Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 7, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230261	7.5	危険	phpprintanalyzer	-	phpPrintAnalyzer の inc/header.inc.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4164	2012-12-20 18:02	2006-08-16	Show	GitHub Exploit DB Packet Storm

230262	5	警告	xennobb	-	XennoBB の profile.php におけるディレクトリトラバーサルの脆弱性	-	CVE-2006-4161	2012-12-20 18:02	2006-08-16	Show	GitHub Exploit DB Packet Storm

230263	7.8	危険	サン・マイクロシステムズ	-	Sun Java System Directory Server および ONE Directory Server の LDAP server におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-4175	2012-12-20 18:02	2007-03-23	Show	GitHub Exploit DB Packet Storm

230264	5.5	警告	SquirrelMail Project	-	Squirrelmail 用の GPG Plugin におけるディレクトリトラバーサルの脆弱性	-	CVE-2006-4169	2012-12-20 18:02	2007-07-15	Show	GitHub Exploit DB Packet Storm

230265	7.5	危険	tutti nova	-	Tutti Nova における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4277	2012-12-20 18:02	2006-08-21	Show	GitHub Exploit DB Packet Storm

230266	7.5	危険	tutti nova	-	Tutti Nova における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4276	2012-12-20 18:02	2006-08-21	Show	GitHub Exploit DB Packet Storm

230267	3.6	注意	シマンテック	-	Symantec Norton Personal Firewall におけるトロイの木馬ライプラリを追加される脆弱性	-	CVE-2006-4266	2012-12-20 18:02	2006-08-21	Show	GitHub Exploit DB Packet Storm

230268	7.5	危険	product scroller module	-	Mambo および Joomla! 用の mambo-phpshop における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4263	2012-12-20 18:02	2006-08-21	Show	GitHub Exploit DB Packet Storm

230269	5	警告	PowerDNS	-	PowerDNS Recursor におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-4252	2012-12-20 18:02	2006-11-13	Show	GitHub Exploit DB Packet Storm

230270	7.5	危険	PowerDNS	-	PowerDNS Recursor におけるバッファオーバーフローの脆弱性	-	CVE-2006-4251	2012-12-20 18:02	2006-11-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
212481	5.5	MEDIUM Local	tinycc	tinycc	An issue was discovered in Tiny C Compiler (aka TinyCC or TCC) 0.9.27. Compiling a crafted source file leads to an 1 byte out of bounds write in the end_macro function in tccpp.c.	CWE-787 Out-of-bounds Write	CVE-2019-9754	2024-11-21 13:52	2019-03-14	Show	GitHub Exploit DB Packet Storm

212482	5.4	MEDIUM Network	otrs opensuse	otrs leap backports_sle	An issue was discovered in Open Ticket Request System (OTRS) 5.x before 5.0.34, 6.x before 6.0.16, and 7.x before 7.0.4. An attacker who is logged into OTRS as an agent or a customer user may upload …	CWE-79 Cross-site Scripting	CVE-2019-9752	2024-11-21 13:52	2019-03-14	Show	GitHub Exploit DB Packet Storm

212483	4.8	MEDIUM Network	otrs	otrs	An issue was discovered in Open Ticket Request System (OTRS) 6.x before 6.0.17 and 7.x before 7.0.5. An attacker who is logged into OTRS as an admin user may manipulate the URL to cause execution of …	CWE-79 Cross-site Scripting	CVE-2019-9751	2024-11-21 13:52	2019-03-14	Show	GitHub Exploit DB Packet Storm

212484	9.1	CRITICAL Network	iotivity	iotivity	In IoTivity through 1.3.1, the CoAP server interface can be used for Distributed Denial of Service attacks using source IP address spoofing and UDP-based traffic amplification. The reflected traffic …	CWE-400 Uncontrolled Resource Consumption	CVE-2019-9750	2024-11-21 13:52	2019-03-14	Show	GitHub Exploit DB Packet Storm

212485	7.5	HIGH Network	treasuredata	fluent_bit	An issue was discovered in the MQTT input plugin in Fluent Bit through 1.0.4. When this plugin acts as an MQTT broker (server), it mishandles incoming network messages. After processing a crafted pac…	CWE-681 Incorrect Conversion between Numeric Types	CVE-2019-9749	2024-11-21 13:52	2019-03-14	Show	GitHub Exploit DB Packet Storm

212486	9.1	CRITICAL Network	tinysvcmdns_project	tinysvcmdns	In tinysvcmdns through 2018-01-16, an mDNS server processing a crafted packet can perform arbitrary data read operations up to 16383 bytes from the start of the buffer. This can lead to a segmentatio…	CWE-125 Out-of-bounds Read	CVE-2019-9748	2024-11-21 13:52	2019-03-14	Show	GitHub Exploit DB Packet Storm

212487	7.5	HIGH Network	tinysvcmdns_project	tinysvcmdns	In tinysvcmdns through 2018-01-16, a maliciously crafted mDNS (Multicast DNS) packet triggers an infinite loop while parsing an mDNS query. When mDNS compressed labels point to each other, the functi…	CWE-835 Loop with Unreachable Exit Condition ('Infinite Loop')	CVE-2019-9747	2024-11-21 13:52	2019-03-14	Show	GitHub Exploit DB Packet Storm

212488	7.5	HIGH Network	webmproject	libwebm	In libwebm before 2019-03-08, a NULL pointer dereference caused by the functions OutputCluster and OutputTracks in webm_info.cc will trigger an abort, which allows a DoS attack, a similar issue to CV…	CWE-476 NULL Pointer Dereference	CVE-2019-9746	2024-11-21 13:52	2019-03-14	Show	GitHub Exploit DB Packet Storm

212489	7.5	HIGH Network	gdata-software	total_security	gdwfpcd.sys in G Data Total Security before 2019-02-22 allows an attacker to bypass ACLs because Interpreted Device Characteristics lacks FILE_DEVICE_SECURE_OPEN and therefore files and directories "…	CWE-862 Missing Authorization	CVE-2019-9742	2024-11-21 13:52	2019-03-13	Show	GitHub Exploit DB Packet Storm

212490	6.1	MEDIUM Network	golang debian fedoraproject redhat	go debian_linux fedora enterprise_linux developer_tools	An issue was discovered in net/http in Go 1.11.5. CRLF injection is possible if the attacker controls a url parameter, as demonstrated by the second argument to http.NewRequest with \r\n followed by …	CWE-93 CRLF Injection	CVE-2019-9741	2024-11-21 13:52	2019-03-13	Show	GitHub Exploit DB Packet Storm