Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
216881	6.8	警告	Irfan Skiljan	-	IrfanView におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2013-6932	2014-01-7 19:24	2013-12-24	Show	GitHub Exploit DB Packet Storm

216882	6.5	警告	サイボウズ	-	サイボウズガルーンにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2013-6929	2014-01-7 19:20	2013-12-25	Show	GitHub Exploit DB Packet Storm

216883	5	警告	WesternDeal	-	WordPress 用 Advanced Dewplayer プラグインの download-file.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2013-7240	2014-01-7 18:50	2013-12-30	Show	GitHub Exploit DB Packet Storm

216884	4.3	警告	Ad-minister Project	-	WordPress 用 Ad-minister プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-6993	2014-01-7 18:49	2013-12-26	Show	GitHub Exploit DB Packet Storm

216885	6.8	警告	AskApache	-	WordPress 用 AskApache Firefox Adsense プラグインの askapache-firefox-adsense.php におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2013-6992	2014-01-7 18:49	2013-12-26	Show	GitHub Exploit DB Packet Storm

216886	4.3	警告	OKAMOTO Wataru	-	WordPress 用 WP-Cron Dashboard プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-6991	2014-01-7 18:49	2013-12-26	Show	GitHub Exploit DB Packet Storm

216887	8.5	危険	IBM	-	IBM i および zSeries サーバ上で稼働する z/OS の OSPF の実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2013-5385	2014-01-7 17:35	2013-08-1	Show	GitHub Exploit DB Packet Storm

216888	4.3	警告	Codiad	-	Codiad におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-7257	2014-01-7 17:22	2013-12-20	Show	GitHub Exploit DB Packet Storm

216889	6.8	警告	Opsview	-	Opsview におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2013-7256	2014-01-7 17:13	2013-12-23	Show	GitHub Exploit DB Packet Storm

216890	5.8	警告	Opsview	-	Opsview におけるオープンリダイレクトの脆弱性	CWE-20 不適切な入力確認	CVE-2013-7255	2014-01-7 17:12	2013-12-23	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 26, 2026, 4:08 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
313431	-	netbsd	netbsd	The procfs implementation in NetBSD-current before 20061023, NetBSD 3.0 and 3.0.1 before 20061024, and NetBSD 2.x before 20061029 allows local users to cause a denial of service (kernel panic) by att…	NVD-CWE-Other	CVE-2006-6655	2008-09-6 06:15	2006-12-20	Show	GitHub Exploit DB Packet Storm

313432	-	netbsd	netbsd	Unspecified vulnerability in ptrace in NetBSD-current before 20061027, NetBSD 3.0 and 3.0.1 before 20061027, and NetBSD 2.x before 20061119 allows local users to read kernel memory and obtain sensiti…	NVD-CWE-Other	CVE-2006-6656	2008-09-6 06:15	2006-12-20	Show	GitHub Exploit DB Packet Storm

313433	-	netbsd	netbsd	The if_clone_list function in NetBSD-current before 20061027, NetBSD 3.0 and 3.0.1 before 20061027, and NetBSD 2.x before 20061119 allows local users to read potentially sensitive, uninitialized stac…	NVD-CWE-Other	CVE-2006-6657	2008-09-6 06:15	2006-12-20	Show	GitHub Exploit DB Packet Storm

313434	-	inktomi	inktomi_search	Inktomi Search 4.1.4 allows remote attackers to obtain sensitive information via direct requests with missing parameters to (1) help/header.html, (2) thesaurus.html, and (3) topics.html, which leak t…	NVD-CWE-Other	CVE-2006-6658	2008-09-6 06:15	2006-12-20	Show	GitHub Exploit DB Packet Storm

313435	-	microsoft	ie outlook windows_xp	The Microsoft Office Outlook Recipient ActiveX control (ole32.dll) in Windows XP SP2 allows remote attackers to cause a denial of service (Internet Explorer 7 hang) via crafted HTML.	NVD-CWE-Other	CVE-2006-6659	2008-09-6 06:15	2006-12-20	Show	GitHub Exploit DB Packet Storm

313436	-	suse	suse_open_enterprise_server linux_enterprise_desktop suse_linux	Unspecified vulnerability in Linux User Management (novell-lum) on SUSE Linux Enterprise Desktop 10 and Open Enterprise Server 9, under unspecified conditions, allows local users to log in to the con…	NVD-CWE-noinfo CWE-264 Permissions, Privileges, and Access Controls	CVE-2006-6662	2008-09-6 06:15	2006-12-21	Show	GitHub Exploit DB Packet Storm

313437	-	suse	suse_open_enterprise_server linux_enterprise_desktop suse_linux	Under certain circumstances it is possible to login to the console without a legitimate password. However, those circumstances are unspecified.	NVD-CWE-noinfo CWE-264 Permissions, Privileges, and Access Controls	CVE-2006-6662	2008-09-6 06:15	2006-12-21	Show	GitHub Exploit DB Packet Storm

313438	-	chetcpasswd	chetcpasswd	Pedro Lineu Orso chetcpasswd before 2.3.1 does not document the need for 0400 permissions on /etc/chetcpasswd.allow, which might allow local users to gain sensitive information by reading this file.	NVD-CWE-Other	CVE-2006-6680	2008-09-6 06:15	2006-12-22	Show	GitHub Exploit DB Packet Storm

313439	-	web-app.net	webapp	Web Automated Perl Portal (WebAPP) 0.9.9.4, and 0.9.9.3.4 Network Edition (NE) (aka WebAPP.NET) allows remote attackers to bypass filtering mechanisms via unknown vectors. NOTE: The provenance of th…	NVD-CWE-Other	CVE-2006-6688	2008-09-6 06:15	2006-12-22	Show	GitHub Exploit DB Packet Storm

313440	-	calacode	atmail_webmail_system	Cross-site scripting (XSS) vulnerability in @Mail WebMail allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: This information is based upon a vague initial…	NVD-CWE-Other	CVE-2006-6700	2008-09-6 06:15	2006-12-23	Show	GitHub Exploit DB Packet Storm