Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 5, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
241501	4.3	警告	Horde	-	Horde Application Framework における他のサイトから Web ページをインクルードされる脆弱性	-	CVE-2006-4256	2012-09-25 15:35	2006-08-21	Show	GitHub Exploit DB Packet Storm

241502	4.3	警告	Horde	-	Horde IMP H3 の horde/imp/search.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-4255	2012-09-25 15:35	2006-08-21	Show	GitHub Exploit DB Packet Storm

241503	5.1	警告	Joomla!	-	Joomla または Mambo 用の JIM コンポーネントにおける PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4242	2012-09-25 15:35	2006-08-21	Show	GitHub Exploit DB Packet Storm

241504	7.5	危険	mamboxchange	-	Reporter Mambo コンポーネントにおける PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4241	2012-09-25 15:35	2006-08-21	Show	GitHub Exploit DB Packet Storm

241505	7.5	危険	outreach project tool	-	OPT Max の include/urights.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4239	2012-09-25 15:35	2006-08-21	Show	GitHub Exploit DB Packet Storm

241506	7.5	危険	invisionix systems	-	IRSR の pageheaderdefault.inc.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4237	2012-09-25 15:35	2006-08-21	Show	GitHub Exploit DB Packet Storm

241507	2.6	注意	Irfan Skiljan	-	プラグインを持つ IrfanView におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-4231	2012-09-25 15:35	2006-08-18	Show	GitHub Exploit DB Packet Storm

241508	7.5	危険	lizge	-	Lizge V.20 Web Portal の index.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4230	2012-09-25 15:35	2006-08-18	Show	GitHub Exploit DB Packet Storm

241509	7.5	危険	Mambo Foundation Joomla!	-	Mambo および Joomla! 用の com_lm における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4229	2012-09-25 15:35	2006-08-18	Show	GitHub Exploit DB Packet Storm

241510	9.3	危険	IBM	-	IBM Access Support eGatherer におけるスタックベースのバッファオーバーフローの脆弱性	-	CVE-2006-4221	2012-09-25 15:35	2006-08-18	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 6, 2026, 4:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
265811	8.8	HIGH Network	tats	w3m	An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. The feed_table_tag function in w3m doesn't properly validate the value of table span, which allows remote attackers to cause…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-9422	2024-11-21 12:01	2016-12-12	Show	GitHub Exploit DB Packet Storm

265812	9.8	CRITICAL Network	phpmyadmin	phpmyadmin	An issue was discovered in phpMyAdmin. When the arg_separator is different from its default & value, the CSRF token was not properly stripped from the return URL of the preference import action. All …	CWE-352 Origin Validation Error	CVE-2016-9866	2024-11-21 12:01	2016-12-11	Show	GitHub Exploit DB Packet Storm

265813	9.8	CRITICAL Network	phpmyadmin	phpmyadmin	An issue was discovered in phpMyAdmin. Due to a bug in serialized string parsing, it was possible to bypass the protection offered by PMA_safeUnserialize() function. All 4.6.x versions (prior to 4.6.…	CWE-254 CWE-502 7PK - Security Features Deserialization of Untrusted Data	CVE-2016-9865	2024-11-21 12:01	2016-12-11	Show	GitHub Exploit DB Packet Storm

265814	7.5	HIGH Network	phpmyadmin	phpmyadmin	An issue was discovered in phpMyAdmin. With a very large request to table partitioning function, it is possible to invoke a Denial of Service (DoS) attack. All 4.6.x versions (prior to 4.6.5) are aff…	CWE-20 Improper Input Validation	CVE-2016-9863	2024-11-21 12:01	2016-12-11	Show	GitHub Exploit DB Packet Storm

265815	7.5	HIGH Network	phpmyadmin	phpmyadmin	An issue was discovered in phpMyAdmin. With a crafted login request it is possible to inject BBCode in the login page. All 4.6.x versions (prior to 4.6.5) are affected.	CWE-94 Code Injection	CVE-2016-9862	2024-11-21 12:01	2016-12-11	Show	GitHub Exploit DB Packet Storm

265816	7.5	HIGH Network	phpmyadmin	phpmyadmin	An issue was discovered in phpMyAdmin. Due to the limitation in URL matching, it was possible to bypass the URL white-list protection. All 4.6.x versions (prior to 4.6.5), 4.4.x versions (prior to 4.…	CWE-254 7PK - Security Features	CVE-2016-9861	2024-11-21 12:01	2016-12-11	Show	GitHub Exploit DB Packet Storm

265817	5.9	MEDIUM Network	phpmyadmin	phpmyadmin	An issue was discovered in phpMyAdmin. An unauthenticated user can execute a denial of service attack when phpMyAdmin is running with $cfg['AllowArbitraryServer']=true. All 4.6.x versions (prior to 4…	CWE-20 Improper Input Validation	CVE-2016-9860	2024-11-21 12:01	2016-12-11	Show	GitHub Exploit DB Packet Storm

265818	7.5	HIGH Network	phpmyadmin	phpmyadmin	An issue was discovered in phpMyAdmin. With a crafted username or a table name, it was possible to inject SQL statements in the tracking functionality that would run with the privileges of the contro…	CWE-89 SQL Injection	CVE-2016-9864	2024-11-21 12:01	2016-12-11	Show	GitHub Exploit DB Packet Storm

265819	5.3	MEDIUM Network	phpmyadmin	phpmyadmin	An issue was discovered in phpMyAdmin. With a crafted request parameter value it is possible to initiate a denial of service attack in import feature. All 4.6.x versions (prior to 4.6.5), 4.4.x versi…	CWE-20 Improper Input Validation	CVE-2016-9859	2024-11-21 12:01	2016-12-11	Show	GitHub Exploit DB Packet Storm

265820	5.3	MEDIUM Network	phpmyadmin	phpmyadmin	An issue was discovered in phpMyAdmin. With a crafted request parameter value it is possible to initiate a denial of service attack in saved searches feature. All 4.6.x versions (prior to 4.6.5), 4.4…	CWE-20 Improper Input Validation	CVE-2016-9858	2024-11-21 12:01	2016-12-11	Show	GitHub Exploit DB Packet Storm