Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
202491 7.8 重要
Local
PoDoFo project - PoDoFo の PdfTokenizer.cpp の PoDoFo::PdfTokenizer::GetNextToken 関数におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2017-5886 2017-03-17 16:57 2017-02-3 Show GitHub Exploit DB Packet Storm
202492 5.5 警告
Local
PoDoFo project - PoDoFo の PdfParser.cpp の PoDoFo::PdfParser::ReadXRefSubsection 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-476
NULL ポインタデリファレンス
CVE-2017-5855 2017-03-17 16:57 2017-02-1 Show GitHub Exploit DB Packet Storm
202493 5.5 警告
Local
PoDoFo project - PoDoFo の base/PdfOutputStream.cpp におけるサービス運用妨害 (DoS) の脆弱性 CWE-476
NULL ポインタデリファレンス
CVE-2017-5854 2017-03-17 16:57 2017-02-1 Show GitHub Exploit DB Packet Storm
202494 7.8 重要
Local
PoDoFo project - PoDoFo の base/PdfParser.cpp における整数オーバーフローの脆弱性 CWE-190
整数オーバーフローまたはラップアラウンド
CVE-2017-5853 2017-03-17 16:57 2017-02-1 Show GitHub Exploit DB Packet Storm
202495 5.5 警告
Local
PoDoFo project - PoDoFo の base/PdfVariant.cpp の PoDoFo::PdfPage::GetInheritedKeyFromObject 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認
CVE-2017-5852 2017-03-17 16:57 2017-02-1 Show GitHub Exploit DB Packet Storm
202496 5.9 警告
Local
Grails project - Grails Pdf Plugin における XML 外部エンティティの脆弱性 CWE-611
XML 外部エンティティ参照の不適切な制限
CVE-2017-6344 2017-03-17 16:51 2017-02-21 Show GitHub Exploit DB Packet Storm
202497 7.8 重要
Local
Iceni Technology - Iceni Argus におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2016-8387 2017-03-17 16:47 2016-10-10 Show GitHub Exploit DB Packet Storm
202498 7.8 重要
Local
Iceni Technology - Iceni Argus におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2016-8386 2017-03-17 16:47 2016-10-10 Show GitHub Exploit DB Packet Storm
202499 7.4 重要
Network
フォーティネット - Fortinet FortiManager における認証情報の検証不備の脆弱性 CWE-200
情報漏えい
CVE-2016-8495 2017-03-17 16:39 2016-10-7 Show GitHub Exploit DB Packet Storm
202500 5.9 警告
Network
フォーティネット - Fortinet FortiGate の ANSI X9.31 RNG の実装における不正な読み取りアクセス権を取得される脆弱性 CWE-200
情報漏えい
CVE-2016-8492 2017-03-17 16:39 2016-11-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
345551 - tugzip tugzip Multiple directory traversal vulnerabilities in Christian Kindahl TUGZip 3.4.0.0, 3.3.0.0, and 3.1.0.2 allow user-assisted attackers to create files in arbitrary directories via a .. (dot dot) in an … NVD-CWE-Other
CVE-2006-1715 2018-10-19 01:34 2006-04-12 Show GitHub Exploit DB Packet Storm
345552 - mybulletinboard mybulletinboard Cross-site scripting (XSS) vulnerability in inc/functions_post.php in MyBB (aka MyBulletinBoard) 1.10 allows remote attackers to inject arbitrary web script or HTML via a JavaScript event in a BBCode… NVD-CWE-Other
CVE-2006-1716 2018-10-19 01:34 2006-04-12 Show GitHub Exploit DB Packet Storm
345553 - mybulletinboard mybulletinboard Successful exploitation requires that unauthenticated users are allowed to post new threads (not the default setting). NVD-CWE-Other
CVE-2006-1716 2018-10-19 01:34 2006-04-12 Show GitHub Exploit DB Packet Storm
345554 - mybulletinboard mybulletinboard Cross-site scripting (XSS) vulnerability in newthread.php in MyBB (aka MyBulletinBoard) 1.10, when configured to permit new threads by unregistered users, allows remote attackers to inject arbitrary … NVD-CWE-Other
CVE-2006-1717 2018-10-19 01:34 2006-04-12 Show GitHub Exploit DB Packet Storm
345555 - mybulletinboard mybulletinboard Successful exploitation requires that unauthenticated users are allowed to post new threads (not the default setting). NVD-CWE-Other
CVE-2006-1717 2018-10-19 01:34 2006-04-12 Show GitHub Exploit DB Packet Storm
345556 - clever_copy clever_copy Magus Perde Clever Copy 3.0 and earlier stores sensitive information under the web root with insufficient access control, which allows remote attackers to view the database username and password via … NVD-CWE-Other
CVE-2006-1718 2018-10-19 01:34 2006-04-12 Show GitHub Exploit DB Packet Storm
345557 - microsoft ie Internet Explorer 6 allows remote attackers to cause a denial of service (application crash) via any scrollbar Cascading Style Sheets (CSS) property. NVD-CWE-Other
CVE-2006-1719 2018-10-19 01:34 2006-04-12 Show GitHub Exploit DB Packet Storm
345558 - arabless saphplesson Cross-site scripting (XSS) vulnerability in search.php in SaphpLesson 3.0 allows remote attackers to inject arbitrary web script or HTML via the Word parameter. NOTE: it is possible that this issue … NVD-CWE-Other
CVE-2006-1720 2018-10-19 01:34 2006-04-12 Show GitHub Exploit DB Packet Storm
345559 - cyrus sasl digestmd5.c in the CMU Cyrus Simple Authentication and Security Layer (SASL) library 2.1.18, and possibly other versions before 2.1.21, allows remote unauthenticated attackers to cause a denial of se… CWE-20
 Improper Input Validation 
CVE-2006-1721 2018-10-19 01:34 2006-04-12 Show GitHub Exploit DB Packet Storm
345560 - mozilla firefox
seamonkey
thunderbird
Unspecified vulnerability in Firefox and Thunderbird before 1.5.0.2, and SeaMonkey before 1.0.1, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via u… NVD-CWE-Other
CVE-2006-1723 2018-10-19 01:34 2006-04-14 Show GitHub Exploit DB Packet Storm