Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
227801	6.8	警告	scott weedon	-	Scott Weedon Ajax Chat の visitor/livesupport/chat.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-3971	2012-12-20 18:02	2006-08-2	Show	GitHub Exploit DB Packet Storm

227802	5	警告	サン・マイクロシステムズ	-	Sun Solaris 10 3/05 HW2 の暗号化プロバイダにおけるアプリケーションがデータ変更を検出しない脆弱性	-	CVE-2006-3968	2012-12-20 18:02	2006-08-1	Show	GitHub Exploit DB Packet Storm

227803	7.5	危険	x-scripts	-	X-Scripts X-Poll の top.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2006-3960	2012-12-20 18:02	2006-08-1	Show	GitHub Exploit DB Packet Storm

227804	7.5	危険	x-scripts	-	X-Scripts X-Protection の protect.php における SQL インジェクションの脆弱性	-	CVE-2006-3959	2012-12-20 18:02	2006-08-1	Show	GitHub Exploit DB Packet Storm

227805	4.3	警告	pkr internet	-	Taskjitsu におけるクロスサイトスクリプティングの脆弱性	CWE-noinfo 情報不足	CVE-2006-3958	2012-12-20 18:02	2006-07-6	Show	GitHub Exploit DB Packet Storm

227806	4.3	警告	total online solutions	-	AWBS の contact.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-3956	2012-12-20 18:02	2006-08-1	Show	GitHub Exploit DB Packet Storm

227807	7.5	危険	x-scripts	-	X-Scripts X-Statistics の x-statistics.php における SQL インジェクションの脆弱性	-	CVE-2006-3950	2012-12-20 18:02	2006-08-1	Show	GitHub Exploit DB Packet Storm

227808	4.3	警告	PHPNUKE	-	PHP-Nuke INP の modules.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-3948	2012-12-20 18:02	2006-08-1	Show	GitHub Exploit DB Packet Storm

227809	5	警告	Opera Software ASA	-	Windows 上で稼動する Opera の CSS 機能におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-3945	2012-12-20 18:02	2006-07-31	Show	GitHub Exploit DB Packet Storm

227810	5	警告	マイクロソフト	-	Windows 上で稼動する Microsoft Internet Explorer 6 におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-3944	2012-12-20 18:02	2006-07-31	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 24, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
197801	7.8	HIGH Local	blender debian	blender debian_linux	An exploitable integer overflow exists in the upgrade of a legacy Mesh attribute of the Blender open-source 3d creation suite v2.78c. A specially crafted .blend file can cause an integer overflow res…	CWE-190 Integer Overflow or Wraparound	CVE-2017-12081	2024-11-21 12:08	2018-04-25	Show	GitHub Exploit DB Packet Storm

197802	7.8	HIGH Local	blender debian	blender debian_linux	An exploitable integer overflow exists in the 'CustomData' Mesh loading functionality of the Blender open-source 3d creation suite. A .blend file with a specially crafted external data file can cause…	CWE-190 Integer Overflow or Wraparound	CVE-2017-12082	2024-11-21 12:08	2018-04-25	Show	GitHub Exploit DB Packet Storm

197803	5.3	MEDIUM Network	rockwellautomation	micrologix_1400_b_firmware	An exploitable insufficient resource pool vulnerability exists in the session communication functionality of Allen Bradley Micrologix 1400 Series B Firmware 21.2 and before. A specially crafted strea…	CWE-400 Uncontrolled Resource Consumption	CVE-2017-12093	2024-11-21 12:08	2018-04-6	Show	GitHub Exploit DB Packet Storm

197804	7.5	HIGH Network	rockwellautomation	micrologix_1400_b_firmware	An exploitable denial of service vulnerability exists in the processing of snmp-set commands of the Allen Bradley Micrologix 1400 Series B FRN 21.2 and below. A specially crafted snmp-set request, wh…	CWE-400 Uncontrolled Resource Consumption	CVE-2017-12090	2024-11-21 12:08	2018-04-6	Show	GitHub Exploit DB Packet Storm

197805	7.5	HIGH Network	rockwellautomation	micrologix_1400_b_firmware	An exploitable denial of service vulnerability exists in the program download functionality of Allen Bradley Micrologix 1400 Series B FRN 21.2 and before. A specially crafted packet can cause a devic…	NVD-CWE-noinfo	CVE-2017-12089	2024-11-21 12:08	2018-04-6	Show	GitHub Exploit DB Packet Storm

197806	7.5	HIGH Network	rockwellautomation	micrologix_1400_b_firmware	An exploitable denial of service vulnerability exists in the Ethernet functionality of the Allen Bradley Micrologix 1400 Series B FRN 21.2 and below. A specially crafted packet can cause a device pow…	CWE-20 Improper Input Validation	CVE-2017-12088	2024-11-21 12:08	2018-04-6	Show	GitHub Exploit DB Packet Storm

197807	6.5	MEDIUM Adjacent	meetcircle	circle_with_disney_firmware	An exploitable vulnerability exists in the WiFi Access Point feature of Circle with Disney running firmware 2.0.1. A series of WiFi packets can force Circle to setup an Access Point with default cred…	CWE-290 Authentication Bypass by Spoofing	CVE-2017-12095	2024-11-21 12:08	2018-04-6	Show	GitHub Exploit DB Packet Storm

197808	7.5	HIGH Network	apache redhat	activemq_artemis hornetq jboss_enterprise_application_platform	It was found that when Artemis and HornetQ before 2.4.0 are configured with UDP discovery and JGroups discovery a huge byte array is created when receiving an unexpected multicast message. This may r…	-	CVE-2017-12174	2024-11-21 12:08	2018-03-8	Show	GitHub Exploit DB Packet Storm

197809	6.1	MEDIUM Network	draytek	vigorap_910c_firmware	Cross-site scripting (XSS) vulnerability in DrayTek Vigor AP910C devices with firmware 1.2.0_RC3 build r6594 allows remote attackers to inject arbitrary web script or HTML via vectors involving home.…	CWE-79 Cross-site Scripting	CVE-2017-11650	2024-11-21 12:08	2018-03-7	Show	GitHub Exploit DB Packet Storm

197810	8.8	HIGH Network	draytek	vigorap_910c_firmware	Cross-site request forgery (CSRF) vulnerability in DrayTek Vigor AP910C devices with firmware 1.2.0_RC3 build r6594 allows remote attackers to hijack the authentication of unspecified users for reque…	CWE-352 Origin Validation Error	CVE-2017-11649	2024-11-21 12:08	2018-03-7	Show	GitHub Exploit DB Packet Storm