Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
214861 4.3 警告 Roundup - Roundup におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-6132 2014-04-14 18:31 2012-05-15 Show GitHub Exploit DB Packet Storm
214862 6.8 警告 Lester Chan - WordPress 用 WP-PostViews プラグインのオプションの管理者ページにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2013-3252 2014-04-14 18:26 2013-05-7 Show GitHub Exploit DB Packet Storm
214863 6.8 警告 Qian Qin - WordPress 用 qTranslate プラグインにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2013-3251 2014-04-14 18:26 2013-06-4 Show GitHub Exploit DB Packet Storm
214864 6.8 警告 Jeremy Massel - WordPress 用 underConstruction プラグインにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2013-2699 2014-04-14 18:26 2013-06-3 Show GitHub Exploit DB Packet Storm
214865 6.8 警告 Lester Chan - WordPress 用 WP-Print プラグインのオプションにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2013-2693 2014-04-14 18:25 2013-04-5 Show GitHub Exploit DB Packet Storm
214866 6.8 警告 Dean Adjie Minwarie - WordPress 用 DVS Custom Notification プラグインにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-4921 2014-04-14 18:24 2012-09-14 Show GitHub Exploit DB Packet Storm
214867 5.8 警告 kernel.org - Linux-PAM 用 pam_timestamp モジュールの pam_timestamp.c におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2014-2583 2014-04-14 18:04 2014-03-26 Show GitHub Exploit DB Packet Storm
214868 7.5 危険 Pearson Education, Inc. - Pearson eSIS Enterprise Student Information System のパスワードリセット機能における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-1455 2014-04-14 17:52 2014-04-6 Show GitHub Exploit DB Packet Storm
214869 2.1 注意 CloudBees - CloudBees Jenkins におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-2033 2014-04-14 17:38 2013-05-2 Show GitHub Exploit DB Packet Storm
214870 6.5 警告 レッドハット (KIE Group)
レッドハット		 - 複数の Red Hat Jboss 製品における任意の Java コードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2013-6468 2014-04-14 17:23 2013-11-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 24, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
289381 - linux linux_kernel The mincore function in the Linux kernel before 2.4.33.6 does not properly lock access to user space, which has unspecified impact and attack vectors, possibly related to a deadlock. CWE-399
 Resource Management Errors 		CVE-2006-4814 2017-10-11 10:31 2006-12-20 Show GitHub Exploit DB Packet Storm
289382 - cisco ios Cisco IOS 12.2 through 12.4 before 20060920, as used by Cisco IAD2430, IAD2431, and IAD2432 Integrated Access Devices, the VG224 Analog Phone Gateway, and the MWR 1900 and 1941 Mobile Wireless Edge R… NVD-CWE-Other
CVE-2006-4950 2017-10-11 10:31 2006-09-23 Show GitHub Exploit DB Packet Storm
289383 - sun solaris Sun Solaris 10 before patch 118855-16 (20060925), when run on x64 systems using IPv6, allows remote attackers to cause a denial of service (kernel panic) via crafted IPv6 packets. NVD-CWE-Other
CVE-2006-5013 2017-10-11 10:31 2006-09-27 Show GitHub Exploit DB Packet Storm
289384 - linksys wrt54g Linksys WRT54g firmware 1.00.9 does not require credentials when making configuration changes, which allows remote attackers to modify arbitrary configurations via a direct request to Security.tri, a… NVD-CWE-Other
CVE-2006-5202 2017-10-11 10:31 2006-10-10 Show GitHub Exploit DB Packet Storm
289385 - mutt mutt Race condition in the safe_open function in the Mutt mail client 1.5.12 and earlier, when creating temporary files in an NFS filesystem, allows local users to overwrite arbitrary files due to limitat… NVD-CWE-Other
CVE-2006-5297 2017-10-11 10:31 2006-10-17 Show GitHub Exploit DB Packet Storm
289386 - mutt mutt Race Condition occurs when creating temporary files in an NFS filesystem. NVD-CWE-Other
CVE-2006-5297 2017-10-11 10:31 2006-10-17 Show GitHub Exploit DB Packet Storm
289387 - sun solaris The tcp_fuse_rcv_drain function in the Sun Solaris 10 kernel before 20061017, when TCP Fusion is enabled, allows local users to cause a denial of service (system crash) via a TCP loopback connection … NVD-CWE-Other
CVE-2006-5396 2017-10-11 10:31 2006-10-19 Show GitHub Exploit DB Packet Storm
289388 - mozilla firefox
network_security_services
seamonkey
thunderbird 		Mozilla Network Security Service (NSS) library before 3.11.3, as used in Mozilla Firefox before 1.5.0.8, Thunderbird before 1.5.0.8, and SeaMonkey before 1.0.6, when using an RSA key with exponent 3,… NVD-CWE-Other
CVE-2006-5462 2017-10-11 10:31 2006-11-9 Show GitHub Exploit DB Packet Storm
289389 - yukihiro_matsumoto ruby The cgi.rb CGI library for Ruby 1.8 allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via an HTTP request with a multipart MIME body that contains an invalid bo… CWE-399
 Resource Management Errors 		CVE-2006-5467 2017-10-11 10:31 2006-10-28 Show GitHub Exploit DB Packet Storm
289390 - postgresql postgresql backend/parser/analyze.c in PostgreSQL 8.1.x before 8.1.5 allows remote authenticated users to cause a denial of service (daemon crash) via certain aggregate functions in an UPDATE statement, which a… NVD-CWE-Other
CVE-2006-5540 2017-10-11 10:31 2006-10-27 Show GitHub Exploit DB Packet Storm