Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
216991 4 警告 andrew godwin - Andrew Godwin ByteHoard の index.php における絶対パストラバーサルの脆弱性 - CVE-2006-2633 2013-12-26 15:44 2006-05-30 Show GitHub Exploit DB Packet Storm
216992 5.1 警告 artmedic webdesign - artmedic newsletter における任意のファイルを変更される脆弱性 - CVE-2006-2609 2013-12-26 15:44 2006-05-26 Show GitHub Exploit DB Packet Storm
216993 5.1 警告 artmedic webdesign - artmedic newsletter における任意のファイルを変更される脆弱性 - CVE-2006-2608 2013-12-26 15:44 2006-05-26 Show GitHub Exploit DB Packet Storm
216994 5.1 警告 eSyndiCat - eSyndicat Directory の admin/cron.php における任意のファイルをインクルードされる脆弱性 - CVE-2006-2578 2013-12-26 15:44 2006-05-24 Show GitHub Exploit DB Packet Storm
216995 5 警告 AlstraSoft - Alstrasoft Article Manager Pro における重要な情報を取得される脆弱性 - CVE-2006-2566 2013-12-26 15:44 2006-05-24 Show GitHub Exploit DB Packet Storm
216996 5 警告 Snitz - Snitz Forums 用 Avatar MOD の avatar_upload.asp におけるファイルタイプのチェックを回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2006-2530 2013-12-26 15:44 2006-05-22 Show GitHub Exploit DB Packet Storm
216997 7.5 危険 smartisoft - phpBazar の Admin/admin.php における認証を回避される脆弱性 - CVE-2006-2527 2013-12-26 15:44 2006-05-22 Show GitHub Exploit DB Packet Storm
216998 5 警告 Bitrix - Bitrix Site Manager におけるユーザを他の Web サイトへリダイレクトされる脆弱性 - CVE-2006-2478 2013-12-26 15:44 2006-05-19 Show GitHub Exploit DB Packet Storm
216999 5 警告 Bitrix - Bitrix Site Manager における重要な情報を取得される脆弱性 - CVE-2006-2476 2013-12-26 15:44 2006-05-19 Show GitHub Exploit DB Packet Storm
217000 6.4 警告 duware - DUware DUbanner の add.asp における任意のコードを実行される脆弱性 - CVE-2006-2428 2013-12-26 15:44 2006-05-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 16, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
280031 - unisor_cms unisor_cms SQL injection vulnerability in login.asp in UNISOR Content Management System (CMS) allows remote attackers to execute arbitrary SQL commands via the (1) user or (2) pass fields. NVD-CWE-Other
CVE-2006-5628 2018-10-18 06:44 2006-11-1 Show GitHub Exploit DB Packet Storm
280032 - hosting_controller hosting_controller Multiple SQL injection vulnerabilities in Hosting Controller 6.1 before Hotfix 3.3 allow remote attackers to execute arbitrary SQL commands via the ForumID parameter in (1) DisableForum.asp and (2) e… CWE-89
SQL Injection 		CVE-2006-5629 2018-10-18 06:44 2006-11-1 Show GitHub Exploit DB Packet Storm
280033 - hosting_controller hosting_controller This vulnerability is addressed in the following product update: Hosting Controller, Hosting Controller, 6.1 Hotfix 3.3 CWE-89
SQL Injection 		CVE-2006-5629 2018-10-18 06:44 2006-11-1 Show GitHub Exploit DB Packet Storm
280034 - hosting_controller hosting_controller Hosting Controller 6.1 before Hotfix 3.3 allows remote attackers to (1) delete the virtual directory of an arbitrary site via a modified ForumID parameter in a disableforum action in DisableForum.asp… NVD-CWE-Other
CVE-2006-5630 2018-10-18 06:44 2006-11-1 Show GitHub Exploit DB Packet Storm
280035 - hosting_controller hosting_controller This vulnerability is addressed in the following product update: Hosting Controller, Hosting Controller, 6.1 Hotfix 3.3 NVD-CWE-Other
CVE-2006-5630 2018-10-18 06:44 2006-11-1 Show GitHub Exploit DB Packet Storm
280036 - mozilla firefox
seamonkey 		Firefox 1.5.0.7 and 2.0, and Seamonkey 1.1b, allows remote attackers to cause a denial of service (crash) by creating a range object using createRange, calling selectNode on a DocType node (DOCUMENT_… NVD-CWE-Other
CVE-2006-5633 2018-10-18 06:44 2006-11-1 Show GitHub Exploit DB Packet Storm
280037 - web_wiz_forums web_wiz_forums SQL injection vulnerability in forum/search.asp in Web Wiz Forums allows remote attackers to execute arbitrary SQL commands via the KW parameter. NVD-CWE-Other
CVE-2006-5635 2018-10-18 06:44 2006-11-1 Show GitHub Exploit DB Packet Storm
280038 - sws simple_website_software PHP remote file inclusion vulnerability in common.php in Simple Website Software (SWS) 0.99 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the SWSDIR parameter. NVD-CWE-Other
CVE-2006-5636 2018-10-18 06:44 2006-11-1 Show GitHub Exploit DB Packet Storm
280039 - sws simple_website_software Successful exploitation requires that "register_globals" is enabled. NVD-CWE-Other
CVE-2006-5636 2018-10-18 06:44 2006-11-1 Show GitHub Exploit DB Packet Storm
280040 - foresite_cms foresite_cms Cross-site scripting (XSS) vulnerability in search_de.html in foresite CMS allows remote attackers to inject arbitrary web script or HTML via the query parameter. NVD-CWE-Other
CVE-2006-5643 2018-10-18 06:44 2006-11-1 Show GitHub Exploit DB Packet Storm