Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
217061 6.4 警告 PHPKIT - PHPKIT の include.php における絶対パストラバーサルの脆弱性 - CVE-2006-0785 2013-12-26 15:44 2006-02-19 Show GitHub Exploit DB Packet Storm
217062 5 警告 imagevue - imageVue の admin/upload.php における任意のファイルをアップロードされる脆弱性 - CVE-2006-0702 2013-12-26 15:44 2006-02-15 Show GitHub Exploit DB Packet Storm
217063 7.5 危険 ansilove - Ansilove における任意のコードを実行される脆弱性 - CVE-2006-0695 2013-12-26 15:44 2006-02-15 Show GitHub Exploit DB Packet Storm
217064 10 危険 virtual hosting control system - Virtual Hosting Control System の add_user.php における権限のないアクセスを取得される脆弱性 - CVE-2006-0686 2013-12-26 15:44 2006-02-15 Show GitHub Exploit DB Packet Storm
217065 4.6 警告 Borland Software Corporation - Borland C++Builder における整数オーバーフローの脆弱性 - CVE-2006-0634 2013-12-26 15:44 2006-02-10 Show GitHub Exploit DB Packet Storm
217066 7.5 危険 ブルーコートシステムズ - Blue Coat Proxy Security Gateway OS における接続フィルタを回避される脆弱性 - CVE-2006-0578 2013-12-26 15:44 2006-02-8 Show GitHub Exploit DB Packet Storm
217067 5 警告 BEAシステムズ - BEA WebLogic Portal における deployment descriptor ファイルのソースを取得される脆弱性 - CVE-2006-0425 2013-12-26 15:44 2006-01-25 Show GitHub Exploit DB Packet Storm
217068 7.5 危険 BEAシステムズ - BEA WebLogic Portal における権限を取得される脆弱性 - CVE-2006-0423 2013-12-26 15:44 2006-01-25 Show GitHub Exploit DB Packet Storm
217069 7.5 危険 アップル - Apple Mac OS X および Apple Mac OS X Server におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-0384 2013-12-26 15:44 2006-03-2 Show GitHub Exploit DB Packet Storm
217070 2.1 注意 アップル - Apple Mac OS X におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-0382 2013-12-26 15:44 2006-02-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 24, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
280801 - trawler trawler_web_cms Multiple PHP remote file inclusion vulnerabilities in Trawler Web CMS 1.8.1 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the (1) path_red2 parameter to (a) _msdazu_pd… NVD-CWE-Other
CVE-2006-5495 2018-10-18 06:43 2006-10-25 Show GitHub Exploit DB Packet Storm
280802 - timothy_claason knowledgebank Multiple cross-site scripting (XSS) vulnerabilities in Timothy Claason KnowledgeBank 1.01 allow remote attackers to inject arbitrary web script or HTML via unspecified parameters to (1) index.php, (2… NVD-CWE-Other
CVE-2006-5496 2018-10-18 06:43 2006-10-25 Show GitHub Exploit DB Packet Storm
280803 - serendipity serendipity Multiple cross-site scripting (XSS) vulnerabilities in Serendipity (s9y) 1.0.1 and earlier allow remote attackers to inject arbitrary web script or HTML via unspecified vectors in the media manager a… NVD-CWE-Other
CVE-2006-5499 2018-10-18 06:43 2006-10-25 Show GitHub Exploit DB Packet Storm
280804 - simple_machines simple_machines_forum Cross-site scripting (XSS) vulnerability in index.php in Simple Machines Forum (SMF) 1.1 RC2 allows remote attackers to inject arbitrary web script or HTML via the action parameter. NVD-CWE-Other
CVE-2006-5503 2018-10-18 06:43 2006-10-26 Show GitHub Exploit DB Packet Storm
280805 - simple_machines simple_machines_forum Cross-site scripting (XSS) vulnerability in index.php in Simple Machines Forum (SMF) allows remote attackers to inject arbitrary web script or HTML via a base64 encoded params value in the action par… NVD-CWE-Other
CVE-2006-5504 2018-10-18 06:43 2006-10-26 Show GitHub Exploit DB Packet Storm
280806 - woltlab burning_book Multiple SQL injection vulnerabilities in addentry.php in WoltLab Burning Book 1.1.2 allow remote attackers to execute arbitrary SQL commands via (1) the n parameter and (2) the User-Agent HTTP heade… NVD-CWE-Other
CVE-2006-5508 2018-10-18 06:43 2006-10-26 Show GitHub Exploit DB Packet Storm
280807 - woltlab burning_book Eval injection vulnerability in addentry.php in WoltLab Burning Book 1.1.2 allows remote attackers to execute arbitrary PHP code via crafted POST requests that store PHP code in a database that is la… NVD-CWE-Other
CVE-2006-5509 2018-10-18 06:43 2006-10-26 Show GitHub Exploit DB Packet Storm
280808 - zwahlen_informatik online_shop Cross-site scripting (XSS) vulnerability in article.htm in Zwahlen Online Shop allows remote attackers to inject arbitrary web script or HTML via the cat parameter. NVD-CWE-Other
CVE-2006-5512 2018-10-18 06:43 2006-10-26 Show GitHub Exploit DB Packet Storm
280809 - phpadsnew
phppgads 		phpadsnew
phppgads 		Cross-site scripting (XSS) vulnerability in lib-history.inc.php in phpAdsNew and phpPgAds before 2.0.8-pr1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, rela… NVD-CWE-Other
CVE-2006-5515 2018-10-18 06:43 2006-10-27 Show GitHub Exploit DB Packet Storm
280810 - rhode_island_secretary_of_state open_meetings_filing_system Multiple PHP remote file inclusion vulnerabilities in Rhode Island Open Meetings Filing Application (OMFA) allow remote attackers to execute arbitrary PHP code via a URL in the PROJECT_ROOT parameter… CWE-94
Code Injection 		CVE-2006-5517 2018-10-18 06:43 2006-10-27 Show GitHub Exploit DB Packet Storm