Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 19, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
250801 4.6 警告 アップル - Apple OS X の kextload におけるバッファオーバーフローの脆弱性 - CVE-2006-4866 2012-06-26 15:37 2006-09-19 Show GitHub Exploit DB Packet Storm
250802 7.5 危険 all enthusiast inc - All Enthusiast ReviewPost の index.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4864 2012-06-26 15:37 2006-09-19 Show GitHub Exploit DB Packet Storm
250803 7.5 危険 easypagecms - easypage の default.aspx における SQL インジェクションの脆弱性 - CVE-2006-4862 2012-06-26 15:37 2006-09-19 Show GitHub Exploit DB Packet Storm
250804 7.5 危険 clicktech - ClickTech ClickBlog の default.asp における SQL インジェクションの脆弱性 - CVE-2006-4857 2012-06-26 15:37 2006-09-19 Show GitHub Exploit DB Packet Storm
250805 7.5 危険 bolinos - BolinOS の system/_b/contentFiles/gBHTMLEditor.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4851 2012-06-26 15:37 2006-09-18 Show GitHub Exploit DB Packet Storm
250806 5.1 警告 bolinos - BolinOS の system/_b/contentFiles/gBIndex.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4850 2012-06-26 15:37 2006-09-18 Show GitHub Exploit DB Packet Storm
250807 5.1 警告 シトリックス・システムズ - Citrix Access Gateway with AAC における認証を回避される脆弱性 - CVE-2006-4846 2012-06-26 15:37 2006-09-14 Show GitHub Exploit DB Packet Storm
250808 5.1 警告 george lewe - TeamCal Pro の includes/footer.html.inc.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4845 2012-06-26 15:37 2006-09-18 Show GitHub Exploit DB Packet Storm
250809 5.1 警告 Claroline Consortium
Dokeos		 - Dokeos などの製品で使用される Claroline の inc/claro_init_local.inc.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2006-4844 2012-06-26 15:37 2006-09-18 Show GitHub Exploit DB Packet Storm
250810 4.3 警告 codeworx technologies - DCP-Portal SE におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-4838 2012-06-26 15:37 2006-09-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 19, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
247301 7.8 HIGH
Local 		foxitsoftware phantompdf
reader 		An exploitable use-after-free vulnerability exists in the JavaScript engine of Foxit Reader before 9.3 and PhantomPDF before 9.3, a different vulnerability than CVE-2018-16291, CVE-2018-16292, CVE-20… CWE-416
 Use After Free 		CVE-2018-16296 2024-11-21 12:52 2018-10-9 Show GitHub Exploit DB Packet Storm
247302 7.8 HIGH
Local 		foxitsoftware phantompdf
reader 		An exploitable use-after-free vulnerability exists in the JavaScript engine of Foxit Reader before 9.3 and PhantomPDF before 9.3, a different vulnerability than CVE-2018-16291, CVE-2018-16292, CVE-20… CWE-416
 Use After Free 		CVE-2018-16295 2024-11-21 12:52 2018-10-9 Show GitHub Exploit DB Packet Storm
247303 7.8 HIGH
Local 		foxitsoftware phantompdf
reader 		An exploitable use-after-free vulnerability exists in the JavaScript engine of Foxit Reader before 9.3 and PhantomPDF before 9.3, a different vulnerability than CVE-2018-16291, CVE-2018-16292, CVE-20… CWE-416
 Use After Free 		CVE-2018-16294 2024-11-21 12:52 2018-10-9 Show GitHub Exploit DB Packet Storm
247304 7.8 HIGH
Local 		foxitsoftware phantompdf
reader 		An exploitable use-after-free vulnerability exists in the JavaScript engine of Foxit Reader before 9.3 and PhantomPDF before 9.3, a different vulnerability than CVE-2018-16291, CVE-2018-16292, CVE-20… CWE-416
 Use After Free 		CVE-2018-16293 2024-11-21 12:52 2018-10-9 Show GitHub Exploit DB Packet Storm
247305 7.8 HIGH
Local 		foxitsoftware phantompdf
reader 		An exploitable use-after-free vulnerability exists in the JavaScript engine of Foxit Reader before 9.3 and PhantomPDF before 9.3, a different vulnerability than CVE-2018-16291, CVE-2018-16293, CVE-20… CWE-416
 Use After Free 		CVE-2018-16292 2024-11-21 12:52 2018-10-9 Show GitHub Exploit DB Packet Storm
247306 7.8 HIGH
Local 		foxitsoftware phantompdf
reader 		An exploitable use-after-free vulnerability exists in the JavaScript engine of Foxit Reader before 9.3 and PhantomPDF before 9.3, a different vulnerability than CVE-2018-16292, CVE-2018-16293, CVE-20… CWE-416
 Use After Free 		CVE-2018-16291 2024-11-21 12:52 2018-10-9 Show GitHub Exploit DB Packet Storm
247307 5.3 MEDIUM
Network 		open_source_real-estate_script_project open_source_real-estate_script PHP Scripts Mall Open Source Real-estate Script 3.6.2 allows remote attackers to list the wp-content/themes/template_dp_dec2015/img directory. CWE-22
Path Traversal 		CVE-2018-16457 2024-11-21 12:52 2018-10-5 Show GitHub Exploit DB Packet Storm
247308 6.1 MEDIUM
Network 		phpscriptsmall website_seller_script PHP Scripts Mall Website Seller Script 2.0.5 has XSS via a keyword. NOTE: This may overlap with CVE-2018-6870 which has XSS via the Listings Search feature. CWE-79
Cross-site Scripting 		CVE-2018-16456 2024-11-21 12:52 2018-10-5 Show GitHub Exploit DB Packet Storm
247309 6.1 MEDIUM
Network 		marketplace_script_project marketplace_script PHP Scripts Mall Market Place Script 1.0.1 allows XSS via a keyword. CWE-79
Cross-site Scripting 		CVE-2018-16455 2024-11-21 12:52 2018-10-5 Show GitHub Exploit DB Packet Storm
247310 6.1 MEDIUM
Network 		domain_lookup_script_project domain_lookup_script PHP Scripts Mall Domain Lookup Script 3.0.5 allows XSS in the search bar. CWE-79
Cross-site Scripting 		CVE-2018-16453 2024-11-21 12:52 2018-10-5 Show GitHub Exploit DB Packet Storm