Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 18, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
250771 7.5 危険 blue dragon - Php Blue Dragon の GetModuleConfig 関数における SQL インジェクションの脆弱性 - CVE-2006-4961 2012-06-26 15:37 2006-09-23 Show GitHub Exploit DB Packet Storm
250772 6.8 警告 blue dragon - Php Blue Dragon の index.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-4960 2012-06-26 15:37 2006-09-23 Show GitHub Exploit DB Packet Storm
250773 4.3 警告 Drupal - Drupal の Site Profile Directory におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-4949 2012-06-26 15:37 2006-09-20 Show GitHub Exploit DB Packet Storm
250774 6.8 警告 Drupal - Drupal の Search Keywords モジュールにおけるクロスサイトスクリプティングの脆弱性 - CVE-2006-4947 2012-06-26 15:37 2006-09-20 Show GitHub Exploit DB Packet Storm
250775 5.1 警告 cmsdevelopment - BCWB の include/startup.inc.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4946 2012-06-26 15:37 2006-09-22 Show GitHub Exploit DB Packet Storm
250776 5.1 警告 cardway - Cardway DigitalWebShop における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4945 2012-06-26 15:37 2006-09-22 Show GitHub Exploit DB Packet Storm
250777 7.5 危険 boesch-it - ProgSys の includes/pear/Net/DNS/RR.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4944 2012-06-26 15:37 2006-09-22 Show GitHub Exploit DB Packet Storm
250778 4.3 警告 esyndicat portal system - eSyndiCat Portal System の search.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-4923 2012-06-26 15:37 2006-09-20 Show GitHub Exploit DB Packet Storm
250779 7.5 危険 ASP indir - TR の uye_profil.asp における SQL インジェクションの脆弱性 - CVE-2006-4916 2012-06-26 15:37 2006-09-20 Show GitHub Exploit DB Packet Storm
250780 2.6 注意 a.l-pifou - A.l-Pifou におけるディレクトリトラバーサルの脆弱性 - CVE-2006-4914 2012-06-26 15:37 2006-09-20 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 18, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
247391 6.6 MEDIUM
Physics 		opensc_project opensc A double free when handling responses from an HSM Card in sc_pkcs15emu_sc_hsm_init in libopensc/pkcs15-sc-hsm.c in OpenSC before 0.19.0-rc1 could be used by attackers able to supply crafted smartcard… CWE-415
 Double Free 		CVE-2018-16425 2024-11-21 12:52 2018-09-4 Show GitHub Exploit DB Packet Storm
247392 6.6 MEDIUM
Physics 		opensc_project opensc A double free when handling responses in read_file in tools/egk-tool.c (aka the eGK card tool) in OpenSC before 0.19.0-rc1 could be used by attackers able to supply crafted smartcards to cause a deni… CWE-415
 Double Free 		CVE-2018-16424 2024-11-21 12:52 2018-09-4 Show GitHub Exploit DB Packet Storm
247393 6.6 MEDIUM
Physics 		opensc_project opensc A double free when handling responses from a smartcard in sc_file_set_sec_attr in libopensc/sc.c in OpenSC before 0.19.0-rc1 could be used by attackers able to supply crafted smartcards to cause a de… CWE-415
 Double Free 		CVE-2018-16423 2024-11-21 12:52 2018-09-4 Show GitHub Exploit DB Packet Storm
247394 6.6 MEDIUM
Physics 		opensc_project opensc A single byte buffer overflow when handling responses from an esteid Card in sc_pkcs15emu_esteid_init in libopensc/pkcs15-esteid.c in OpenSC before 0.19.0-rc1 could be used by attackers able to suppl… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2018-16422 2024-11-21 12:52 2018-09-4 Show GitHub Exploit DB Packet Storm
247395 6.6 MEDIUM
Physics 		opensc_project opensc Several buffer overflows when handling responses from a CAC Card in cac_get_serial_nr_from_CUID in libopensc/card-cac.c in OpenSC before 0.19.0-rc1 could be used by attackers able to supply crafted s… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2018-16421 2024-11-21 12:52 2018-09-4 Show GitHub Exploit DB Packet Storm
247396 6.6 MEDIUM
Physics 		opensc_project opensc Several buffer overflows when handling responses from an ePass 2003 Card in decrypt_response in libopensc/card-epass2003.c in OpenSC before 0.19.0-rc1 could be used by attackers able to supply crafte… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2018-16420 2024-11-21 12:52 2018-09-4 Show GitHub Exploit DB Packet Storm
247397 6.6 MEDIUM
Physics 		opensc_project opensc Several buffer overflows when handling responses from a Cryptoflex card in read_public_key in tools/cryptoflex-tool.c in OpenSC before 0.19.0-rc1 could be used by attackers able to supply crafted sma… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2018-16419 2024-11-21 12:52 2018-09-4 Show GitHub Exploit DB Packet Storm
247398 6.6 MEDIUM
Physics 		opensc_project opensc A buffer overflow when handling string concatenation in util_acl_to_str in tools/util.c in OpenSC before 0.19.0-rc1 could be used by attackers able to supply crafted smartcards to cause a denial of s… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2018-16418 2024-11-21 12:52 2018-09-4 Show GitHub Exploit DB Packet Storm
247399 8.8 HIGH
Network 		thedaylightstudio fuel_cms Cross-site request forgery (CSRF) vulnerability in my_profile/edit?inline= in FUEL CMS 1.4 allows remote attackers to change the administrator's password. CWE-352
 Origin Validation Error 		CVE-2018-16416 2024-11-21 12:52 2018-09-4 Show GitHub Exploit DB Packet Storm
247400 8.8 HIGH
Network 		imagemagick imagemagick ImageMagick 7.0.8-11 Q16 has a heap-based buffer over-read in the MagickCore/quantum-private.h PushShortPixel function when called from the coders/psd.c ParseImageResourceBlocks function. CWE-125
Out-of-bounds Read 		CVE-2018-16413 2024-11-21 12:52 2018-09-4 Show GitHub Exploit DB Packet Storm