Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
252651 5.1 警告 Claroline Consortium
Dokeos
- Dokeos などの製品で使用される Claroline の inc/claro_init_local.inc.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション
CVE-2006-4844 2012-06-26 15:37 2006-09-18 Show GitHub Exploit DB Packet Storm
252652 4.3 警告 codeworx technologies - DCP-Portal SE におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-4838 2012-06-26 15:37 2006-09-15 Show GitHub Exploit DB Packet Storm
252653 7.5 危険 codeworx technologies - DCP-Portal SE における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4837 2012-06-26 15:37 2006-09-15 Show GitHub Exploit DB Packet Storm
252654 5.1 警告 codeworx technologies - DCP-Portal SE の login.php における SQL インジェクションの脆弱性 - CVE-2006-4836 2012-06-26 15:37 2006-09-15 Show GitHub Exploit DB Packet Storm
252655 5 警告 bluview - Bluview BMB における重要な情報を取得される脆弱性 - CVE-2006-4835 2012-06-26 15:37 2006-09-15 Show GitHub Exploit DB Packet Storm
252656 10 危険 blojsom - David Czarnecki Blojsom の EditBlogTemplatesPlugin.java におけるディレクトリトラバーサルの脆弱性 - CVE-2006-4830 2012-06-26 15:37 2006-09-15 Show GitHub Exploit DB Packet Storm
252657 6.8 警告 blojsom - David Czarnecki Blojsom におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-4829 2012-06-26 15:37 2006-09-15 Show GitHub Exploit DB Packet Storm
252658 4.3 警告 emusoft - eMuSOFT emuCMS の index.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-4822 2012-06-26 15:37 2006-09-15 Show GitHub Exploit DB Packet Storm
252659 4.3 警告 Drupal - Drupal の Userreview モジュールにおけるクロスサイトスクリプティングの脆弱性 - CVE-2006-4821 2012-06-26 15:37 2006-09-13 Show GitHub Exploit DB Packet Storm
252660 5.1 警告 Enlightenment - imlib2 の loader_pnm.c におけるスタックベースのバッファオーバーフローの脆弱性 - CVE-2006-4809 2012-06-26 15:37 2006-11-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
246471 5.5 MEDIUM
Local
audiocoding freeware_advanced_audio_decoder_2 A NULL pointer dereference was discovered in ifilter_bank of libfaad/filtbank.c in Freeware Advanced Audio Decoder 2 (FAAD2) 2.8.8. The vulnerability causes a segmentation fault and application crash… CWE-476
 NULL Pointer Dereference
CVE-2018-20198 2024-11-21 13:01 2018-12-18 Show GitHub Exploit DB Packet Storm
246472 7.8 HIGH
Local
audiocoding freeware_advanced_audio_decoder_2 There is a stack-based buffer underflow in the third instance of the calculate_gain function in libfaad/sbr_hfadj.c in Freeware Advanced Audio Decoder 2 (FAAD2) 2.8.8. A crafted input will lead to a … CWE-787
 Out-of-bounds Write
CVE-2018-20197 2024-11-21 13:01 2018-12-18 Show GitHub Exploit DB Packet Storm
246473 7.8 HIGH
Local
audiocoding
debian
freeware_advanced_audio_decoder_2
debian_linux
There is a stack-based buffer overflow in the third instance of the calculate_gain function in libfaad/sbr_hfadj.c in Freeware Advanced Audio Decoder 2 (FAAD2) 2.8.8. A crafted input will lead to a d… CWE-787
 Out-of-bounds Write
CVE-2018-20196 2024-11-21 13:01 2018-12-18 Show GitHub Exploit DB Packet Storm
246474 5.5 MEDIUM
Local
audiocoding freeware_advanced_audio_decoder_2 A NULL pointer dereference was discovered in ic_predict of libfaad/ic_predict.c in Freeware Advanced Audio Decoder 2 (FAAD2) 2.8.8. The vulnerability causes a segmentation fault and application crash… CWE-476
 NULL Pointer Dereference
CVE-2018-20195 2024-11-21 13:01 2018-12-18 Show GitHub Exploit DB Packet Storm
246475 7.8 HIGH
Local
audiocoding freeware_advanced_audio_decoder_2 There is a stack-based buffer underflow in the third instance of the calculate_gain function in libfaad/sbr_hfadj.c in Freeware Advanced Audio Decoder 2 (FAAD2) 2.8.8. A crafted input will lead to a … CWE-787
 Out-of-bounds Write
CVE-2018-20194 2024-11-21 13:01 2018-12-18 Show GitHub Exploit DB Packet Storm
246476 6.5 MEDIUM
Network
sass-lang libsass In LibSass 3.5.5, a NULL Pointer Dereference in the function Sass::Eval::operator()(Sass::Supports_Operator*) in eval.cpp may cause a Denial of Service (application crash) via a crafted sass input fi… CWE-476
 NULL Pointer Dereference
CVE-2018-20190 2024-11-21 13:01 2018-12-18 Show GitHub Exploit DB Packet Storm
246477 6.5 MEDIUM
Network
graphicsmagick
debian
graphicsmagick
debian_linux
In GraphicsMagick 1.3.31, the ReadDIBImage function of coders/dib.c has a vulnerability allowing a crash and denial of service via a dib file that is crafted to appear with direct pixel values and al… CWE-20
 Improper Input Validation 
CVE-2018-20189 2024-11-21 13:01 2018-12-18 Show GitHub Exploit DB Packet Storm
246478 8.8 HIGH
Network
thedaylightstudio fuel_cms FUEL CMS 1.4.3 has CSRF via users/create/ to add an administrator account. CWE-352
 Origin Validation Error
CVE-2018-20188 2024-11-21 13:01 2018-12-18 Show GitHub Exploit DB Packet Storm
246479 6.5 MEDIUM
Network
axiosys bento4 An issue was discovered in Bento4 1.5.1-627. AP4_Sample::ReadData in Core/Ap4Sample.cpp allows attackers to trigger an attempted excessive memory allocation, related to AP4_DataBuffer::SetDataSize an… CWE-400
 Uncontrolled Resource Consumption
CVE-2018-20186 2024-11-21 13:01 2018-12-18 Show GitHub Exploit DB Packet Storm
246480 5.3 MEDIUM
Network
graphicsmagick
debian
canonical
graphicsmagick
debian_linux
ubuntu_linux
In GraphicsMagick 1.4 snapshot-20181209 Q8 on 32-bit platforms, there is a heap-based buffer over-read in the ReadBMPImage function of bmp.c, which allows attackers to cause a denial of service via a… CWE-125
Out-of-bounds Read
CVE-2018-20185 2024-11-21 13:01 2018-12-18 Show GitHub Exploit DB Packet Storm