Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 12, 2026, 2:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
218971 4.3 警告 bit 5 blog - Bit 5 Blog におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-0361 2014-03-11 17:43 2006-01-22 Show GitHub Exploit DB Packet Storm
218972 7.5 危険 counterpath - CounterPath eyeBeam SIP Softphone におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2006-0359 2014-03-11 17:43 2006-01-22 Show GitHub Exploit DB Packet Storm
218973 7.5 危険 bitcomet - BitComet Client におけるバッファオーバーフローの脆弱性 - CVE-2006-0339 2014-03-11 17:43 2006-01-21 Show GitHub Exploit DB Packet Storm
218974 7.5 危険 エフ・セキュア - 複数の F-Secure Anti-Virus 製品におけるバッファオーバーフローの脆弱性 - CVE-2006-0337 2014-03-11 17:43 2006-01-21 Show GitHub Exploit DB Packet Storm
218975 4.3 警告 ar-blog - ar-blog におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-0333 2014-03-11 17:43 2006-01-21 Show GitHub Exploit DB Packet Storm
218976 4.6 警告 thiago melo de paula - Change passwd SquirrelMail プラグインにおけるバッファオーバーフローの脆弱性 - CVE-2006-0331 2014-03-11 17:43 2006-01-21 Show GitHub Exploit DB Packet Storm
218977 10 危険 AOL - AOL で使用される AOL You've Got Pictures Picture Finder Tool ActiveX コントロールにおけるバッファオーバーフローの脆弱性 - CVE-2006-0316 2014-03-11 17:43 2006-01-19 Show GitHub Exploit DB Packet Storm
218978 5 警告 mike helton - aoblogger における認証を回避される脆弱性 - CVE-2006-0312 2014-03-11 17:43 2006-01-19 Show GitHub Exploit DB Packet Storm
218979 4.3 警告 mike helton - aoblogger におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-0310 2014-03-11 17:43 2006-01-19 Show GitHub Exploit DB Packet Storm
218980 7.5 危険 clipcomm - Clipcomm CPW-100E VoIP 802.11b Wireless Handset Phone および CP-100E VoIP 802.11b Wireless Phone のファームウェアにおけるアクセス権を取得される脆弱性 - CVE-2006-0305 2014-03-11 17:43 2006-01-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
294711 - nicolas_tormo phppaleo Directory traversal vulnerability in index.php in phpPaleo 4.8b155 and earlier allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the lang parameter. CWE-22
Path Traversal 		CVE-2012-1671 2024-11-21 10:37 2012-10-9 Show GitHub Exploit DB Packet Storm
294712 - postgresql postgresql
postgresql_jdbc_driver 		Interaction error in the PostgreSQL JDBC driver before 8.2, when used with a PostgreSQL server with the "standard_conforming_strings" option enabled, such as the default configuration of PostgreSQL 9… NVD-CWE-Other
CVE-2012-1618 2024-11-21 10:37 2012-10-7 Show GitHub Exploit DB Packet Storm
294713 - hans_nilsson video_filter Cross-site scripting (XSS) vulnerability in video_filter.codecs.inc in the Video Filter module 6.x-2.x and 7.x-2.x for Drupal allows remote attackers to inject arbitrary web script or HTML via the EM… CWE-79
Cross-site Scripting 		CVE-2012-1634 2024-11-21 10:37 2012-10-7 Show GitHub Exploit DB Packet Storm
294714 - lingotek lingotek Multiple cross-site scripting (XSS) vulnerabilities in the Lingotek module 6.x-1.x before 6.x-1.40 for Drupal allow remote authenticated users to inject arbitrary web script or HTML when (1) creating… CWE-79
Cross-site Scripting 		CVE-2012-1624 2024-11-21 10:37 2012-10-7 Show GitHub Exploit DB Packet Storm
294715 - aidanlister regcode The Registration Codes module before 6.x-2.4 for Drupal does not restrict access to the registration code list, which might allow remote attackers to bypass intended registration restrictions. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-1623 2024-11-21 10:37 2012-10-7 Show GitHub Exploit DB Packet Storm
294716 - ez ez_publish Unspecified vulnerability in ez Publish 4.1.4, 4.2, 4.3, 4.4, 4.5, and 4.6 has unknown impact and attack vectors related to an insecure direct object reference. NVD-CWE-noinfo
CVE-2012-1565 2024-11-21 10:37 2012-10-7 Show GitHub Exploit DB Packet Storm
294717 - yuriy_v_semenikhin yvs_image_gallery Cross-site scripting (XSS) vulnerability in administration/create_album.php in YVS Image Gallery allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. CWE-79
Cross-site Scripting 		CVE-2012-1564 2024-11-21 10:37 2012-10-7 Show GitHub Exploit DB Packet Storm
294718 - nextbbs nextbbs Cross-site scripting (XSS) vulnerability in NextBBS 0.6 allows remote attackers to inject arbitrary web script or HTML via the do parameter to index.php. CWE-79
Cross-site Scripting 		CVE-2012-1604 2024-11-21 10:37 2012-10-2 Show GitHub Exploit DB Packet Storm
294719 - nextbbs nextbbs Multiple SQL injection vulnerabilities in ajaxserver.php in NextBBS 0.6 allow remote attackers to execute arbitrary SQL commands via the (1) curstr parameter in the findUsers function, (2) id paramet… CWE-89
SQL Injection 		CVE-2012-1603 2024-11-21 10:37 2012-10-2 Show GitHub Exploit DB Packet Storm
294720 - nextbbs nextbbs user.php in NextBBS 0.6 allows remote attackers to bypass authentication and gain administrator access by setting the userkey cookie to 1. CWE-287
Improper Authentication 		CVE-2012-1602 2024-11-21 10:37 2012-10-2 Show GitHub Exploit DB Packet Storm