Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
217571 9.3 危険 Vortex Group - Vortex Light Alloy におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-6874 2013-11-28 12:21 2013-11-22 Show GitHub Exploit DB Packet Storm
217572 4.3 警告 MediaWiki - MediaWiki 用 ZeroRatedMobileAccess 拡張機能におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-4573 2013-11-28 12:04 2013-10-22 Show GitHub Exploit DB Packet Storm
217573 7.8 危険 Gummy Bear Studios - Gummy Bear Studios FTP Drive + HTTP Server におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2013-3922 2013-11-28 12:02 2013-11-21 Show GitHub Exploit DB Packet Storm
217574 3.5 注意 CloudBees - CloudBees Jenkins 用 Build Failure Analyzer プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-6374 2013-11-28 11:37 2013-11-20 Show GitHub Exploit DB Packet Storm
217575 5.5 警告 CloudBees - CloudBees Jenkins 用 Exclusion プラグインにおけるリソースを一覧表示される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-6373 2013-11-28 11:37 2013-11-20 Show GitHub Exploit DB Packet Storm
217576 4.3 警告 PaloSanto Solutions - Elastix の xmlservices/E_book.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-6608 2013-11-28 11:30 2012-11-19 Show GitHub Exploit DB Packet Storm
217577 3.5 注意 Moodle - Moodle の mod/quiz/report/responses/responses_table.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-4525 2013-11-28 11:18 2013-11-25 Show GitHub Exploit DB Packet Storm
217578 6.8 警告 Moodle - Moodle の repository/filesystem/lib.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2013-4524 2013-11-28 11:17 2013-11-25 Show GitHub Exploit DB Packet Storm
217579 3.5 注意 Moodle - Moodle の message/lib.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-4523 2013-11-28 11:17 2013-11-25 Show GitHub Exploit DB Packet Storm
217580 5 警告 Moodle - Moodle の lib/filelib.php における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2013-4522 2013-11-28 11:17 2013-11-25 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 22, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
280111 - jason_boettcher liero_xtreme Jason Boettcher Liero Xtreme 0.62b and earlier allow remote attackers to cause a denial of service (application crash or hang) via a long argument to the connect command. NVD-CWE-Other
CVE-2006-1074 2018-10-19 01:30 2006-03-9 Show GitHub Exploit DB Packet Storm
280112 - jason_boettcher liero_xtreme Format string vulnerability in the visualization function in Jason Boettcher Liero Xtreme 0.62b and earlier allows remote attackers to execute arbitrary code via format string specifiers in (1) a nic… NVD-CWE-Other
CVE-2006-1075 2018-10-19 01:30 2006-03-9 Show GitHub Exploit DB Packet Storm
280113 - invision_power_services invision_power_board SQL injection vulnerability in index.php, possibly during a showtopic operation, in Invision Power Board (IPB) 2.1.5 allows remote attackers to execute arbitrary SQL commands via the st parameter. NVD-CWE-Other
CVE-2006-1076 2018-10-19 01:30 2006-03-9 Show GitHub Exploit DB Packet Storm
280114 - evo-dev evoblog Multiple cross-site scripting (XSS) vulnerabilities in the commentary in Evo-Dev evoBlog allow remote attackers to inject arbitrary web script or HTML via (1) the name parameter and (2) other unspeci… NVD-CWE-Other
CVE-2006-1077 2018-10-19 01:30 2006-03-9 Show GitHub Exploit DB Packet Storm
280115 - jonathan_beckett pluggedout_nexus SQL injection vulnerability in forgotten_password.php in Jonathan Beckett PluggedOut Nexus 0.1 allows remote attackers to execute arbitrary SQL commands via the email parameter. NVD-CWE-Other
CVE-2006-1081 2018-10-19 01:30 2006-03-9 Show GitHub Exploit DB Packet Storm
280116 - phparcadescript phparcadescript Multiple cross-site scripting (XSS) vulnerabilities in phpArcadeScript 2.0 and earlier allow remote attackers to inject arbitrary web script or HTML via (1) the gamename parameter in tellafriend.php,… NVD-CWE-Other
CVE-2006-1082 2018-10-19 01:30 2006-03-9 Show GitHub Exploit DB Packet Storm
280117 - php-stats php-stats Multiple directory traversal vulnerabilities in PHP-Stats 0.1.9.1 and earlier allow remote attackers to read and possibly execute arbitrary files via a .. (dot dot) in the (1) option[language] and (2… NVD-CWE-Other
CVE-2006-1083 2018-10-19 01:30 2006-03-9 Show GitHub Exploit DB Packet Storm
280118 - php-stats php-stats Multiple SQL injection vulnerabilities in PHP-Stats 0.1.9.1 and earlier allow remote attackers to execute arbitrary SQL commands via (1) the option[prefix] parameter in admin.php and other unspecifie… NVD-CWE-Other
CVE-2006-1084 2018-10-19 01:30 2006-03-9 Show GitHub Exploit DB Packet Storm
280119 - php-stats php-stats admin.php in PHP-Stats 0.1.9.1 and earlier allows remote attackers to bypass authentication, gain administrator privileges, and execute arbitrary PHP code by modifying the option[admin_pass] paramete… NVD-CWE-Other
CVE-2006-1085 2018-10-19 01:30 2006-03-9 Show GitHub Exploit DB Packet Storm
280120 - php-stats php-stats Direct static code injection vulnerability in the modify_config action in admin.php for PHP-Stats 0.1.9.1 and earlier allows remote authenticated administrators to execute arbitrary PHP code via the … NVD-CWE-Other
CVE-2006-1087 2018-10-19 01:30 2006-03-9 Show GitHub Exploit DB Packet Storm