Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 27, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
203691 9.8 緊急
Network 		The PHP Group - PHP の Zend/zend_hash.c における任意のコードを実行される脆弱性 CWE-190
整数オーバーフローまたはラップアラウンド 		CVE-2017-5340 2017-01-23 11:40 2017-01-3 Show GitHub Exploit DB Packet Storm
203692 9.8 緊急
Network 		The PHP Group - PHP の ext/spl/spl_observer.c の SplObjectStorage のアンシリアライズの実装における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2016-7480 2017-01-23 11:40 2016-10-13 Show GitHub Exploit DB Packet Storm
203693 7.5 重要
Network 		The PHP Group - PHP の Zend/zend_exceptions.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-835
無限ループ 		CVE-2016-7478 2017-01-23 11:40 2016-11-3 Show GitHub Exploit DB Packet Storm
203694 4.8 警告
Network 		web2py - Web2py における反射型クロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-4807 2017-01-23 10:52 2016-04-4 Show GitHub Exploit DB Packet Storm
203695 7.8 重要
Local 		Hancom Inc. - Hancom Office 2014 におけるアプリケーションのコンテキスト内でコードを実行される脆弱性 CWE-190
整数オーバーフローまたはラップアラウンド 		CVE-2016-4298 2017-01-23 10:42 2016-08-4 Show GitHub Exploit DB Packet Storm
203696 7.8 重要
Local 		Hancom Inc. - Hancom Office 2014 におけるヒープを破損される脆弱性 CWE-119
バッファエラー 		CVE-2016-4296 2017-01-23 10:42 2016-08-4 Show GitHub Exploit DB Packet Storm
203697 7.8 重要
Local 		Hancom Inc. - Hancom Office 2014 におけるヒープのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2016-4295 2017-01-23 10:42 2016-08-4 Show GitHub Exploit DB Packet Storm
203698 7.8 重要
Local 		Hancom Inc. - Hancom Office 2014 におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2016-4294 2017-01-23 10:41 2016-08-4 Show GitHub Exploit DB Packet Storm
203699 7.8 重要
Local 		Hancom Inc. - Hancom Office 2014 におけるアプリケーションのコンテキスト内でコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2016-4292 2017-01-23 10:41 2016-08-4 Show GitHub Exploit DB Packet Storm
203700 7.8 重要
Local 		Hancom Inc. - Hancom Office 2014 における整数オーバーフローの脆弱性 CWE-190
整数オーバーフローまたはラップアラウンド 		CVE-2016-4291 2017-01-23 10:41 2016-08-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 27, 2026, 4:35 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
346001 - squirrelmail squirrelmail Dynamic variable evaluation vulnerability in compose.php in SquirrelMail 1.4.0 to 1.4.7 allows remote attackers to overwrite arbitrary program variables and read or write the attachments and preferen… NVD-CWE-Other
CVE-2006-4019 2018-10-18 06:32 2006-08-12 Show GitHub Exploit DB Packet Storm
346002 - squirrelmail squirrelmail This vulnerability is addressed in the following product release: SquirrelMail, SquirrelMail, 1.4.8 NVD-CWE-Other
CVE-2006-4019 2018-10-18 06:32 2006-08-12 Show GitHub Exploit DB Packet Storm
346003 - xennobb xennobb SQL injection vulnerability in profile.php in XennoBB 2.1.0 and earlier allows remote authenticated users to execute arbitrary SQL commands via the (1) bday_day, (2) bday_month, and (3) bday_year par… NVD-CWE-Other
CVE-2006-4025 2018-10-18 06:32 2006-08-9 Show GitHub Exploit DB Packet Storm
346004 - php php The ip2long function in PHP 5.1.4 and earlier may incorrectly validate an arbitrary string and return a valid network IP address, which allows remote attackers to obtain network information and facil… NVD-CWE-Other
CVE-2006-4023 2018-10-18 06:32 2006-08-9 Show GitHub Exploit DB Packet Storm
346005 - redgraphic sapid_cms PHP remote file inclusion vulnerability in SAPID CMS 123 rc3 allows remote attackers to execute arbitrary PHP code via a URL in the (1) root_path parameter in usr/extensions/get_infochannel.inc.php a… CWE-94
Code Injection 		CVE-2006-4026 2018-10-18 06:32 2006-08-9 Show GitHub Exploit DB Packet Storm
346006 - mozilla firefox
seamonkey 		Mozilla Firefox before 1.5.0.5 and SeaMonkey before 1.0.3 allows remote Proxy AutoConfig (PAC) servers to execute code with elevated privileges via a PAC script that sets the FindProxyForURL function… NVD-CWE-Other
CVE-2006-3808 2018-10-18 06:31 2006-07-28 Show GitHub Exploit DB Packet Storm
346007 - mozilla firefox
seamonkey
thunderbird 		Mozilla Firefox before 1.5.0.5, Thunderbird before 1.5.0.5, and SeaMonkey before 1.0.3 allows scripts with the UniversalBrowserRead privilege to gain UniversalXPConnect privileges and possibly execut… NVD-CWE-Other
CVE-2006-3809 2018-10-18 06:31 2006-07-28 Show GitHub Exploit DB Packet Storm
346008 - mozilla firefox
seamonkey
thunderbird 		Cross-site scripting (XSS) vulnerability in Mozilla Firefox 1.5 before 1.5.0.5, Thunderbird before 1.5.0.5, and SeaMonkey before 1.0.3 allows remote attackers to inject arbitrary web script or HTML v… NVD-CWE-Other
CVE-2006-3810 2018-10-18 06:31 2006-07-28 Show GitHub Exploit DB Packet Storm
346009 - mozilla firefox
seamonkey
thunderbird 		Multiple vulnerabilities in Mozilla Firefox before 1.5.0.5, Thunderbird before 1.5.0.5, and SeaMonkey before 1.0.3 allow remote attackers to cause a denial of service (crash) and possibly execute arb… NVD-CWE-Other
CVE-2006-3811 2018-10-18 06:31 2006-07-28 Show GitHub Exploit DB Packet Storm
346010 - mozilla firefox
seamonkey
thunderbird 		Mozilla Firefox before 1.5.0.5, Thunderbird before 1.5.0.5, and SeaMonkey before 1.0.3 allows remote attackers to reference remote files and possibly load chrome: URLs by tricking the user into copyi… NVD-CWE-Other
CVE-2006-3812 2018-10-18 06:31 2006-07-29 Show GitHub Exploit DB Packet Storm