Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
216151 7.5 危険 IBM - IBM Sametime の Meeting Server におけるアクセス権を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-6742 2014-02-17 10:57 2013-11-8 Show GitHub Exploit DB Packet Storm
216152 7.5 危険 IBM - IBM Sametime の Meeting Server における脆弱性 CWE-20
不適切な入力確認 		CVE-2013-3983 2014-02-17 10:57 2013-06-7 Show GitHub Exploit DB Packet Storm
216153 5 警告 IBM - IBM Sametime の Meeting Server における重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-3978 2014-02-17 10:56 2013-06-7 Show GitHub Exploit DB Packet Storm
216154 7.5 危険 シスコシステムズ - Cisco Unified Communications Manager の Enterprise Mobility Application インターフェースにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-0729 2014-02-14 14:52 2014-02-13 Show GitHub Exploit DB Packet Storm
216155 7.5 危険 シスコシステムズ - Cisco Unified Communications Manager の Java データベースインターフェースにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-0728 2014-02-14 14:51 2014-02-12 Show GitHub Exploit DB Packet Storm
216156 7.5 危険 シスコシステムズ - Cisco Unified Communications Manager の CallManager Interactive Voice Response インターフェースにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-0727 2014-02-14 14:50 2014-02-12 Show GitHub Exploit DB Packet Storm
216157 7.5 危険 シスコシステムズ - Cisco Unified Communications Manager の IP Manager Assistant インターフェースにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-0726 2014-02-14 14:48 2014-02-12 Show GitHub Exploit DB Packet Storm
216158 5 警告 シスコシステムズ - Cisco Unified Communications Manager における重要な情報を取得される脆弱性 CWE-287
不適切な認証 		CVE-2014-0725 2014-02-14 14:47 2014-02-13 Show GitHub Exploit DB Packet Storm
216159 4 警告 シスコシステムズ - Cisco Unified Communications Manager のバルク管理インターフェースにおける認証を回避される脆弱性 CWE-20
不適切な入力確認 		CVE-2014-0724 2014-02-14 14:46 2014-02-12 Show GitHub Exploit DB Packet Storm
216160 4.3 警告 シスコシステムズ - Cisco Unified Communications Manager の IP Manager Assistant インターフェースにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-0723 2014-02-14 14:44 2014-02-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 23, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
289431 - salims_softhouse jaf_cms Multiple PHP remote file inclusion vulnerabilities in JAF CMS 4.0 and 4.0 RC2 allow remote attackers to execute arbitrary PHP code via a URL in the main_dir parameter to (1) forum/main.php and (2) fo… CWE-94
Code Injection 		CVE-2006-7127 2017-10-11 10:31 2007-03-6 Show GitHub Exploit DB Packet Storm
289432 - salims_softhouse jaf_cms PHP remote file inclusion vulnerability in forum/forum.php JAF CMS 4.0 RC1 allows remote attackers to execute arbitrary PHP code via a URL in the website parameter. NVD-CWE-Other
CVE-2006-7128 2017-10-11 10:31 2007-03-6 Show GitHub Exploit DB Packet Storm
289433 - cynux_softwares phpmydesk Directory traversal vulnerability in pmd-config.php in PHPMyDesk 1.0beta allows remote attackers to include arbitrary local files via the pmdlang parameter to viewticket.php. NVD-CWE-Other
CVE-2006-7132 2017-10-11 10:31 2007-03-6 Show GitHub Exploit DB Packet Storm
289434 - phppc php_poll_creator Multiple PHP remote file inclusion vulnerabilities in PHP Poll Creator (phpPC) 1.04 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the relativer_pfad parameter to (1) p… NVD-CWE-Other
CVE-2006-7136 2017-10-11 10:31 2007-03-7 Show GitHub Exploit DB Packet Storm
289435 - phpbb import_tools PHP remote file inclusion vulnerability in includes/functions_mod_user.php in phpBB Import Tools Mod 0.1.4 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the phpbb_roo… CWE-94
Code Injection 		CVE-2006-7147 2017-10-11 10:31 2007-03-8 Show GitHub Exploit DB Packet Storm
289436 - asp-nuke asp-nuke default.asp in ASP-Nuke Community 1.5 and earlier allows remote attackers to gain privileges by setting certain pseudo cookie values. NVD-CWE-Other
CVE-2006-7152 2017-10-11 10:31 2007-03-8 Show GitHub Exploit DB Packet Storm
289437 - ultimate_php_board ultimate_php_board PHP remote file inclusion vulnerability in includes/header_simple.php in Ultimate PHP Board (UPB) 2.0 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the _CONFIG[skin_d… NVD-CWE-Other
CVE-2006-7169 2017-10-11 10:31 2007-03-20 Show GitHub Exploit DB Packet Storm
289438 - sendmail sendmail The version of Sendmail 8.13.1-2 on Red Hat Enterprise Linux 4 Update 4 and earlier does not reject the "localhost.localdomain" domain name for e-mail messages that come from external hosts, which mi… NVD-CWE-Other
CVE-2006-7176 2017-10-11 10:31 2007-03-28 Show GitHub Exploit DB Packet Storm
289439 - photography-on-the-net exhibit_engine_2 PHP remote file inclusion vulnerability in styles.php in Exhibit Engine (EE) 1.22 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the toroot parameter. NVD-CWE-Other
CVE-2006-7183 2017-10-11 10:31 2007-03-31 Show GitHub Exploit DB Packet Storm
289440 - cmsmelborp cmsmelborp PHP remote file inclusion vulnerability in includes/user_standard.php in CMSmelborp Beta allows remote attackers to execute arbitrary PHP code via a URL in the relative_root parameter. NVD-CWE-Other
CVE-2006-7185 2017-10-11 10:31 2007-03-31 Show GitHub Exploit DB Packet Storm