Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 7, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
196461 9.8 緊急
Network 		Umbraco - Umbraco の FeedProxy.aspx スクリプトにおける代理でプロキシへリクエストされる脆弱性 CWE-20
不適切な入力確認 		CVE-2012-1301 2017-05-18 19:47 2012-04-5 Show GitHub Exploit DB Packet Storm
196462 8.8 重要
Network 		s9y - Serendipity におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2017-8101 2017-05-18 18:55 2017-04-9 Show GitHub Exploit DB Packet Storm
196463 7.8 重要
Local 		eXtplorer - eXtplorer の unzip/extract feature におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2016-4313 2017-05-18 18:54 2016-05-14 Show GitHub Exploit DB Packet Storm
196464 8.8 重要
Network 		Kallithea - Kallithea におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2016-3691 2017-05-18 18:53 2016-05-2 Show GitHub Exploit DB Packet Storm
196465 6.5 警告
Network 		Kallithea - Kallithea における認可・権限・アクセス制御に関する脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-3114 2017-05-18 18:53 2016-05-2 Show GitHub Exploit DB Packet Storm
196466 5.5 警告
Local 		Fabrice Bellard - QEMU の hw/display/cirrus_vga_rop.h におけるサービス運用妨害 (DoS) の脆弱性 CWE-125
境界外読み取り 		CVE-2017-7718 2017-05-18 18:51 2017-03-16 Show GitHub Exploit DB Packet Storm
196467 8.8 重要
Network 		PoDoFo project - PoDoFo におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2017-8787 2017-05-18 18:50 2017-04-22 Show GitHub Exploit DB Packet Storm
196468 5.5 警告
Local 		PoDoFo project - PoDoFo におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2017-8054 2017-05-18 18:50 2017-04-22 Show GitHub Exploit DB Packet Storm
196469 5.5 警告
Local 		PoDoFo project - PoDoFo におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2017-8053 2017-05-18 18:50 2017-04-22 Show GitHub Exploit DB Packet Storm
196470 5.5 警告
Local 		PoDoFo project - PoDoFo におけるサービス運用妨害 (DoS) の脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2017-7994 2017-05-18 18:50 2017-04-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 7, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
346471 - linpha linpha SQL injection vulnerability in functions/db_api.php in LinPHA 1.1.1 allows remote attackers to execute arbitrary SQL commands via unknown vectors. NVD-CWE-Other
CVE-2006-1924 2017-07-20 10:31 2006-04-21 Show GitHub Exploit DB Packet Storm
346472 - cisco ios_xr Cisco IOS XR, when configured for Multi Protocol Label Switching (MPLS) and running on Cisco CRS-1 or Cisco 12000 series routers, allows remote attackers to cause a denial of service (Line card crash… NVD-CWE-Other
CVE-2006-1927 2017-07-20 10:31 2006-04-21 Show GitHub Exploit DB Packet Storm
346473 - cisco ios_xr Only systems that are running Cisco IOS XR and configured for MPLS are affected by this vulnerability. NVD-CWE-Other
CVE-2006-1927 2017-07-20 10:31 2006-04-21 Show GitHub Exploit DB Packet Storm
346474 - cisco ios_xr Cisco IOS XR, when configured for Multi Protocol Label Switching (MPLS) and running on Cisco CRS-1 routers, allows remote attackers to cause a denial of service (Modular Services Cards (MSC) crash or… NVD-CWE-Other
CVE-2006-1928 2017-07-20 10:31 2006-04-21 Show GitHub Exploit DB Packet Storm
346475 - i-rater i-rater_platinum PHP remote file inclusion vulnerability in include/common.php in I-Rater Platinum allows remote attackers to execute arbitrary PHP code via a URL in the include_path parameter. NVD-CWE-Other
CVE-2006-1929 2017-07-20 10:31 2006-04-21 Show GitHub Exploit DB Packet Storm
346476 - smarter_scripts intellilink_pro Multiple cross-site scripting (XSS) vulnerabilities in Smarter Scripts IntelliLink Pro 5.06 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) url parameter in addl… NVD-CWE-Other
CVE-2006-1943 2017-07-20 10:31 2006-04-21 Show GitHub Exploit DB Packet Storm
346477 - sibsoft communimail Multiple cross-site scripting (XSS) vulnerabilities in SibSoft CommuniMail 1.2 and earlier allow remote attackers to inject arbitrary web script or HTML via (1) the list_id parameter in mailadmin.cgi… NVD-CWE-Other
CVE-2006-1944 2017-07-20 10:31 2006-04-21 Show GitHub Exploit DB Packet Storm
346478 - visale visale Multiple cross-site scripting (XSS) vulnerabilities in Visale 1.0 and earlier allow remote attackers to inject arbitrary web script or HTML via (1) the keyval parameter in pbpgst.cgi, (2) the catsubn… NVD-CWE-Other
CVE-2006-1946 2017-07-20 10:31 2006-04-21 Show GitHub Exploit DB Packet Storm
346479 - nicplex plexum Multiple SQL injection vulnerabilities in plexum.php in NicPlex Plexum X5 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) pagesize, (2) maxrec, and (3) startpos param… NVD-CWE-Other
CVE-2006-1947 2017-07-20 10:31 2006-04-21 Show GitHub Exploit DB Packet Storm
346480 - nicplex plexcart SQL injection vulnerability in plexcart.pl in NicPlex PlexCart X3 and earlier allows remote attackers to execute arbitrary SQL commands via the catid parameter. NVD-CWE-Other
CVE-2006-1949 2017-07-20 10:31 2006-04-21 Show GitHub Exploit DB Packet Storm