Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 19, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
212321 4 警告 eTouch Systems - eTouch SamePage の cm/newui/blog/export.jsp におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2015-2071 2015-02-27 11:39 2015-02-13 Show GitHub Exploit DB Packet Storm
212322 7.5 危険 eTouch Systems - eTouch SamePage Enterprise Edition における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2015-2070 2015-02-27 11:39 2015-02-13 Show GitHub Exploit DB Packet Storm
212323 4.3 警告 Magmi project - Magento サーバ用 MAGMI プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2015-2068 2015-02-27 11:21 2015-02-5 Show GitHub Exploit DB Packet Storm
212324 5 警告 Magmi project - Magento サーバ用 MAGMI プラグインの web/ajax_pluginconf.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2015-2067 2015-02-27 11:21 2015-02-5 Show GitHub Exploit DB Packet Storm
212325 4.3 警告 WooThemes - WordPress 用 WooCommerce プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2015-2069 2015-02-27 10:25 2015-01-29 Show GitHub Exploit DB Packet Storm
212326 7.5 危険 apptha.com - WordPress 用 Apptha WordPress Video Gallery プラグインの videogalleryrss.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2015-2065 2015-02-27 10:25 2015-02-11 Show GitHub Exploit DB Packet Storm
212327 5 警告 IBM - IBM Rational Insight における認証を回避される脆弱性 CWE-200
情報漏えい 		CVE-2014-6115 2015-02-27 10:12 2014-09-2 Show GitHub Exploit DB Packet Storm
212328 2.1 注意 IBM - IBM Tivoli Storage Manager のクライアントの dsmtca におけるバックアップ/リストアの暗号鍵パスワードを取得される脆弱性 CWE-200
情報漏えい 		CVE-2014-4818 2015-02-27 10:12 2014-07-9 Show GitHub Exploit DB Packet Storm
212329 4.3 警告 Speed Software - Speed Software 製 Root Explorer および Explorer におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2014-9282 2015-02-26 17:24 2015-02-24 Show GitHub Exploit DB Packet Storm
212330 7.5 危険 デル - Dell ScriptLogic Asset Manager における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2015-1605 2015-02-26 17:21 2015-02-20 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
346741 - ubbcentral ubb.threads Multiple cross-site scripting (XSS) vulnerabilities in Infopop UBB.Threads before 6.5.2 Beta allow remote attackers to inject arbitrary web script or HTML via the (1) Searchpage parameter to dosearch… NVD-CWE-Other
CVE-2005-2057 2016-10-18 12:24 2005-06-29 Show GitHub Exploit DB Packet Storm
346742 - ubbcentral ubb.threads Multiple SQL injection vulnerabilities in Infopop UBB.Threads before 6.5.2 Beta allow remote attackers to execute arbitrary SQL commands via the Number parameter to (1) download.php, (2) modifypost.p… NVD-CWE-Other
CVE-2005-2058 2016-10-18 12:24 2005-06-29 Show GitHub Exploit DB Packet Storm
346743 - ubbcentral ubb.threads Multiple HTTP Response Splitting vulnerabilities in (1) toggleshow.php, (2) togglecats.php, and (3) showprofile.php in Infopop UBB.Threads before 6.5.2 Beta allow remote attackers to spoof web conten… NVD-CWE-Other
CVE-2005-2060 2016-10-18 12:24 2005-06-29 Show GitHub Exploit DB Packet Storm
346744 - ubbcentral ubb.threads Infopop UBB.Threads before 6.5.2 Beta allows remote attackers to include arbitrary files via the language parameter in a cookie followed by a null (%00) byte. NVD-CWE-Other
CVE-2005-2061 2016-10-18 12:24 2005-06-29 Show GitHub Exploit DB Packet Storm
346745 - active_web_softwares activebuyandsell Multiple cross-site scripting (XSS) vulnerabilities in ActiveBuyAndSell 6.2 allow remote attackers to inject arbitrary web script or HTML via the (1) Title parameter to sendpassword.asp or (2) Keywor… NVD-CWE-Other
CVE-2005-2063 2016-10-18 12:24 2005-06-29 Show GitHub Exploit DB Packet Storm
346746 - asp-nuke asp-nuke Multiple cross-site scripting vulnerabilities in ASP Nuke 0.80 allow remote attackers to inject arbitrary web script or HTML via the (1) email parameter to forgot_password.asp, or the (2) FirstName, … NVD-CWE-Other
CVE-2005-2064 2016-10-18 12:24 2005-06-29 Show GitHub Exploit DB Packet Storm
346747 - asp-nuke asp-nuke HTTP response splitting vulnerability in language_select.asp in ASP Nuke 0.80 allows remote attackers to spoof web content and poison web caches via CRLF ("%0d%0a") sequences in the LangCode paramete… NVD-CWE-Other
CVE-2005-2065 2016-10-18 12:24 2005-06-29 Show GitHub Exploit DB Packet Storm
346748 - asp-nuke asp-nuke SQL injection vulnerability in comment_post.asp in ASP Nuke 0.80 allows remote attackers to execute arbitrary SQL statements via the TaskID parameter. NVD-CWE-Other
CVE-2005-2066 2016-10-18 12:24 2005-06-29 Show GitHub Exploit DB Packet Storm
346749 - asp-nuke asp-nuke SQL injection vulnerability in article.asp in unknown versions of aspnuke allows remote attackers to execute arbitrary SQL commands via the articleid parameter. NVD-CWE-Other
CVE-2005-2067 2016-10-18 12:24 2005-06-29 Show GitHub Exploit DB Packet Storm
346750 - sun solaris traceroute in Sun Solaris 10 on x86 systems allows local users to execute arbitrary code with PRIV_NET_RAWACCESS privileges via (1) a large number of -g arguments or (2) a malformed -s argument with … CWE-264
Permissions, Privileges, and Access Controls 		CVE-2005-2071 2016-10-18 12:24 2005-06-29 Show GitHub Exploit DB Packet Storm