Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
216791 4.3 警告 MyBB Group - MyBB の misc.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-7275 2014-01-10 14:25 2013-11-20 Show GitHub Exploit DB Packet Storm
216792 4.3 警告 Wallpaper Script - Wallpaper Script におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-7274 2014-01-10 14:10 2013-12-16 Show GitHub Exploit DB Packet Storm
216793 4.9 警告 Linux - Linux Kernel の net/ieee802154/dgram.c 内の dgram_recvmsg 関数における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2013-7281 2014-01-10 14:00 2013-12-8 Show GitHub Exploit DB Packet Storm
216794 4.3 警告 FolioVision - WordPress 用 Foliopress WYSIWYG プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-1232 2014-01-10 13:46 2014-01-3 Show GitHub Exploit DB Packet Storm
216795 6.8 警告 Technicolor - Technicolor TC7200 におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2014-0621 2014-01-10 13:39 2014-01-3 Show GitHub Exploit DB Packet Storm
216796 4.3 警告 Technicolor - Technicolor TC7200 におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-0620 2014-01-10 13:39 2014-01-3 Show GitHub Exploit DB Packet Storm
216797 5 警告 7 Media Web Solutions, LLC. - 7 Media Web Solutions の eduTrac におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2013-7097 2014-01-10 11:37 2013-12-16 Show GitHub Exploit DB Packet Storm
216798 4.3 警告 Anthony Mills - WordPress 用 S3 Video プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-7279 2014-01-10 11:01 2013-12-17 Show GitHub Exploit DB Packet Storm
216799 7.5 危険 Naxtech - Naxtech CMS Afroditi における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-7278 2014-01-10 10:39 2013-12-30 Show GitHub Exploit DB Packet Storm
216800 5.8 警告 Mozilla Foundation - Mozilla Firefox の Web App インストレーションサイトになりすまされる脆弱性 CWE-noinfo
情報不足 		CVE-2013-5611 2014-01-10 09:44 2013-12-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 18, 2026, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
279861 - gerrit_van_aaken loudblog Multiple directory traversal vulnerabilities in Loudblog before 0.42 allow remote attackers to read or include arbitrary files via a .. (dot dot) and trailing %00 (NULL) byte in the (1) template and … NVD-CWE-Other
CVE-2006-1114 2018-10-19 01:30 2006-03-9 Show GitHub Exploit DB Packet Storm
279862 - gerrit_van_aaken loudblog This vulnerability affects Loudblog versions 0.41 and previous. NVD-CWE-Other
CVE-2006-1114 2018-10-19 01:30 2006-03-9 Show GitHub Exploit DB Packet Storm
279863 - ncipher chil
mscapi_csp
ncipher_software_cd 		nCipher HSM before 2.22.6, when generating a Diffie-Hellman public/private key pair without any specified DiscreteLogGroup parameters, chooses random parameters that could allow an attacker to crack … NVD-CWE-Other
CVE-2006-1115 2018-10-19 01:30 2006-03-9 Show GitHub Exploit DB Packet Storm
279864 - ncipher ncore The CBC-MAC integrity functions in the nCipher nCore API before 2.18 transmit the initialization vector IV as part of a message when the implementation uses a non-zero IV, which allows remote attacke… NVD-CWE-Other
CVE-2006-1116 2018-10-19 01:30 2006-03-9 Show GitHub Exploit DB Packet Storm
279865 - ncipher dse200_document_sealing_engine
ncore
nforce
securedb
time_source_master_clock
nethsm
nshield
payshield 		nCipher firmware before V10, as used by (1) nShield, (2) nForce, (3) netHSM, (4) payShield, (5) SecureDB, (6) DSE200 Document Sealing Engine, (7) Time Source Master Clock (TSMC), and possibly other p… NVD-CWE-Other
CVE-2006-1117 2018-10-19 01:30 2006-03-9 Show GitHub Exploit DB Packet Storm
279866 - netenberg fantastico_de_luxe fantastico in Cpanel does not properly handle when it has insufficient permissions to perform certain file operations, which allows remote authenticated users to obtain the full pathname, which is le… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2006-1119 2018-10-19 01:30 2006-03-10 Show GitHub Exploit DB Packet Storm
279867 - codeworx_technologies dcp-portal Multiple cross-site scripting (XSS) vulnerabilities in DCP-Portal 6.1.1 and earlier, with register_globals enabled, allow remote attackers to inject arbitrary web script or HTML via the (1) its_url p… NVD-CWE-Other
CVE-2006-1120 2018-10-19 01:30 2006-03-10 Show GitHub Exploit DB Packet Storm
279868 - cutephp cutenews Cross-site scripting (XSS) vulnerability in CuteNews 1.4.1 allows remote attackers to inject arbitrary web script or HTML via the query string to index.php. NVD-CWE-Other
CVE-2006-1121 2018-10-19 01:30 2006-03-10 Show GitHub Exploit DB Packet Storm
279869 - d2ksoft d2kblog Cross-site scripting (XSS) vulnerability in Default.asp in D2KBlog 1.0.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the msg parameter. NVD-CWE-Other
CVE-2006-1122 2018-10-19 01:30 2006-03-10 Show GitHub Exploit DB Packet Storm
279870 - d2ksoft d2kblog SQL injection vulnerability in D2KBlog 1.0.3 and earlier allows remote attackers to execute arbitrary SQL commands via the memName parameter in a cookie. NVD-CWE-Other
CVE-2006-1123 2018-10-19 01:30 2006-03-10 Show GitHub Exploit DB Packet Storm