Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
216551 4.9 警告 WordPress.org - WordPress の wp-includes/capabilities.php におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-5296 2014-01-22 18:43 2010-09-4 Show GitHub Exploit DB Packet Storm
216552 4.3 警告 WordPress.org - WordPress の wp-admin/plugins.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-5295 2014-01-22 18:41 2010-11-14 Show GitHub Exploit DB Packet Storm
216553 4.3 警告 WordPress.org - WordPress の wp-admin/includes/file.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-5294 2014-01-22 18:38 2010-11-14 Show GitHub Exploit DB Packet Storm
216554 5.8 警告 WordPress.org - WordPress の wp-includes/comment.php におけるスパム制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-5293 2014-01-22 18:35 2010-11-30 Show GitHub Exploit DB Packet Storm
216555 4.3 警告 シスコシステムズ - Cisco Secure Access Control System のポータルにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-0668 2014-01-22 16:37 2014-01-21 Show GitHub Exploit DB Packet Storm
216556 2.6 注意 TYPO3 Association - TYPO3 の Extbase Framework の ActionController ベースクラスにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-7078 2014-01-22 16:32 2013-12-10 Show GitHub Exploit DB Packet Storm
216557 3.3 注意 libimobiledevice - libimobiledevice の userpref.c における任意のファイルを上書きされる脆弱性 CWE-59
リンク解釈の問題 		CVE-2013-2142 2014-01-22 16:31 2013-08-14 Show GitHub Exploit DB Packet Storm
216558 2.6 注意 Drupal - Drupal におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-0244 2014-01-22 16:31 2013-01-16 Show GitHub Exploit DB Packet Storm
216559 2.7 注意 Fabrice Bellard
Xen プロジェクト		 - Xen および QEMU の qemu-xen の qdisk PV ディスクバックエンドにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2013-4375 2014-01-22 16:22 2013-10-10 Show GitHub Exploit DB Packet Storm
216560 1.9 注意 Linux - Linux Kernel の drivers/net/hamradio/yam.c の yam_ioctl 関数における重要な情報を取得される脆弱性 CWE-399
リソース管理の問題 		CVE-2014-1446 2014-01-22 16:05 2014-01-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 21, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
280051 - spid spid Directory traversal vulnerability in scan_lang_insert.php in Boris Herbiniere-Seve SPiD 1.3.1 allows remote attackers to read arbitrary files via the lang parameter. CWE-22
Path Traversal 		CVE-2006-0976 2018-10-19 01:30 2006-03-3 Show GitHub Exploit DB Packet Storm
280052 - craig_morrison mts_pro Craig Morrison Mail Transport System Professional (aka MTS Pro) acts as an open relay when configured to relay all mail through an external SMTP server, which allows remote attackers to relay mail by… NVD-CWE-Other
CVE-2006-0977 2018-10-19 01:30 2006-03-3 Show GitHub Exploit DB Packet Storm
280053 - argosoft argosoft_mail_server Multiple cross-site scripting (XSS) vulnerabilities in the View Headers (aka viewheaders) functionality in ArGoSoft Mail Server Pro 1.8.8.5 allow remote attackers to inject arbitrary web script or HT… NVD-CWE-Other
CVE-2006-0978 2018-10-19 01:30 2006-03-3 Show GitHub Exploit DB Packet Storm
280054 - argosoft argosoft_mail_server This vulnerability affects ArGoSoft, Mail Server Pro version 1.8.8.5, and may affect all previous versions. NVD-CWE-Other
CVE-2006-0978 2018-10-19 01:30 2006-03-3 Show GitHub Exploit DB Packet Storm
280055 - jay_eckles cgi_calendar Multiple cross-site scripting (XSS) vulnerabilities in Jay Eckles CGI Calendar 2.7 allow remote attackers to inject arbitrary web script or HTML via the year parameter in (1) index.cgi and (2) viewda… NVD-CWE-Other
CVE-2006-0980 2018-10-19 01:30 2006-03-3 Show GitHub Exploit DB Packet Storm
280056 - e-merge e-merge_winace Directory traversal vulnerability in e-merge WinAce 2.6 and earlier allows remote attackers to create and overwrite arbitrary files via certain crafted pathnames in a (1) zip or (2) tar archive. NVD-CWE-Other
CVE-2006-0981 2018-10-19 01:30 2006-03-3 Show GitHub Exploit DB Packet Storm
280057 - e-merge e-merge_winace This vulnerability affects e-merge, WinAce versions 2.6 and previous. NVD-CWE-Other
CVE-2006-0981 2018-10-19 01:30 2006-03-3 Show GitHub Exploit DB Packet Storm
280058 - mcafee virex The on-access scanner for McAfee Virex 7.7 for Macintosh, in some circumstances, might not activate when malicious content is accessed from the web browser, and might not prevent the content from bei… NVD-CWE-Other
CVE-2006-0982 2018-10-19 01:30 2006-03-3 Show GitHub Exploit DB Packet Storm
280059 - david_barrett qwikiwiki Cross-site scripting (XSS) vulnerability in index.php in QwikiWiki 1.4 allows remote attackers to inject arbitrary web script or HTML via the page parameter. NVD-CWE-Other
CVE-2006-0983 2018-10-19 01:30 2006-03-3 Show GitHub Exploit DB Packet Storm
280060 - ej3 topo Cross-site scripting (XSS) vulnerability in inc_header.php in EJ3 TOPo 2.2.178 allows remote attackers to inject arbitrary web script or HTML via the gTopNombre parameter. NVD-CWE-Other
CVE-2006-0984 2018-10-19 01:30 2006-03-3 Show GitHub Exploit DB Packet Storm