Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
216551 4.9 警告 WordPress.org - WordPress の wp-includes/capabilities.php におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-5296 2014-01-22 18:43 2010-09-4 Show GitHub Exploit DB Packet Storm
216552 4.3 警告 WordPress.org - WordPress の wp-admin/plugins.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-5295 2014-01-22 18:41 2010-11-14 Show GitHub Exploit DB Packet Storm
216553 4.3 警告 WordPress.org - WordPress の wp-admin/includes/file.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-5294 2014-01-22 18:38 2010-11-14 Show GitHub Exploit DB Packet Storm
216554 5.8 警告 WordPress.org - WordPress の wp-includes/comment.php におけるスパム制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-5293 2014-01-22 18:35 2010-11-30 Show GitHub Exploit DB Packet Storm
216555 4.3 警告 シスコシステムズ - Cisco Secure Access Control System のポータルにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-0668 2014-01-22 16:37 2014-01-21 Show GitHub Exploit DB Packet Storm
216556 2.6 注意 TYPO3 Association - TYPO3 の Extbase Framework の ActionController ベースクラスにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-7078 2014-01-22 16:32 2013-12-10 Show GitHub Exploit DB Packet Storm
216557 3.3 注意 libimobiledevice - libimobiledevice の userpref.c における任意のファイルを上書きされる脆弱性 CWE-59
リンク解釈の問題 		CVE-2013-2142 2014-01-22 16:31 2013-08-14 Show GitHub Exploit DB Packet Storm
216558 2.6 注意 Drupal - Drupal におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-0244 2014-01-22 16:31 2013-01-16 Show GitHub Exploit DB Packet Storm
216559 2.7 注意 Fabrice Bellard
Xen プロジェクト		 - Xen および QEMU の qemu-xen の qdisk PV ディスクバックエンドにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2013-4375 2014-01-22 16:22 2013-10-10 Show GitHub Exploit DB Packet Storm
216560 1.9 注意 Linux - Linux Kernel の drivers/net/hamradio/yam.c の yam_ioctl 関数における重要な情報を取得される脆弱性 CWE-399
リソース管理の問題 		CVE-2014-1446 2014-01-22 16:05 2014-01-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 25, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
279451 - ralph_capper tinyphpforum Directory traversal vulnerability in TinyPHPForum 3.6 and earlier allows remote attackers to create a new user account, create a new topic, or view the profile of a user account, as demonstrated via … NVD-CWE-Other
CVE-2006-0104 2018-10-20 00:42 2006-01-6 Show GitHub Exploit DB Packet Storm
279452 - postgresql postgresql PostgreSQL 8.0.x before 8.0.6 and 8.1.x before 8.1.2, when running on Windows, allows remote attackers to cause a denial of service (postmaster exit and no new connections) via a large number of simu… NVD-CWE-Other
CVE-2006-0105 2018-10-20 00:42 2006-01-11 Show GitHub Exploit DB Packet Storm
279453 - wine wine gdi/driver.c and gdi/printdrv.c in Wine 20050930, and other versions, implement the SETABORTPROC GDI Escape function call for Windows Metafile (WMF) files, which allows attackers to execute arbitrary… NVD-CWE-Other
CVE-2006-0106 2018-10-20 00:42 2006-01-7 Show GitHub Exploit DB Packet Storm
279454 - javier_suarez_sanz foro_domus Cross-site scripting (XSS) vulnerability in escribir.php in Foro Domus 2.10 allows remote attackers to inject arbitrary web script via the email parameter. NVD-CWE-Other
CVE-2006-0110 2018-10-20 00:42 2006-01-7 Show GitHub Exploit DB Packet Storm
279455 - inetstore inetstore_online Cross-site scripting vulnerability search.inetstore in iNETstore Ebusiness Software 2.0 allows remote attackers to inject arbitrary web script or HTML via the searchterm parameter. NVD-CWE-Other
CVE-2006-0116 2018-10-20 00:42 2006-01-9 Show GitHub Exploit DB Packet Storm
279456 - adn_forum adn_forum Multiple SQL injection vulnerabilities in ADN Forum 1.0b allow remote attackers to execute arbitrary SQL commands via the (1) fid parameter in index.php and (2) pagid parameter in verpag.php, and pos… CWE-89
SQL Injection 		CVE-2006-0123 2018-10-20 00:42 2006-01-9 Show GitHub Exploit DB Packet Storm
279457 - adn_forum adn_forum Cross-site scripting (XSS) vulnerability in crear.php in ADN Forum 1.0b allows remote attackers to inject arbitrary web script or HTML via the titulo parameter, which is used by the "Topic name" fiel… NVD-CWE-Other
CVE-2006-0124 2018-10-20 00:42 2006-01-9 Show GitHub Exploit DB Packet Storm
279458 - boastmachine boastmachine boastMachine 3.1 allows remote attackers to obtain sensitive information via a direct request to (1) footer.php and (2) side_menu.php, which reveals the path in an error message. NVD-CWE-Other
CVE-2006-0131 2018-10-20 00:42 2006-01-9 Show GitHub Exploit DB Packet Storm
279459 - webftp webftp Directory traversal vulnerability in webftp.php in SysCP WebFTP 1.2.6 and possibly earlier allows remote attackers to include and execute arbitrary local PHP scripts, and possibly read other types of… NVD-CWE-Other
CVE-2006-0132 2018-10-20 00:42 2006-01-9 Show GitHub Exploit DB Packet Storm
279460 - ibm aix Multiple directory traversal vulnerabilities in AIX 5.3 ML03 allow local users to determine the existence of files and read partial contents of certain files via a .. (dot dot) in the argument to (1)… NVD-CWE-Other
CVE-2006-0133 2018-10-20 00:42 2006-01-9 Show GitHub Exploit DB Packet Storm