Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
217281 5 警告 Zabbix - Zabbix の user.login 関数における LDAP 設定を上書きされる脆弱性 CWE-287
不適切な認証 		CVE-2013-1364 2013-12-17 16:47 2013-01-4 Show GitHub Exploit DB Packet Storm
217282 4.3 警告 MediaWiki - MediaWiki の CleanChanges 拡張機能における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2013-4569 2013-12-17 16:42 2013-11-14 Show GitHub Exploit DB Packet Storm
217283 4.3 警告 MediaWiki - MediaWiki の Sanitizer::checkCss におけるクロスサイトスクリプティングの脆弱性 CWE-Other
その他 		CVE-2013-4568 2013-12-17 16:41 2013-11-14 Show GitHub Exploit DB Packet Storm
217284 4.3 警告 MediaWiki - MediaWiki の Sanitizer::checkCss におけるクロスサイトスクリプティングの脆弱性 CWE-Other
その他 		CVE-2013-4567 2013-12-17 16:39 2013-11-14 Show GitHub Exploit DB Packet Storm
217285 6.8 警告 MediaWiki - MediaWiki 用の CentralAuth 拡張機能におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-5394 2013-12-17 16:38 2012-10-3 Show GitHub Exploit DB Packet Storm
217286 9 危険 マカフィー - McAfee Email Gateway における任意のコマンドを実行される脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2013-7104 2013-12-17 16:31 2013-12-3 Show GitHub Exploit DB Packet Storm
217287 9 危険 マカフィー - McAfee Email Gateway における任意のコマンドを実行される脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2013-7103 2013-12-17 16:30 2013-12-3 Show GitHub Exploit DB Packet Storm
217288 6.5 警告 マカフィー - McAfee Email Gateway の /admin/cgi-bin/rpc/doReport/18 における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-7092 2013-12-17 16:29 2013-12-3 Show GitHub Exploit DB Packet Storm
217289 5 警告 Philippe Jounin - Tftpd32 のクライアントにおけるフォーマットストリングの脆弱性 CWE-134
書式文字列の問題 		CVE-2013-6809 2013-12-17 15:49 2013-12-1 Show GitHub Exploit DB Packet Storm
217290 6.8 警告 Xen プロジェクト - Xen におけるサービス運用妨害 (DoS) の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-6400 2013-12-17 15:20 2013-12-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 26, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
279001 - microsoft office Unspecified vulnerability in Microsoft Office XP and 2003 allows remote user-assisted attackers to execute arbitrary code via a malformed Smart Tag. NVD-CWE-Other
CVE-2006-3868 2018-10-31 01:25 2006-10-11 Show GitHub Exploit DB Packet Storm
279002 - microsoft office Unspecified vulnerability in PowerPoint in Microsoft Office 2000, Office 2002, Office 2003, Office 2004 for Mac, and Office v.X for Mac allows user-assisted attackers to execute arbitrary code via a … CWE-94
Code Injection 		CVE-2006-3876 2018-10-31 01:25 2006-10-11 Show GitHub Exploit DB Packet Storm
279003 - sun solaris
sunos 		The TCP implementation in Sun Solaris 8, 9, and 10 before 20060726 allows remote attackers to cause a denial of service (resource exhaustion) via a TCP packet with an incorrect sequence number, which… NVD-CWE-Other
CVE-2006-3920 2018-10-31 01:25 2006-07-29 Show GitHub Exploit DB Packet Storm
279004 - cisco secure_access_control_server Multiple unspecified vulnerabilities in the CSRadius service in Cisco Secure Access Control Server (ACS) for Windows before 4.1 and ACS Solution Engine before 4.1 allow remote attackers to cause a de… NVD-CWE-noinfo
CVE-2006-4097 2018-10-31 01:25 2006-12-31 Show GitHub Exploit DB Packet Storm
279005 - sun solaris
sunos 		Unspecified vulnerability in Sun Solaris 8 and 9 before 20060821 allows local users to execute arbitrary commands via unspecified vectors, involving the default Role-Based Access Control (RBAC) setti… NVD-CWE-Other
CVE-2006-4306 2018-10-31 01:25 2006-08-24 Show GitHub Exploit DB Packet Storm
279006 - sun solaris
sunos 		Unspecified vulnerability in the format command in Sun Solaris 8 and 9 before 20060821 allows local users to modify arbitrary files via unspecified vectors involving profiles that permit running form… NVD-CWE-noinfo
CVE-2006-4307 2018-10-31 01:25 2006-08-24 Show GitHub Exploit DB Packet Storm
279007 - cisco pix_firewall_501
pix_firewall_506
pix_firewall_515
pix_firewall_515e
pix_firewall_520
pix_firewall_525
pix_firewall_535
pix_firewall_software
adaptive_security_appliance 		Cisco PIX 500 Series Security Appliances and ASA 5500 Series Adaptive Security Appliances, when running 7.0(x) up to 7.0(5) and 7.1(x) up to 7.1(2.4), and Firewall Services Module (FWSM) 3.1(x) up to… NVD-CWE-Other
CVE-2006-4312 2018-10-31 01:25 2006-08-24 Show GitHub Exploit DB Packet Storm
279008 - php php PHP before 4.4.3 and 5.x before 5.1.4 does not limit the character set of the session identifier (PHPSESSID) for third party session handlers, which might make it easier for remote attackers to explo… NVD-CWE-Other
CVE-2006-4433 2018-10-31 01:25 2006-08-29 Show GitHub Exploit DB Packet Storm
279009 - php php The (1) file_exists and (2) imap_reopen functions in PHP before 5.1.5 do not check for the safe_mode and open_basedir settings, which allows local users to bypass the settings. NOTE: the error_log f… NVD-CWE-Other
CVE-2006-4481 2018-10-31 01:25 2006-09-1 Show GitHub Exploit DB Packet Storm
279010 - php php Buffer overflow in the LWZReadByte_ function in ext/gd/libgd/gd_gif_in.c in the GD extension in PHP before 5.1.5 allows remote attackers to have an unknown impact via a GIF file with input_code_size … NVD-CWE-Other
CVE-2006-4484 2018-10-31 01:25 2006-09-1 Show GitHub Exploit DB Packet Storm