Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
216541	4.3	警告	IBM	-	複数の IBM 製品におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-6746	2014-01-23 15:36	2013-12-23	Show	GitHub Exploit DB Packet Storm

216542	10	危険	IBM	-	IBM Java SDK における脆弱性	CWE-noinfo 情報不足	CVE-2013-0485	2014-01-23 15:36	2013-04-9	Show	GitHub Exploit DB Packet Storm

216543	4.3	警告	IBM	-	IBM Platform Symphony における重要な情報を取得される脆弱性	CWE-310 暗号の問題	CVE-2013-6305	2014-01-23 15:33	2013-10-31	Show	GitHub Exploit DB Packet Storm

216544	2.1	注意	IBM	-	IBM Tivoli Federated Identity Manager および Tivoli Federated Identity Manager Business Gateway におけるトランザクションを完了される脆弱性	CWE-287 不適切な認証	CVE-2013-5429	2014-01-23 15:33	2013-12-31	Show	GitHub Exploit DB Packet Storm

216545	4	警告	The Tor Project	-	Tor における暗号保護メカニズムを回避される脆弱性	CWE-310 暗号の問題	CVE-2013-7295	2014-01-23 12:13	2013-12-22	Show	GitHub Exploit DB Packet Storm

216546	7.8	危険	デル	-	Dell PowerConnect スイッチ上で稼働する GoAhead Web Server のログインページにおけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2013-3606	2014-01-22 19:13	2014-01-17	Show	GitHub Exploit DB Packet Storm

216547	6.8	警告	デル	-	Dell PowerConnect スイッチ上で稼働する OpenManage Web Application におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2013-3595	2014-01-22 19:13	2014-01-17	Show	GitHub Exploit DB Packet Storm

216548	10	危険	デル	-	Dell PowerConnect スイッチの SSH サービスにおけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2013-3594	2014-01-22 19:12	2014-01-17	Show	GitHub Exploit DB Packet Storm

216549	4	警告	WordPress.org	-	WordPress の wp-admin/press-this.php における publish アクションを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-5270	2014-01-22 18:49	2011-04-26	Show	GitHub Exploit DB Packet Storm

216550	2.1	注意	WordPress.org	-	WordPress におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-5297	2014-01-22 18:47	2010-06-27	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 24, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
280361	-	netbula	anyboard	SQL injection vulnerability in Netbula Anyboard allows remote attackers to execute arbitrary SQL commands via the user name in the login form.	NVD-CWE-Other	CVE-2006-6784	2018-10-18 06:49	2006-12-28	Show	GitHub Exploit DB Packet Storm

280362	-	luckybot	luckybot	Multiple PHP remote file inclusion vulnerabilities in LuckyBot 3 allow remote attackers to execute arbitrary PHP code via a URL in the dir parameter to (1) run.php or (2) ircbot.class.php.	NVD-CWE-Other	CVE-2006-6788	2018-10-18 06:49	2006-12-28	Show	GitHub Exploit DB Packet Storm

280363	-	phpbbxtra	phpbbxtra	PHP remote file inclusion vulnerability in includes/archive/archive_topic.php in Phpbbxtra 2.0 allows remote attackers to execute arbitrary PHP code via a URL in the phpbb_root_path parameter.	NVD-CWE-Other	CVE-2006-6789	2018-10-18 06:49	2006-12-28	Show	GitHub Exploit DB Packet Storm

280364	-	chatwm	chatwm	SQL injection vulnerability in SelGruFra.asp in chatwm 1.0 allows remote attackers to execute arbitrary SQL commands via the (1) txtUse and (2) txtPas parameters.	NVD-CWE-Other	CVE-2006-6791	2018-10-18 06:49	2006-12-28	Show	GitHub Exploit DB Packet Storm

280365	-	okul_merkezi	okul_merkezi_portal	PHP remote file inclusion vulnerability in ataturk.php in Okul Merkezi Portal 1.0 allows remote attackers to execute arbitrary PHP code via a URL in the page parameter.	NVD-CWE-Other	CVE-2006-6793	2018-10-18 06:49	2006-12-28	Show	GitHub Exploit DB Packet Storm

280366	-	efkan_forum	efkan_forum	SQL injection vulnerability in default.asp in Efkan Forum 1.0 allows remote attackers to execute arbitrary SQL commands via the grup parameter.	NVD-CWE-Other	CVE-2006-6794	2018-10-18 06:49	2006-12-28	Show	GitHub Exploit DB Packet Storm

280367	-	microsoft	windows_xp	The Client Server Run-Time Subsystem (CSRSS) in Microsoft Windows allows local users to cause a denial of service (crash) or read arbitrary memory from csrss.exe via crafted arguments to the NtRaiseH…	NVD-CWE-Other	CVE-2006-6797	2018-10-18 06:49	2006-12-29	Show	GitHub Exploit DB Packet Storm

280368	-	the_cacti_group	cacti	SQL injection vulnerability in Cacti 0.8.6i and earlier, when register_argc_argv is enabled, allows remote attackers to execute arbitrary SQL commands via the (1) second or (2) third arguments to cmd…	NVD-CWE-Other	CVE-2006-6799	2018-10-18 06:49	2006-12-29	Show	GitHub Exploit DB Packet Storm

280369	-	limbo_cms	event_module	PHP remote file inclusion in eventcal/mod_eventcal.php in the event module 1.0 for Limbo CMS allows remote attackers to execute arbitrary PHP code via a URL in the lm_absolute_path parameter.	NVD-CWE-Other	CVE-2006-6800	2018-10-18 06:49	2006-12-29	Show	GitHub Exploit DB Packet Storm

280370	-	limbo_cms	event_module	Successful exploitation requires that "register_globals" is enabled.	NVD-CWE-Other	CVE-2006-6800	2018-10-18 06:49	2006-12-29	Show	GitHub Exploit DB Packet Storm