Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 22, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
239911	7.5	危険	The PHP Group	-	BLOG:CMS の admin/plugins/NP_UserSharing.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-6552	2012-09-25 15:36	2006-12-14	Show	GitHub Exploit DB Packet Storm

239912	4.3	警告	mlipod	-	Winamp iPod プラグインの read_aa.cpp におけるバッファオーバーフローの脆弱性	-	CVE-2006-6547	2012-09-25 15:36	2006-12-14	Show	GitHub Exploit DB Packet Storm

239913	7.5	危険	The PHP Group	-	mxBB 用の ErrorDocs における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-6545	2012-09-25 15:36	2006-12-13	Show	GitHub Exploit DB Packet Storm

239914	7.5	危険	IBM	-	IBM WebSphere Host On-Demand における認証を回避される脆弱性	-	CVE-2006-6537	2012-09-25 15:36	2006-12-13	Show	GitHub Exploit DB Packet Storm

239915	4.3	警告	osCommerce	-	osCommerce におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-6534	2012-09-25 15:36	2006-12-13	Show	GitHub Exploit DB Packet Storm

239916	7.5	危険	osCommerce	-	osCommerce の admin/templates_boxes_layout.php におけるディレクトリトラバーサルの脆弱性	-	CVE-2006-6533	2012-09-25 15:36	2006-12-13	Show	GitHub Exploit DB Packet Storm

239917	6.8	警告	kdpics	-	KDPics におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-6517	2012-09-25 15:36	2006-12-13	Show	GitHub Exploit DB Packet Storm

239918	7.5	危険	kdpics	-	KDPics における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-6516	2012-09-25 15:36	2006-12-13	Show	GitHub Exploit DB Packet Storm

239919	10	危険	Mantis	-	Mantis における脆弱性	-	CVE-2006-6515	2012-09-25 15:36	2006-12-13	Show	GitHub Exploit DB Packet Storm

239920	5.1	警告	OpenLDAP Foundation	-	OpenLDAP の servers/slapd/kerberos.c におけるバッファオーバーフローの脆弱性	-	CVE-2006-6493	2012-09-25 15:36	2006-12-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
286171	9.8	CRITICAL Network	zsh_project	zsh	In utils.c in zsh before 5.0.6, there is a buffer overflow when scanning very long directory paths for symbolic links.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2014-10072	2024-11-21 11:03	2018-02-28	Show	GitHub Exploit DB Packet Storm

286172	9.8	CRITICAL Network	zsh canonical	zsh ubuntu_linux	In exec.c in zsh before 5.0.7, there is a buffer overflow for very long fds in the ">& fd" syntax.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2014-10071	2024-11-21 11:03	2018-02-28	Show	GitHub Exploit DB Packet Storm

286173	7.8	HIGH Local	zsh_project	zsh	zsh before 5.0.7 allows evaluation of the initial values of integer variables imported from the environment (instead of treating them as literal numbers). That could allow local privilege escalation,…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2014-10070	2024-11-21 11:03	2018-02-28	Show	GitHub Exploit DB Packet Storm

286174	7.5	HIGH Network	hitrontech	cve-30360_firmware	Hitron CVE-30360 devices use a 578A958E3DD933FC DES key that is shared across different customers' installations, which makes it easier for attackers to obtain sensitive information by decrypting a b…	CWE-310 Cryptographic Issues	CVE-2014-10069	2024-11-21 11:03	2018-01-8	Show	GitHub Exploit DB Packet Storm

286175	9.8	CRITICAL Network	eyou	eyou	The get_login_ip_config_file function in Eyou Mail System before 3.6 allows remote attackers to execute arbitrary commands via shell metacharacters in the domain parameter to admin/domain/ip_login_se…	CWE-77 Command Injection	CVE-2014-1203	2024-11-21 11:03	2017-10-24	Show	GitHub Exploit DB Packet Storm

286176	7.5	HIGH Network	google	android	WiFiMonitor in Android 4.4.4 as used in the Nexus 5 and 4, Android 4.2.2 as used in the LG D806, Android 4.2.2 as used in the Samsung SM-T310, Android 4.1.2 as used in the Motorola RAZR HD, and poten…	CWE-19 Data Processing Errors	CVE-2014-0997	2024-11-21 11:03	2017-09-26	Show	GitHub Exploit DB Packet Storm

286177	7.8	HIGH Local	graphviz	graphviz	Stack-based buffer overflow in the "yyerror" function in Graphviz 2.34.0 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted file. NOTE: …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2014-1235	2024-11-21 11:03	2017-08-8	Show	GitHub Exploit DB Packet Storm

286178	-		sendio	sendio	Sendio before 7.2.4 includes the session identifier in URLs in emails, which allows remote attackers to obtain sensitive information and hijack sessions by reading the jsessionid parameter in the Ref…	CWE-200 Information Exposure	CVE-2014-0999	2024-11-21 11:03	2015-06-2	Show	GitHub Exploit DB Packet Storm

286179	-		ibm	db2	IBM DB2 9.5 through 10.5 on Linux, UNIX, and Windows stores passwords during the processing of certain SQL statements by the monitoring and audit facilities, which allows remote authenticated users t…	CWE-200 Information Exposure	CVE-2014-0919	2024-11-21 11:03	2015-05-8	Show	GitHub Exploit DB Packet Storm

286180	-		freebsd	freebsd	Integer signedness error in the vt console driver (formerly Newcons) in FreeBSD 9.3 before p10 and 10.1 before p6 allows local users to cause a denial of service (crash) and possibly gain privileges …	CWE-189 Numeric Errors	CVE-2014-0998	2024-11-21 11:03	2015-02-3	Show	GitHub Exploit DB Packet Storm