Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
219071 6.8 警告 IndiaNIC - WordPress 用 IndiaNIC Testimonial プラグインにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2013-5672 2013-09-12 14:31 2013-09-1 Show GitHub Exploit DB Packet Storm
219072 4.3 警告 ImageMagick - ImageMagick の coders/gif.c 内の ReadGIFImage 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2013-4298 2013-09-12 14:29 2013-08-5 Show GitHub Exploit DB Packet Storm
219073 5 警告 Fedora Project - 389 Directory Server の ns-slapd におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2013-4283 2013-09-12 14:16 2013-08-28 Show GitHub Exploit DB Packet Storm
219074 6.9 警告 GNOME Project - GNOME Display Manager における任意のディレクトリのパーミッションを変更される脆弱性 CWE-59
リンク解釈の問題 		CVE-2013-4169 2013-09-12 13:42 2013-09-5 Show GitHub Exploit DB Packet Storm
219075 3.5 注意 AlienWP - Drupal 用 Hatch テーマにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-4138 2013-09-11 16:42 2013-07-10 Show GitHub Exploit DB Packet Storm
219076 7.2 危険 ソフォス - Sophos Web Appliance の /opt/cma/bin/clear_keys.pl の close_connections 関数における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-4984 2013-09-11 14:45 2013-09-9 Show GitHub Exploit DB Packet Storm
219077 7.5 危険 VMware - VMware ESX および ESXi におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-3657 2013-09-11 14:02 2013-09-6 Show GitHub Exploit DB Packet Storm
219078 6.4 警告 VMware - VMware ESX および ESXi におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2013-3658 2013-09-11 13:54 2013-09-6 Show GitHub Exploit DB Packet Storm
219079 4.3 警告 VideoWhisper.com - WordPress 用 VideoWhisper Live Streaming Integration プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-5714 2013-09-11 13:51 2013-08-23 Show GitHub Exploit DB Packet Storm
219080 5 警告 Digium - 複数の Asterisk 製品の SIP チャネルドライバにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2013-5642 2013-09-11 13:50 2013-08-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 18, 2026, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
278611 - microsoft windows_2000
windows_2003_server
windows_xp 		Integer overflow in the ReadWideString function in agentdpv.dll in Microsoft Agent on Microsoft Windows 2000 SP4, XP SP2, and Server 2003 up to SP1 allows remote attackers to execute arbitrary code v… CWE-189
Numeric Errors 		CVE-2006-3445 2018-10-19 01:47 2006-11-15 Show GitHub Exploit DB Packet Storm
278612 - microsoft step-by-step_interactive_training Buffer overflow in the Step-by-Step Interactive Training in Microsoft Windows 2000 SP4, XP SP2 and Professional, and Server 2003 SP1 allows remote attackers to execute arbitrary code via a long Sylla… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2006-3448 2018-10-19 01:47 2007-02-14 Show GitHub Exploit DB Packet Storm
278613 - microsoft powerpoint Unspecified vulnerability in Microsoft PowerPoint 2000 through 2003, possibly a buffer overflow, allows user-assisted remote attackers to execute arbitrary commands via a malformed record in the BIFF… NVD-CWE-Other
CVE-2006-3449 2018-10-19 01:47 2006-08-9 Show GitHub Exploit DB Packet Storm
278614 - microsoft ie Microsoft Internet Explorer 5 SP4 and 6 do not properly garbage collect when "multiple imports are used on a styleSheets collection" to construct a chain of Cascading Style Sheets (CSS), which allows… CWE-20
 Improper Input Validation  		CVE-2006-3451 2018-10-19 01:47 2006-08-9 Show GitHub Exploit DB Packet Storm
278615 - symantec client_security
norton_antivirus 		Multiple format string vulnerabilities in Symantec AntiVirus Corporate Edition 8.1 up to 10.0, and Client Security 1.x up to 3.0, allow local users to execute arbitrary code via format strings in (1)… NVD-CWE-Other
CVE-2006-3454 2018-10-19 01:47 2006-09-14 Show GitHub Exploit DB Packet Storm
278616 - symantec client_security
norton_antivirus 		The SAVRT.SYS device driver, as used in Symantec AntiVirus Corporate Edition 8.1 and 9.0.x up to 9.0.3, and Symantec Client Security 1.1 and 2.0.x up to 2.0.3, allows local users to execute arbitrary… NVD-CWE-Other
CVE-2006-3455 2018-10-19 01:47 2006-10-24 Show GitHub Exploit DB Packet Storm
278617 - symantec on-demand_agent
on-demand_protection 		Symantec On-Demand Agent (SODA) before 2.5 MR2 Build 2157, and the Virtual Desktop module in Symantec On-Demand Protection (SODP) before 2.6 Build 2233, do not properly encrypt files that are subject… NVD-CWE-Other
CVE-2006-3457 2018-10-19 01:47 2006-08-5 Show GitHub Exploit DB Packet Storm
278618 - belchior_foundry vcard Multiple SQL injection vulnerabilities in Belchior Foundry vCard PRO allow remote attackers to execute arbitrary SQL commands via the (1) cat_id parameter to (a) gbrowse.php, (2) card_id parameter to… NVD-CWE-Other
CVE-2006-3474 2018-10-19 01:47 2006-07-11 Show GitHub Exploit DB Packet Storm
278619 - free_qboard free_qboard Multiple PHP remote file inclusion vulnerabilities in free QBoard 1.1 allow remote attackers to execute arbitrary PHP code via a URL in the qb_path parameter to (1) index.php, (2) about.php, (3) cont… NVD-CWE-Other
CVE-2006-3475 2018-10-19 01:47 2006-07-11 Show GitHub Exploit DB Packet Storm
278620 - phpwebgallery phpwebgallery Cross-site scripting (XSS) vulnerability in comments.php in PhpWebGallery 1.5.2 and earlier, and possibly 1.6.0, allows remote attackers to inject arbitrary web script or HTML via the keyword paramet… NVD-CWE-Other
CVE-2006-3476 2018-10-19 01:47 2006-07-11 Show GitHub Exploit DB Packet Storm