Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 4, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
217581 6.8 警告 lucid designs - Chris Lea Lucid Calendar におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-3025 2014-03-11 17:43 2006-06-15 Show GitHub Exploit DB Packet Storm
217582 5.1 警告 hotwebscripts - CMS Mundo における任意の PHP コードを実行される脆弱性 - CVE-2006-2931 2014-03-11 17:43 2006-06-21 Show GitHub Exploit DB Packet Storm
217583 5.1 警告 JetAudio - jetAudio におけるバッファオーバーフローの脆弱性 - CVE-2006-2910 2014-03-11 17:43 2006-07-5 Show GitHub Exploit DB Packet Storm
217584 2.6 注意 particle soft - Particle Links におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-2903 2014-03-11 17:43 2006-06-8 Show GitHub Exploit DB Packet Storm
217585 2.6 注意 Pixelpost.org - Pixelpost におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-2891 2014-03-11 17:43 2006-06-7 Show GitHub Exploit DB Packet Storm
217586 6.8 警告 DeltaScripts - PHP Pro Publish におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-2876 2014-03-11 17:43 2006-06-7 Show GitHub Exploit DB Packet Storm
217587 6.8 警告 PmWiki - PmWiki におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-2840 2014-03-11 17:43 2006-06-6 Show GitHub Exploit DB Packet Storm
217588 7.6 危険 エフ・セキュア - F-Secure Anti-Virus および Internet Gatekeeper におけるバッファオーバーフローの脆弱性 - CVE-2006-2838 2014-03-11 17:43 2006-06-6 Show GitHub Exploit DB Packet Storm
217589 7.5 危険 TIBCO Software - 複数の TIBCO 製品におけるバッファオーバーフローの脆弱性 - CVE-2006-2830 2014-03-11 17:43 2006-06-5 Show GitHub Exploit DB Packet Storm
217590 6.8 警告 TIBCO Software - TIBCO Hawk および TIBCO Runtime Agent の Hawk Monitoring Agent におけるバッファオーバーフローの脆弱性 - CVE-2006-2829 2014-03-11 17:43 2006-06-5 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 4, 2026, 4:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
292441 - openkm openkm admin/Auth in OpenKM 5.1.7 and other versions before 5.1.8-2 does not properly enforce privileges for changing user roles, which allows remote authenticated users to assign administrator privileges t… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-2315 2024-11-21 10:38 2012-09-10 Show GitHub Exploit DB Packet Storm
292442 - open-emr openemr SQL injection vulnerability in interface/login/validateUser.php in OpenEMR 4.1.0 and possibly earlier allows remote attackers to execute arbitrary SQL commands via the u parameter. CWE-89
SQL Injection 		CVE-2012-2115 2024-11-21 10:38 2012-09-10 Show GitHub Exploit DB Packet Storm
292443 - chatelao php_address_book Cross-site scripting (XSS) vulnerability in preferences.php in PHP Address Book 7.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the from parameter. NOTE: the index… CWE-79
Cross-site Scripting 		CVE-2012-1912 2024-11-21 10:38 2012-09-10 Show GitHub Exploit DB Packet Storm
292444 - chatelao php_address_book Multiple SQL injection vulnerabilities in PHP Address Book 6.2.12 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) to_group parameter to group.php or (2) id parameter … CWE-89
SQL Injection 		CVE-2012-1911 2024-11-21 10:38 2012-09-10 Show GitHub Exploit DB Packet Storm
292445 - mclewin wishlist Cross-site request forgery (CSRF) vulnerability in the Wishlist module 6.x-2.x before 6.x-2.6 and 7.x-2.x before 7.x-2.6 for Drupal allows remote attackers to hijack the authentication of arbitrary u… CWE-352
 Origin Validation Error 		CVE-2012-2069 2024-11-21 10:38 2012-09-7 Show GitHub Exploit DB Packet Storm
292446 - tiger-fish fancy_slide Multiple cross-site scripting (XSS) vulnerabilities in fancy_slide.module in the Fancy Slide module before 6.x-2.7 for Drupal allow remote authenticated users with the administer fancy_slide permissi… CWE-79
Cross-site Scripting 		CVE-2012-2068 2024-11-21 10:38 2012-09-5 Show GitHub Exploit DB Packet Storm
292447 - ckeditor fckeditor
ckeditor 		Unspecified vulnerability in the CKeditor module 6.x-2.x before 6.x-2.3 and the CKEditor module 6.x-1.x before 6.x-1.9 and 7.x-1.x before 7.x-1.7 for Drupal, when the core PHP module is enabled, allo… NVD-CWE-noinfo
CVE-2012-2067 2024-11-21 10:38 2012-09-5 Show GitHub Exploit DB Packet Storm
292448 - ckeditor fckeditor
ckeditor 		Cross-site scripting (XSS) vulnerability in the FCKeditor module 6.x-2.x before 6.x-2.3 and the CKEditor module 6.x-1.x before 6.x-1.9 and 7.x-1.x before 7.x-1.7 for Drupal allows remote authenticate… CWE-79
Cross-site Scripting 		CVE-2012-2066 2024-11-21 10:38 2012-09-5 Show GitHub Exploit DB Packet Storm
292449 - freso languageicons Cross-site scripting (XSS) vulnerability in the Language Icons module 6.x-2.x before 6.x-2.1 and 7.x-1.x before 7.x-1.0 for Drupal allows remote authenticated users with administer languages permissi… CWE-79
Cross-site Scripting 		CVE-2012-2065 2024-11-21 10:38 2012-09-5 Show GitHub Exploit DB Packet Storm
292450 - mark_theunissen views_lang_switch Cross-site scripting (XSS) vulnerability in theme/views_lang_switch.theme.inc in the Views Language Switcher module before 7.x-1.2 for Drupal allows remote attackers to inject arbitrary web script or… CWE-79
Cross-site Scripting 		CVE-2012-2064 2024-11-21 10:38 2012-09-5 Show GitHub Exploit DB Packet Storm