Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 5, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
217551	7.5	危険	algorithmic research	-	Algorithmic Research PrivateWire VPN ソフトウェア用 Online Registration Facility におけるバッファオーバーフローの脆弱性	-	CVE-2006-3252	2014-03-11 17:43	2006-06-27	Show	GitHub Exploit DB Packet Storm

217552	9.3	危険	Nullsoft	-	WinAmp におけるバッファオーバーフローの脆弱性	-	CVE-2006-3228	2014-03-11 17:43	2006-06-26	Show	GitHub Exploit DB Packet Storm

217553	7.5	危険	シスコシステムズ	-	Windows 用 Cisco Secure Access Control Server における認証を回避される脆弱性	-	CVE-2006-3226	2014-03-11 17:43	2006-06-26	Show	GitHub Exploit DB Packet Storm

217554	5	警告	clearswift	-	Clearswift MAILsweeper for SMTP および MAILsweeper for Exchange におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-3216	2014-03-11 17:43	2006-06-24	Show	GitHub Exploit DB Packet Storm

217555	7.5	危険	clearswift	-	Clearswift MAILsweeper for SMTP および MAILsweeper for Exchange における "テキスト分析 (text analysis)" を回避される脆弱性	-	CVE-2006-3215	2014-03-11 17:43	2006-06-24	Show	GitHub Exploit DB Packet Storm

217556	4.3	警告	tpvgames	-	MPCS におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-3191	2014-03-11 17:43	2006-06-23	Show	GitHub Exploit DB Packet Storm

217557	5.8	警告	hotplug cms	-	HotPlug CMS におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-3189	2014-03-11 17:43	2006-06-23	Show	GitHub Exploit DB Packet Storm

217558	5	警告	bt	-	BT Voyager 2091 Wireless ファームウェアにおける認証プロセスを回避される脆弱性	CWE-200 CWE-264	CVE-2006-3561	2014-03-11 17:43	2006-07-13	Show	GitHub Exploit DB Packet Storm

217559	7.5	危険	sipfoundry	-	SIPfoundry sipXtapi におけるバッファオーバーフローの脆弱性	-	CVE-2006-3524	2014-03-11 17:43	2006-07-12	Show	GitHub Exploit DB Packet Storm

217560	5	警告	clearswift	-	Clearswift MIMEsweeper for Web におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-3523	2014-03-11 17:43	2006-07-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 5, 2026, 4:51 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
292361	-	nancy_wichmann	taxonomy_list	Multiple cross-site scripting (XSS) vulnerabilities in the Taxonomy List module 6.x-1.x before 6.x-1.4 for Drupal allow remote authenticated users with create or edit taxonomy terms permissions to in…	CWE-79 Cross-site Scripting	CVE-2012-2711	2024-11-21 10:39	2012-06-27	Show	GitHub Exploit DB Packet Storm

292362	-	john_albin	zen	Cross-site scripting (XSS) vulnerability in the Zen module 6.x-1.x before 6.x-1.1 for Drupal, when "Append the content title to the end of the breadcrumb" is enabled, allows remote attackers to injec…	CWE-79 Cross-site Scripting	CVE-2012-2710	2024-11-21 10:39	2012-06-27	Show	GitHub Exploit DB Packet Storm

292363	-	antoine_beaupre	hostmaster	Cross-site scripting (XSS) vulnerability in the _hosting_task_log_table function in modules/hosting/task/hosting_task.module in the Hostmaster (Aegir) module 6.x-1.x before 6.x-1.9 for Drupal allows …	CWE-79 Cross-site Scripting	CVE-2012-2708	2024-11-21 10:39	2012-06-27	Show	GitHub Exploit DB Packet Storm

292364	-	antoine_beaupre	hostmaster	The Hostmaster (Aegir) module 6.x-1.x before 6.x-1.9 for Drupal does not properly exit when users do not have access to package/task nodes, which allows remote attackers to bypass intended access res…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-2707	2024-11-21 10:39	2012-06-27	Show	GitHub Exploit DB Packet Storm

292365	-	peter_pokrivcak	post_affiliate_pro	Cross-site scripting (XSS) vulnerability in the Post Affiliate Pro (PAP) module for Drupal allows remote attackers to inject arbitrary web script or HTML via vectors related to user registration.	CWE-79 Cross-site Scripting	CVE-2012-2706	2024-11-21 10:39	2012-06-27	Show	GitHub Exploit DB Packet Storm

292366	-	christopher_mitchell	smart_breadcrumb	The filter_titles function in the Smart Breadcrumb module 6.x-1.x before 6.x-1.3 for Drupal does not properly convert a title to plain-text, which allows remote authenticated users with create or edi…	CWE-20 Improper Input Validation	CVE-2012-2705	2024-11-21 10:39	2012-06-27	Show	GitHub Exploit DB Packet Storm

292367	-	john_franklin	advertisement	Cross-site scripting (XSS) vulnerability in the Advertisement module 6.x-2.x before 6.x-2.3 for Drupal, when debug mode is enabled, allows remote attackers to inject arbitrary web script or HTML via …	CWE-79 Cross-site Scripting	CVE-2012-2703	2024-11-21 10:39	2012-06-27	Show	GitHub Exploit DB Packet Storm

292368	-	tony_freixas	ubercart_product_keys	The Ubercart Product Keys module 6.x-1.x before 6.x-1.1 for Drupal does not properly check access for product keys, which allows remote attackers to read all unassigned product keys via certain condi…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-2702	2024-11-21 10:39	2012-06-27	Show	GitHub Exploit DB Packet Storm

292369	-	rubyonrails	ruby_on_rails rails	The Active Record component in Ruby on Rails before 3.0.14, 3.1.x before 3.1.6, and 3.2.x before 3.2.6 does not properly implement the passing of request data to a where method in an ActiveRecord cla…	CWE-89 SQL Injection	CVE-2012-2695	2024-11-21 10:39	2012-06-22	Show	GitHub Exploit DB Packet Storm

292370	-	rubyonrails	ruby_on_rails rails	actionpack/lib/action_dispatch/http/request.rb in Ruby on Rails before 3.0.14, 3.1.x before 3.1.6, and 3.2.x before 3.2.6 does not properly consider differences in parameter handling between the Acti…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-2694	2024-11-21 10:39	2012-06-22	Show	GitHub Exploit DB Packet Storm