Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 1, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
240241	7.5	危険	mamboxchange	-	Mambo LaiThai の includes/mambo.php における SQL インジェクションの脆弱性	-	CVE-2006-7092	2012-09-25 15:36	2007-03-2	Show	GitHub Exploit DB Packet Storm

240242	7.5	危険	hinton design	-	phpht Topsites FREE における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-7091	2012-09-25 15:36	2007-03-2	Show	GitHub Exploit DB Packet Storm

240243	4.3	警告	hot links	-	Hot Links の dlback.php スクリプトにおける重要な情報を取得される脆弱性	-	CVE-2006-7086	2012-09-25 15:36	2007-03-2	Show	GitHub Exploit DB Packet Storm

240244	4.3	警告	opentools	-	Opentools Attachment Mod におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-7073	2012-09-25 15:36	2007-03-2	Show	GitHub Exploit DB Packet Storm

240245	7.5	危険	Invision Power Services, Inc	-	IPB の classes/class_session.php における SQL インジェクションの脆弱性	-	CVE-2006-7071	2012-09-25 15:36	2007-03-2	Show	GitHub Exploit DB Packet Storm

240246	6	警告	オラクル	-	Oracle における内部エラーを誘発される脆弱性	-	CVE-2006-7067	2012-09-25 15:36	2007-03-2	Show	GitHub Exploit DB Packet Storm

240247	5	警告	マイクロソフトキヤノン	-	Microsoft Internet Explorer 6 および 7 におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-7065	2012-09-25 15:36	2007-03-2	Show	GitHub Exploit DB Packet Storm

240248	9.3	危険	Invision Power Services, Inc	-	IPB の forum/admin.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-7064	2012-09-25 15:36	2007-02-23	Show	GitHub Exploit DB Packet Storm

240249	7.8	危険	KDE project	-	kmail の calendar.php におけるサーバのフルパスを取得される脆弱性	-	CVE-2006-7062	2012-09-25 15:36	2007-02-23	Show	GitHub Exploit DB Packet Storm

240250	10	危険	keith reichley	-	DotWidget For Articles における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-7052	2012-09-25 15:36	2007-02-23	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
266921	6.5	MEDIUM Adjacent	amazonbasics dell logitech lenovo	firmware km714_firmware km632_firmware unifying_firmware ultraslim_firmware	The firmware in Lenovo Ultraslim dongles, as used with Lenovo Liteon SK-8861, Ultraslim Wireless, and Silver Silk keyboards and Liteon ZTM600 and Ultraslim Wireless mice, does not enforce incrementin…	CWE-310 Cryptographic Issues	CVE-2016-6257	2024-11-21 11:55	2016-08-2	Show	GitHub Exploit DB Packet Storm

266922	7.8	HIGH Local	perl fedoraproject debian oracle canonical	perl fedora debian_linux solaris ubuntu_linux	The XSLoader::load method in XSLoader in Perl does not properly locate .so files when called in a string eval, which might allow local users to execute arbitrary code via a Trojan horse library under…	NVD-CWE-noinfo	CVE-2016-6185	2024-11-21 11:55	2016-08-2	Show	GitHub Exploit DB Packet Storm

266923	8.8	HIGH Network	ca broadcom	ehealth	CA eHealth 6.2.x and 6.3.x before 6.3.2.13 allows remote authenticated users to cause a denial of service or possibly execute arbitrary commands via unspecified vectors.	NVD-CWE-noinfo	CVE-2016-6152	2024-11-21 11:55	2016-07-26	Show	GitHub Exploit DB Packet Storm

266924	8.8	HIGH Network	ca	ehealth	CA eHealth 6.2.x allows remote authenticated users to cause a denial of service or possibly execute arbitrary commands via unspecified vectors.	NVD-CWE-noinfo	CVE-2016-6151	2024-11-21 11:55	2016-07-26	Show	GitHub Exploit DB Packet Storm

266925	8.8	HIGH Network	php	php	Integer overflow in the php_stream_zip_opener function in ext/zip/zip_stream.c in PHP before 5.5.38, 5.6.x before 5.6.24, and 7.x before 7.0.9 allows remote attackers to cause a denial of service (st…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-6297	2024-11-21 11:55	2016-07-25	Show	GitHub Exploit DB Packet Storm

266926	9.8	CRITICAL Network	php	php	Integer signedness error in the simplestring_addn function in simplestring.c in xmlrpc-epi through 0.54.2, as used in PHP before 5.5.38, 5.6.x before 5.6.24, and 7.x before 7.0.9, allows remote attac…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-6296	2024-11-21 11:55	2016-07-25	Show	GitHub Exploit DB Packet Storm

266927	9.8	CRITICAL Network	php	php	ext/snmp/snmp.c in PHP before 5.5.38, 5.6.x before 5.6.24, and 7.x before 7.0.9 improperly interacts with the unserialize implementation and garbage collection, which allows remote attackers to cause…	CWE-416 Use After Free	CVE-2016-6295	2024-11-21 11:55	2016-07-25	Show	GitHub Exploit DB Packet Storm

266928	9.8	CRITICAL Network	php	php	The locale_accept_from_http function in ext/intl/locale/locale_methods.c in PHP before 5.5.38, 5.6.x before 5.6.24, and 7.x before 7.0.9 does not properly restrict calls to the ICU uloc_acceptLanguag…	CWE-125 Out-of-bounds Read	CVE-2016-6294	2024-11-21 11:55	2016-07-25	Show	GitHub Exploit DB Packet Storm

266929	9.8	CRITICAL Network	icu-project	international_components_for_unicode	The uloc_acceptLanguageFromHTTP function in common/uloc.cpp in International Components for Unicode (ICU) through 57.1 for C/C++ does not ensure that there is a '\0' character at the end of a certain…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-6293	2024-11-21 11:55	2016-07-25	Show	GitHub Exploit DB Packet Storm

266930	6.5	MEDIUM Network	php	php	The exif_process_user_comment function in ext/exif/exif.c in PHP before 5.5.38, 5.6.x before 5.6.24, and 7.x before 7.0.9 allows remote attackers to cause a denial of service (NULL pointer dereferenc…	CWE-476 NULL Pointer Dereference	CVE-2016-6292	2024-11-21 11:55	2016-07-25	Show	GitHub Exploit DB Packet Storm