Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 8, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
197751 7.4 重要
Network 		The PHP Group - PHP におけるサーバサイドのリクエストフォージェリの脆弱性 CWE-918
サーバサイドリクエストフォージェリ 		CVE-2017-7272 2017-04-27 15:42 2017-03-8 Show GitHub Exploit DB Packet Storm
197752 5.5 警告
Local 		radare - radare2 の libr/util/r_pkcs7.c の r_pkcs7_parse_cms 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2017-7274 2017-04-27 15:31 2017-03-27 Show GitHub Exploit DB Packet Storm
197753 4.7 警告
Network 		Brave Software Inc. - Brave Browser iOS および Brave Browser Android におけるフルアドレスバーを偽造される脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-9473 2017-04-27 15:27 2016-10-18 Show GitHub Exploit DB Packet Storm
197754 9.8 緊急
Network 		Hesiod project - Hesiod の lib/hesiod.c の read_config_file 関数における root 権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2016-10152 2017-04-27 14:50 2016-05-3 Show GitHub Exploit DB Packet Storm
197755 9.8 緊急
Network 		Apache Software Foundation - Apache Camel における信頼性のないデータのデシリアライゼーションに関する脆弱性 CWE-502
信頼性のないデータのデシリアライゼーション 		CVE-2016-8749 2017-04-27 14:20 2016-10-18 Show GitHub Exploit DB Packet Storm
197756 7.5 重要
Network 		The Chicken Team - CHICKEN の data-structures ユニットの string-translate* プロシージャにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2015-4556 2017-04-27 14:14 2015-06-14 Show GitHub Exploit DB Packet Storm
197757 8.1 重要
Network 		FreeRADIUS - FreeRADIUS におけるバッファエラーの脆弱性 CWE-119
バッファエラー 		CVE-2015-8764 2017-04-27 11:27 2015-04-4 Show GitHub Exploit DB Packet Storm
197758 8.1 重要
Network 		FreeRADIUS - FreeRADIUS の EAP-PWD モジュールにおける境界外読み取りを誘発される脆弱性 CWE-125
境界外読み取り 		CVE-2015-8763 2017-04-27 11:27 2015-04-4 Show GitHub Exploit DB Packet Storm
197759 5.9 警告
Network 		FreeRADIUS - FreeRADIUS の EAP-PWD モジュールにおけるサービス運用妨害 (DoS) の脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2015-8762 2017-04-27 11:27 2015-04-4 Show GitHub Exploit DB Packet Storm
197760 7.5 重要
Network 		GNU Project - GNU Binutils で配布される Binary File Descriptor ライブラリにおける境界外読み取りに関する脆弱性 CWE-125
境界外読み取り 		CVE-2017-7304 2017-04-27 10:36 2017-03-29 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 8, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
346401 - x-scripts x-statistics SQL injection vulnerability in x-statistics.php in X-Scripts X-Statistics 1.20 allows remote attackers to execute arbitrary SQL commands via the User-Agent HTTP header. NVD-CWE-Other
CVE-2006-3950 2017-07-20 10:32 2006-08-2 Show GitHub Exploit DB Packet Storm
346402 - efs_software efs_ftp_server Stack-based buffer overflow in EFS Software Easy File Sharing FTP Server 2.0 allows remote attackers to execute arbitrary code via a long argument to the PASS command. NOTE: the provenance of this i… NVD-CWE-Other
CVE-2006-3952 2017-07-20 10:32 2006-08-2 Show GitHub Exploit DB Packet Storm
346403 - x-scripts x-statistics SQL injection vulnerability in protect.php in X-Scripts X-Protection 1.10, with magic_quotes_gpc disabled, allows remote attackers to execute arbitrary SQL commands via the (1) username and (2) passw… NVD-CWE-Other
CVE-2006-3959 2017-07-20 10:32 2006-08-2 Show GitHub Exploit DB Packet Storm
346404 - sun solaris The crypto provider in Sun Solaris 10 3/05 HW2 without patch 121236-01, when running on Sun Fire T2000 platforms, incorrectly verifies a DSA signature, which might prevent applications from detecting… NVD-CWE-Other
CVE-2006-3968 2017-07-20 10:32 2006-08-2 Show GitHub Exploit DB Packet Storm
346405 - scott_weedon ajax_chat Cross-site scripting (XSS) vulnerability in visitor/livesupport/chat.php in Scott Weedon Ajax Chat, possibly 0.1, allows remote attackers to inject arbitrary web script or HTML via the userid paramet… NVD-CWE-Other
CVE-2006-3971 2017-07-20 10:32 2006-08-3 Show GitHub Exploit DB Packet Storm
346406 - scott_weedon ajax_chat Directory traversal vulnerability in includes/operator_chattranscript.php in Scott Weedon Ajax Chat, possibly 0.1, allows remote attackers to read arbitrary files via a .. (dot dot) in the chatid par… NVD-CWE-Other
CVE-2006-3972 2017-07-20 10:32 2006-08-3 Show GitHub Exploit DB Packet Storm
346407 - macromedia coldfusion The AdminAPI of ColdFusion MX 7 allows attackers to bypass authentication by using "programmatic access" to the adminAPI instead of the ColdFusion Administrator. NVD-CWE-Other
CVE-2006-3979 2017-07-20 10:32 2006-08-9 Show GitHub Exploit DB Packet Storm
346408 - mambo mambo_gallery_manager PHP remote file inclusion vulnerability in about.mgm.php in Mambo Gallery Manager (MGM) 0.95r2 and earlier for Mambo 4.5 allows remote attackers to execute arbitrary PHP code via a URL in the mosConf… NVD-CWE-Other
CVE-2006-3981 2017-07-20 10:32 2006-08-5 Show GitHub Exploit DB Packet Storm
346409 - drupal drupal Cross-site scripting (XSS) vulnerability in user.module in Drupal 4.6 before 4.6.9, and 4.7 before 4.7.3, allows remote attackers to inject arbitrary web script or HTML via the msg parameter. NOTE: … NVD-CWE-Other
CVE-2006-4002 2017-07-20 10:32 2006-08-8 Show GitHub Exploit DB Packet Storm
346410 - drupal drupal This vulnerability is addressed in the following product releases: Drupal, Drupal, 4.6.9 Drupal, Drupal, 4.7.3 NVD-CWE-Other
CVE-2006-4002 2017-07-20 10:32 2006-08-8 Show GitHub Exploit DB Packet Storm