Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 5, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251121	5	警告	Zikula Foundation	-	Zikula における乱数化をベースにした保護機能を破られる脆弱性	CWE-310 暗号の問題	CVE-2010-4728	2012-03-27 18:42	2011-02-8	Show	GitHub Exploit DB Packet Storm

251122	10	危険	Smarty	-	Smarty における詳細不明の脆弱性	CWE-20 不適切な入力確認	CVE-2010-4727	2012-03-27 18:42	2011-02-3	Show	GitHub Exploit DB Packet Storm

251123	10	危険	Smarty	-	Smarty の math プラグインにおける詳細不明の脆弱性	CWE-noinfo 情報不足	CVE-2010-4726	2012-03-27 18:42	2011-02-3	Show	GitHub Exploit DB Packet Storm

251124	10	危険	Smarty	-	Smarty における詳細不明の脆弱性	CWE-noinfo 情報不足	CVE-2010-4725	2012-03-27 18:42	2011-02-3	Show	GitHub Exploit DB Packet Storm

251125	10	危険	Smarty	-	Smarty のパーサー実装における詳細不明の脆弱性	CWE-noinfo 情報不足	CVE-2010-4724	2012-03-27 18:42	2011-02-3	Show	GitHub Exploit DB Packet Storm

251126	9.3	危険	Smarty	-	Smarty における詳細不明の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-4723	2012-03-27 18:42	2011-02-3	Show	GitHub Exploit DB Packet Storm

251127	10	危険	Smarty	-	Smarty の fetch プラグインにおける詳細不明の脆弱性	CWE-noinfo 情報不足	CVE-2010-4722	2012-03-27 18:42	2011-02-3	Show	GitHub Exploit DB Packet Storm

251128	7.5	危険	MH Products	-	Immo Makler の news.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4721	2012-03-27 18:42	2011-02-1	Show	GitHub Exploit DB Packet Storm

251129	7.5	危険	Joomla! Jextensions	-	Joomla! の JExtensions JE Auto (com_jeauto) コンポーネントにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4720	2012-03-27 18:42	2011-02-1	Show	GitHub Exploit DB Packet Storm

251130	7.5	危険	fxwebdesign	-	Joomla! の JRadio (com_jradio) コンポーネントにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-4719	2012-03-27 18:42	2011-02-1	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
267201	5.9	MEDIUM Network	phpmyadmin	phpmyadmin	An issue was discovered in phpMyAdmin. An unauthenticated user is able to execute a denial-of-service (DoS) attack by forcing persistent connections when phpMyAdmin is running with $cfg['AllowArbitra…	CWE-399 Resource Management Errors	CVE-2016-6622	2024-11-21 11:56	2016-12-11	Show	GitHub Exploit DB Packet Storm

267202	9.8	CRITICAL Network	phpmyadmin	phpmyadmin	An issue was discovered in phpMyAdmin. Some data is passed to the PHP unserialize() function without verification that it's valid serialized data. The unserialization can result in code execution bec…	CWE-502 Deserialization of Untrusted Data	CVE-2016-6620	2024-11-21 11:56	2016-12-11	Show	GitHub Exploit DB Packet Storm

267203	8.8	HIGH Network	phpmyadmin	phpmyadmin	An issue was discovered in phpMyAdmin. In the user interface preference feature, a user can execute an SQL injection attack against the account of the control user. All 4.6.x versions (prior to 4.6.4…	CWE-89 SQL Injection	CVE-2016-6619	2024-11-21 11:56	2016-12-11	Show	GitHub Exploit DB Packet Storm

267204	6.5	MEDIUM Network	phpmyadmin	phpmyadmin	An issue was discovered in phpMyAdmin. The transformation feature allows a user to trigger a denial-of-service (DoS) attack against the server. All 4.6.x versions (prior to 4.6.4), 4.4.x versions (pr…	NVD-CWE-noinfo	CVE-2016-6618	2024-11-21 11:56	2016-12-11	Show	GitHub Exploit DB Packet Storm

267205	8.1	HIGH Network	phpmyadmin	phpmyadmin	An issue was discovered in phpMyAdmin. A specially crafted database and/or table name can be used to trigger an SQL injection attack through the export functionality. All 4.6.x versions (prior to 4.6…	CWE-89 SQL Injection	CVE-2016-6617	2024-11-21 11:56	2016-12-11	Show	GitHub Exploit DB Packet Storm

267206	7.5	HIGH Network	phpmyadmin	phpmyadmin	An issue was discovered in phpMyAdmin. In the "User group" and "Designer" features, a user can execute an SQL injection attack against the account of the control user. All 4.6.x versions (prior to 4.…	CWE-89 SQL Injection	CVE-2016-6616	2024-11-21 11:56	2016-12-11	Show	GitHub Exploit DB Packet Storm

267207	6.1	MEDIUM Network	phpmyadmin	phpmyadmin	XSS issues were discovered in phpMyAdmin. This affects navigation pane and database/table hiding feature (a specially-crafted database name can be used to trigger an XSS attack); the "Tracking" featu…	CWE-79 Cross-site Scripting	CVE-2016-6615	2024-11-21 11:56	2016-12-11	Show	GitHub Exploit DB Packet Storm

267208	6.8	MEDIUM Network	phpmyadmin	phpmyadmin	An issue was discovered in phpMyAdmin involving the %u username replacement functionality of the SaveDir and UploadDir features. When the username substitution is configured, a specially-crafted user…	CWE-22 Path Traversal	CVE-2016-6614	2024-11-21 11:56	2016-12-11	Show	GitHub Exploit DB Packet Storm

267209	5.3	MEDIUM Network	phpmyadmin	phpmyadmin	An issue was discovered in phpMyAdmin. A user can specially craft a symlink on disk, to a file which phpMyAdmin is permitted to read but the user is not, which phpMyAdmin will then expose to the user…	CWE-200 Information Exposure	CVE-2016-6613	2024-11-21 11:56	2016-12-11	Show	GitHub Exploit DB Packet Storm

267210	6.5	MEDIUM Network	phpmyadmin	phpmyadmin	An issue was discovered in phpMyAdmin. A user can exploit the LOAD LOCAL INFILE functionality to expose files on the server to the database system. All 4.6.x versions (prior to 4.6.4), 4.4.x versions…	CWE-200 Information Exposure	CVE-2016-6612	2024-11-21 11:56	2016-12-11	Show	GitHub Exploit DB Packet Storm