Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
202921 9.8 緊急
Network
Facebook - Facebook HHVM の wddx の無限再帰における脆弱性 CWE-674
不適切な再帰制御
CVE-2016-6875 2017-03-7 16:43 2016-08-2 Show GitHub Exploit DB Packet Storm
202922 9.8 緊急
Network
Facebook - Facebook HHVM の array_*_recursive 関数における脆弱性 CWE-674
不適切な再帰制御
CVE-2016-6874 2017-03-7 16:43 2016-08-2 Show GitHub Exploit DB Packet Storm
202923 9.8 緊急
Network
Facebook - Facebook HHVM の圧縮の自己再帰における脆弱性 CWE-674
不適切な再帰制御
CVE-2016-6873 2017-03-7 16:43 2016-08-2 Show GitHub Exploit DB Packet Storm
202924 9.8 緊急
Network
Facebook - Facebook HHVM の StringUtil::implode における整数オーバーフローの脆弱性 CWE-190
整数オーバーフローまたはラップアラウンド
CVE-2016-6872 2017-03-7 16:43 2016-08-2 Show GitHub Exploit DB Packet Storm
202925 9.8 緊急
Network
Facebook - Facebook HHVM の bcmath における整数オーバーフローの脆弱性 CWE-190
整数オーバーフローまたはラップアラウンド
CVE-2016-6871 2017-03-7 16:43 2016-08-2 Show GitHub Exploit DB Packet Storm
202926 9.8 緊急
Network
Facebook - Facebook HHVM の複数の関数における境界外書き込みの脆弱性 CWE-787
境界外書き込み
CVE-2016-6870 2017-03-7 16:43 2016-07-2 Show GitHub Exploit DB Packet Storm
202927 7.5 重要
Network
WSO2 - WSO2 Identity Server の XACML フロー機能における XML 外部エンティティの脆弱性 CWE-611
XML 外部エンティティ参照の不適切な制限
CVE-2016-4312 2017-03-7 16:17 2016-08-12 Show GitHub Exploit DB Packet Storm
202928 8.8 重要
Network
WSO2 - WSO2 Identity Server の XACML フロー機能におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反
CVE-2016-4311 2017-03-7 16:17 2016-08-12 Show GitHub Exploit DB Packet Storm
202929 9.8 緊急
Network
Zend Technologies Ltd.
Fedora Project
- Zend Framework の Zend_Db_Select の order および group メソッドにおける SQL インジェクション攻撃を実行される脆弱性 CWE-89
SQLインジェクション
CVE-2016-6233 2017-03-7 15:36 2016-07-13 Show GitHub Exploit DB Packet Storm
202930 5.9 警告
Network
Timo Sirainen - Dovecot の auth コンポーネントにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認
CVE-2016-8652 2017-03-7 15:29 2016-12-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
346251 - zend zend_platform Multiple buffer overflows in the (a) Session Clustering Daemon and the (b) mod_cluster module in the Zend Platform 2.2.1 and earlier allow remote attackers to cause a denial of service (crash) or exe… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2006-4431 2018-10-18 06:37 2006-08-29 Show GitHub Exploit DB Packet Storm
346252 - zend zend_platform Directory traversal vulnerability in Zend Platform 2.2.1 and earlier allows remote attackers to overwrite arbitrary files via a .. (dot dot) sequence in the final component of the PHP session identif… NVD-CWE-Other
CVE-2006-4432 2018-10-18 06:37 2006-08-29 Show GitHub Exploit DB Packet Storm
346253 - venture_nine tagger_le Eval injection vulnerability in Tagger LE allows remote attackers to execute arbitrary PHP code via the query string in (1) tags.php, (2) sign.php, and (3) admin/index.php. NVD-CWE-Other
CVE-2006-4437 2018-10-18 06:37 2006-09-15 Show GitHub Exploit DB Packet Storm
346254 - alstrasoft video_share_enterprise PHP remote file inclusion vulnerability in myajaxphp.php in AlstraSoft Video Share Enterprise allows remote attackers to execute arbitrary PHP code via a URL in the config[BASE_DIR] parameter. NVD-CWE-Other
CVE-2006-4443 2018-10-18 06:37 2006-08-30 Show GitHub Exploit DB Packet Storm
346255 - microsoft ie Heap-based buffer overflow in DirectAnimation.PathControl COM object (daxctle.ocx) in Microsoft Internet Explorer 6.0 SP1 allows remote attackers to cause a denial of service and possibly execute arb… NVD-CWE-Other
CVE-2006-4446 2018-10-18 06:37 2006-08-30 Show GitHub Exploit DB Packet Storm
346256 - interact_learning_community_environment interact Multiple PHP remote file inclusion vulnerabilities in interact 2.2, when register_globals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the (1) CONFIG[BASE_PATH] param… NVD-CWE-Other
CVE-2006-4448 2018-10-18 06:37 2006-08-30 Show GitHub Exploit DB Packet Storm
346257 - mybulletinboard mybulletinboard Cross-site scripting (XSS) vulnerability in attachment.php in MyBulletinBoard (MyBB) 1.1.7 and possibly other versions allows remote attackers to inject arbitrary web script or HTML via a GIF image t… NVD-CWE-Other
CVE-2006-4449 2018-10-18 06:37 2006-08-30 Show GitHub Exploit DB Packet Storm
346258 - digi_international_inc anywhere_usb5 Integer overflow in AnywhereUSB/5 1.80.00 allows local users to cause a denial of service (crash) via a 1 byte header size specified in the USB string descriptor. NVD-CWE-Other
CVE-2006-4459 2018-10-18 06:37 2006-09-6 Show GitHub Exploit DB Packet Storm
346259 - gonafish.com linkscaffe Gonafish.com LinksCaffe 2.0 and 3.0 do not properly restrict access to administrator functions, which allows remote attackers to gain full administration rights via a direct request to Admin/admin195… NVD-CWE-Other
CVE-2006-4462 2018-10-18 06:37 2006-09-1 Show GitHub Exploit DB Packet Storm
346260 - jetstat.com js_asp_faq_manager SQL injection vulnerability in the administrator control panel in Jetstat.com JS ASP Faq Manager 1.10 allows remote attackers to execute arbitrary SQL commands via the pwd parameter (aka the Password… NVD-CWE-Other
CVE-2006-4463 2018-10-18 06:37 2006-09-1 Show GitHub Exploit DB Packet Storm