HIGH Local	apple	mac_os_x	An issue in handling file permissions was addressed with improved validation. This issue is fixed in macOS High Sierra 10.13.1, Security Update 2017-001 Sierra, and Security Update 2017-004 El Capita…	NVD-CWE-noinfo	CVE-2017-13908	2024-11-21 12:11	2021-12-24	Show	GitHub Exploit DB Packet Storm

197715	6.8	MEDIUM Physics	apple	mac_os_x	A state management issue was addressed with improved state validation. This issue is fixed in macOS High Sierra 10.13.1, Security Update 2017-001 Sierra, and Security Update 2017-004 El Capitan. The …	NVD-CWE-noinfo	CVE-2017-13907	2024-11-21 12:11	2021-12-24	Show	GitHub Exploit DB Packet Storm

197716	7.8	HIGH Local	apple	mac_os_x	A memory corruption issue was addressed with improved memory handling. This issue is fixed in macOS High Sierra 10.13.1, Security Update 2017-001 Sierra, and Security Update 2017-004 El Capitan, macO…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-13906	2024-11-21 12:11	2021-12-24	Show	GitHub Exploit DB Packet Storm

197717	8.1	HIGH Network	apple	mac_os_x iphone_os watchos tvos macos	A race condition was addressed with additional validation. This issue is fixed in tvOS 11.2, iOS 11.2, macOS High Sierra 10.13.2, Security Update 2017-002 Sierra, and Security Update 2017-005 El Capi…	CWE-362 Race Condition	CVE-2017-13905	2024-11-21 12:11	2021-12-24	Show	GitHub Exploit DB Packet Storm

197718	7.5	HIGH Network	apple	mac_os_x macos	An issue existed in the handling of Contact sharing. This issue was addressed with improved handling of user information. This issue is fixed in macOS High Sierra 10.13.2, Security Update 2017-002 Si…	NVD-CWE-noinfo	CVE-2017-13892	2024-11-21 12:11	2021-12-24	Show	GitHub Exploit DB Packet Storm

197719	7.8	HIGH Local	apple	iphone_os watchos	A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 11.2, watchOS 4.2. An application may be able to execute arbitrary code with kernel privilege.	NVD-CWE-noinfo	CVE-2017-13880	2024-11-21 12:11	2021-12-24	Show	GitHub Exploit DB Packet Storm

197720	7.8	HIGH Local	apple	mac_os_x	A memory corruption issue was addressed with improved memory handling. This issue is fixed in macOS High Sierra 10.13. An application may be able to execute arbitrary code with elevated privileges.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-13835	2024-11-21 12:11	2021-12-24	Show	GitHub Exploit DB Packet Storm