Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 30, 2026, 2:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
251101 6.8 警告 aiocp - AIOCP の shared/code/cp_authorization.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-2625 2012-06-26 15:46 2007-05-11 Show GitHub Exploit DB Packet Storm
251102 6.8 警告 aiocp - AIOCP の shared/config/cp_config.php におけるクロスサイトスクリプティング攻撃を誘発する脆弱性 - CVE-2007-2624 2012-06-26 15:46 2007-05-11 Show GitHub Exploit DB Packet Storm
251103 7.8 危険 fruit2004 - Remote Display Dev キットの RControl.dll におけるバッファオーバーフローの脆弱性 - CVE-2007-2623 2012-06-26 15:46 2007-05-11 Show GitHub Exploit DB Packet Storm
251104 7.5 危険 extrovert software - Thyme Calendar の event_view.php における SQL インジェクションの脆弱性 - CVE-2007-2621 2012-06-26 15:46 2007-05-11 Show GitHub Exploit DB Packet Storm
251105 5.1 警告 drake team - Drake CMS の index.php における CRLF インジェクションの脆弱性 - CVE-2007-2618 2012-06-26 15:46 2007-05-11 Show GitHub Exploit DB Packet Storm
251106 7.5 危険 crie sue - Crie seu PHPLojaFacil における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2615 2012-06-26 15:46 2007-05-11 Show GitHub Exploit DB Packet Storm
251107 6.8 警告 cgx - CGX における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2611 2012-06-26 15:46 2007-05-11 Show GitHub Exploit DB Packet Storm
251108 7.5 危険 gnuedu - gnuedu における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-2609 2012-06-26 15:46 2007-05-11 Show GitHub Exploit DB Packet Storm
251109 7.8 危険 Firebird Project - Firebird におけるバッファオーバーフローの脆弱性 - CVE-2007-2606 2012-06-26 15:46 2007-05-11 Show GitHub Exploit DB Packet Storm
251110 7.1 危険 brujula toolbar - Brujula Toolbar の BRUJULA4.NET.DLL におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-2605 2012-06-26 15:46 2007-05-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 30, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
265651 9.8 CRITICAL
Network 		sam2p_project sam2p Because of an integer overflow in sam2p 0.49.3, a loop executes 0xffffffff times, ending with an invalid read of size 1 in the Image::Indexed::sortPal function in image.cpp. However, this also causes… CWE-190
 Integer Overflow or Wraparound 		CVE-2017-14636 2024-11-21 12:13 2017-09-22 Show GitHub Exploit DB Packet Storm
265652 7.8 HIGH
Local 		artifex mupdf Artifex MuPDF 1.11 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .xps file, related to "Data from Faulting Address controls Branch Selection st… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-14687 2024-11-21 12:13 2017-09-22 Show GitHub Exploit DB Packet Storm
265653 7.8 HIGH
Local 		artifex mupdf Artifex MuPDF 1.11 allows attackers to execute arbitrary code or cause a denial of service via a crafted .xps file, related to a "User Mode Write AV near NULL starting at wow64!Wow64NotifyDebugger+0x… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-14686 2024-11-21 12:13 2017-09-22 Show GitHub Exploit DB Packet Storm
265654 7.8 HIGH
Local 		artifex mupdf Artifex MuPDF 1.11 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .xps file, related to "Data from Faulting Address controls Branch Selection st… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-14685 2024-11-21 12:13 2017-09-22 Show GitHub Exploit DB Packet Storm
265655 6.5 MEDIUM
Network 		imagemagick imagemagick In ImageMagick 7.0.7-4 Q16, a memory leak vulnerability was found in the function ReadVIPSImage in coders/vips.c, which allows attackers to cause a denial of service (memory consumption in ResizeMagi… CWE-772
 Missing Release of Resource after Effective Lifetime 		CVE-2017-14684 2024-11-21 12:13 2017-09-22 Show GitHub Exploit DB Packet Storm
265656 8.8 HIGH
Network 		imagemagick imagemagick GetNextToken in MagickCore/token.c in ImageMagick 7.0.6 allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impa… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-14682 2024-11-21 12:13 2017-09-22 Show GitHub Exploit DB Packet Storm
265657 5.5 MEDIUM
Local 		p3scan_project p3scan The daemon in P3Scan 3.0_rc1 and earlier creates a p3scan.pid file after dropping privileges to a non-root account, which might allow local users to kill arbitrary processes by leveraging access to t… CWE-665
 Improper Initialization 		CVE-2017-14681 2024-11-21 12:13 2017-09-22 Show GitHub Exploit DB Packet Storm
265658 7.5 HIGH
Network 		zkteco zktime_web ZKTeco ZKTime Web 2.0.1.12280 allows remote attackers to obtain sensitive employee metadata via a direct request for a PDF document. CWE-200
Information Exposure 		CVE-2017-14680 2024-11-21 12:13 2017-09-22 Show GitHub Exploit DB Packet Storm
265659 9.8 CRITICAL
Network 		tapatalk tapatalk SQL Injection vulnerability in mobiquo/lib/classTTForum.php in the Tapatalk plugin before 4.5.8 for MyBB allows an unauthenticated remote attacker to inject arbitrary SQL commands via an XML-RPC enco… CWE-89
SQL Injection 		CVE-2017-14652 2024-11-21 12:13 2017-09-22 Show GitHub Exploit DB Packet Storm
265660 4.8 MEDIUM
Network 		wso2 storage_server
message_broker
machine_learner
iot_server
identity_server
governance_registry
enterprise_mobility_manager
enterprise_integrator
data_services_server
dashboar… 		WSO2 Data Analytics Server 3.1.0 has XSS in carbon/resources/add_collection_ajaxprocessor.jsp via the collectionName or parentPath parameter. CWE-79
Cross-site Scripting 		CVE-2017-14651 2024-11-21 12:13 2017-09-22 Show GitHub Exploit DB Packet Storm