Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
216611	4.3	警告	Schneider Electric	-	Schneider Electric ClearSCADA および SCADA Expert ClearSCADA の DNP3 ドライバにおけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2013-6142	2014-01-20 11:12	2013-01-14	Show	GitHub Exploit DB Packet Storm

216612	7.5	危険	cspmum	-	CSP MySQL User Manager における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2014-1466	2014-01-20 10:28	2013-01-8	Show	GitHub Exploit DB Packet Storm

216613	7.5	危険	Open Web Analytics	-	Open Web Analytics のパスワードリセットのページにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2014-1206	2014-01-20 10:16	2014-01-9	Show	GitHub Exploit DB Packet Storm

216614	10	危険	LOREX Technology	-	複数の Lorex Edge 製品のファームウェアの INetViewX ActiveX コントロールにおけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2014-1201	2014-01-20 10:16	2014-01-9	Show	GitHub Exploit DB Packet Storm

216615	7.5	危険	WellinTech	-	複数の WellinTech 製品の ActiveX コントロールにおける任意の DLL コードをダウンロードされる脆弱性	CWE-94 コード・インジェクション	CVE-2013-2827	2014-01-20 10:15	2014-01-14	Show	GitHub Exploit DB Packet Storm

216616	6.4	警告	WellinTech	-	複数の WellinTech 製品におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-2826	2014-01-20 10:14	2014-01-14	Show	GitHub Exploit DB Packet Storm

216617	3.5	注意	VASCO	-	VASCO IDENTIKEY Authentication Server に認証不備の脆弱性	CWE-287 CWE-Other	CVE-2013-7292	2014-01-17 18:20	2014-01-9	Show	GitHub Exploit DB Packet Storm

216618	7.2	危険	サン・マイクロシステムズオラクル	-	Sun Solaris の dbm_open() および dbminit() 関数におけるバッファオーバーフローの脆弱性	-	CVE-2003-1067	2014-01-17 18:10	2003-06-19	Show	GitHub Exploit DB Packet Storm

216619	9.3	危険	オラクル	-	Oracle Java SE における Hotspot に関する脆弱性	CWE-noinfo 情報不足	CVE-2014-0408	2014-01-17 17:17	2014-01-14	Show	GitHub Exploit DB Packet Storm

216620	9.3	危険	オラクル	-	Oracle Java SE における Install に関する脆弱性	CWE-noinfo 情報不足	CVE-2014-0385	2014-01-17 17:17	2014-01-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 24, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
280471	-	dev4u	dev4u_cms	Multiple SQL injection vulnerabilities in index.php in dev4u CMS allow remote attackers to execute arbitrary SQL commands via the (1) seite_id, (2) gruppe_id.php, and (3) go_target parameters.	NVD-CWE-Other	CVE-2006-6218	2018-10-18 06:47	2006-12-1	Show	GitHub Exploit DB Packet Storm

280472	-	dev4u	dev4u_cms	Multiple cross-site scripting (XSS) vulnerabilities in index.php in dev4u CMS allow remote attackers to inject arbitrary web script or HTML via the (1) user_name, (2) passwort, and (3) go_target para…	NVD-CWE-Other	CVE-2006-6219	2018-10-18 06:47	2006-12-1	Show	GitHub Exploit DB Packet Storm

280473	-	2x	thinclientserver	2X ThinClientServer Enterprise Edition before 4.0.2248 allows remote attackers to create multiple privileged accounts via a replay attack using the initial account creation request.	NVD-CWE-Other	CVE-2006-6221	2018-10-18 06:47	2006-12-10	Show	GitHub Exploit DB Packet Storm

280474	-	symantec	veritas_netbackup_client veritas_netbackup_enterprise_server veritas_netbackup_server	Stack-based buffer overflow in the NetBackup bpcd daemon (bpcd.exe) in Symantec Veritas NetBackup 5.0 before 5.0_MP7, 5.1 before 5.1_MP6, and 6.0 before 6.0_MP4 allows remote attackers to execute arb…	NVD-CWE-Other	CVE-2006-6222	2018-10-18 06:47	2006-12-15	Show	GitHub Exploit DB Packet Storm

280475	-	vubb	vubb	SQL injection vulnerability in vuBB 0.2.1 and earlier allows remote attackers to execute arbitrary SQL commands via the user parameter in a register action to index.php, a different vulnerability tha…	NVD-CWE-Other	CVE-2006-6230	2018-10-18 06:47	2006-12-2	Show	GitHub Exploit DB Packet Storm

280476	-	vubb	vubb	vuBB 0.2.1 and earlier allows remote attackers to obtain sensitive information via a direct request to includes/vubb.php, which leaks the path in an error message.	NVD-CWE-Other	CVE-2006-6231	2018-10-18 06:47	2006-12-2	Show	GitHub Exploit DB Packet Storm

280477	-	dreamcost	dreamaccount	PHP remote file inclusion vulnerability in admin/index.php in DreamAccount 3.1 allows remote attackers to execute arbitrary PHP code via a URL in the path parameter.	NVD-CWE-Other	CVE-2006-6232	2018-10-18 06:47	2006-12-2	Show	GitHub Exploit DB Packet Storm

280478	-	postnuke_software_foundation	postnuke	SQL injection vulnerability in the Downloads module for unknown versions of PostNuke allows remote attackers to execute arbitrary SQL commands via the lid parameter in a viewdownloaddetails operation…	NVD-CWE-Other	CVE-2006-6233	2018-10-18 06:47	2006-12-2	Show	GitHub Exploit DB Packet Storm

280479	-	francisco_burzi	php-nuke	Multiple SQL injection vulnerabilities in the Content module in PHP-Nuke 6.0, and possibly other versions, allow remote attackers to execute arbitrary SQL commands via (1) the cid parameter in a list…	NVD-CWE-Other	CVE-2006-6234	2018-10-18 06:47	2006-12-2	Show	GitHub Exploit DB Packet Storm

280480	-	gnu gpg4win redhat rpath slackware ubuntu	privacy_guard gpg4win enterprise_linux enterprise_linux_desktop fedora_core linux_advanced_workstation linux slackware_linux ubuntu_linux	A "stack overwrite" vulnerability in GnuPG (gpg) 1.x before 1.4.6, 2.x before 2.0.2, and 1.9.0 through 1.9.95 allows attackers to execute arbitrary code via crafted OpenPGP packets that cause GnuPG t…	NVD-CWE-Other	CVE-2006-6235	2018-10-18 06:47	2006-12-7	Show	GitHub Exploit DB Packet Storm