Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
235491 6.8 警告 phpffl - phpFFL における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション
CVE-2007-4935 2012-12-20 18:33 2007-09-18 Show GitHub Exploit DB Packet Storm
235492 4.6 警告 phpffl - phpFFL における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション
CVE-2007-4934 2012-12-20 18:33 2007-09-18 Show GitHub Exploit DB Packet Storm
235493 7.5 危険 shop-script - Shop-Script の includes/admin/sub/conf_appearence.php における任意の PHP コードを挿入される脆弱性 CWE-94
コード・インジェクション
CVE-2007-4933 2012-12-20 18:33 2007-09-18 Show GitHub Exploit DB Packet Storm
235494 7.5 危険 shop-script - Shop-Script の admin.php における admin パネルへアクセスされる脆弱性 CWE-20
不適切な入力確認
CVE-2007-4932 2012-12-20 18:33 2007-09-18 Show GitHub Exploit DB Packet Storm
235495 4.3 警告 php-stats - PHP-Stats の tracking.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2007-4917 2012-12-20 18:33 2007-09-17 Show GitHub Exploit DB Packet Storm
235496 9.3 危険 WinSCP - WinSCP におけるリモートサーバで任意のファイル転送を実行される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2007-4909 2012-12-20 18:33 2007-09-17 Show GitHub Exploit DB Packet Storm
235497 7.5 危険 Qualiteam Software Limited - X-Cart における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション
CVE-2007-4907 2012-12-20 18:33 2007-09-17 Show GitHub Exploit DB Packet Storm
235498 4.3 警告 リアルネットワークス - RealNetworks RealPlayer および Helix Player におけるサービス運用妨害 (DoS) の脆弱性 CWE-189
数値処理の問題
CVE-2007-4904 2012-12-20 18:33 2007-09-17 Show GitHub Exploit DB Packet Storm
235499 7.5 危険 ultrashareware - Ultra Crypto コンポーネントの CryptoX.dll におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2007-4903 2012-12-20 18:33 2007-09-17 Show GitHub Exploit DB Packet Storm
235500 6.4 警告 ultrashareware - Ultra Crypto コンポーネントの CryptoX.dll における絶対パストラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2007-4902 2012-12-20 18:33 2007-09-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
346381 - cloudnine_interactive links_manager SQL injection vulnerability in admin.php in CloudNine Interactive Links Manager 2006-06-12, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the nick p… NVD-CWE-Other
CVE-2006-4328 2018-10-18 06:34 2006-08-24 Show GitHub Exploit DB Packet Storm
346382 - wireshark wireshark Unspecified vulnerability in the SCSI dissector in Wireshark (formerly Ethereal) 0.99.2 allows remote attackers to cause a denial of service (crash) via unspecified vectors. NVD-CWE-Other
CVE-2006-4330 2018-10-18 06:34 2006-08-25 Show GitHub Exploit DB Packet Storm
346383 - wireshark wireshark The SSCOP dissector in Wireshark (formerly Ethereal) before 0.99.3 allows remote attackers to cause a denial of service (resource consumption) via malformed packets that cause the Q.2391 dissector to… CWE-399
 Resource Management Errors
CVE-2006-4333 2018-10-18 06:34 2006-08-25 Show GitHub Exploit DB Packet Storm
346384 - gzip gzip Unspecified vulnerability in gzip 1.3.5 allows context-dependent attackers to cause a denial of service (crash) via a crafted GZIP (gz) archive, which results in a NULL dereference. NVD-CWE-Other
CVE-2006-4334 2018-10-18 06:34 2006-09-20 Show GitHub Exploit DB Packet Storm
346385 - gzip gzip Array index error in the make_table function in unlzh.c in the LZH decompression component in gzip 1.3.5, when running on certain platforms, allows context-dependent attackers to cause a denial of se… NVD-CWE-Other
CVE-2006-4335 2018-10-18 06:34 2006-09-20 Show GitHub Exploit DB Packet Storm
346386 - gzip gzip Buffer underflow in the build_tree function in unpack.c in gzip 1.3.5 allows context-dependent attackers to execute arbitrary code via a crafted leaf count table that causes a write to a negative ind… NVD-CWE-Other
CVE-2006-4336 2018-10-18 06:34 2006-09-20 Show GitHub Exploit DB Packet Storm
346387 - gzip gzip Buffer overflow in the make_table function in the LHZ component in gzip 1.3.5 allows context-dependent attackers to execute arbitrary code via a crafted decoding table in a GZIP archive. NVD-CWE-Other
CVE-2006-4337 2018-10-18 06:34 2006-09-20 Show GitHub Exploit DB Packet Storm
346388 - ageet agephone Stack-based buffer overflow in sipd.dll in AGEphone 1.24 and 1.38.1 allows remote attackers to execute arbitrary code via a crafted UDP SIP packet. NVD-CWE-Other
CVE-2006-4029 2018-10-18 06:33 2006-08-10 Show GitHub Exploit DB Packet Storm
346389 - ageet agephone This vulnerability is addressed in the following product release: AGEphone 1.40 NVD-CWE-Other
CVE-2006-4029 2018-10-18 06:33 2006-08-10 Show GitHub Exploit DB Packet Storm
346390 - lhaplus lhaplus Heap-based buffer overflow in Lhaplus.exe in Lhaplus 1.52, and possibly earlier versions, allows remote attackers to execute arbitrary code via an LZH archive with a long header, as specified by the … NVD-CWE-Other
CVE-2006-4033 2018-10-18 06:33 2006-08-10 Show GitHub Exploit DB Packet Storm