Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
219091 3.5 注意 IBM - IBM solidDB の Universal Cache コンポーネントにおけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2013-3031 2013-09-10 16:27 2013-08-23 Show GitHub Exploit DB Packet Storm
219092 6.4 警告 IBM - IBM Security AppScan Enterprise におけるセッションをハイジャックされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-2997 2013-09-10 16:20 2013-06-14 Show GitHub Exploit DB Packet Storm
219093 5 警告 IBM - IBM Security AppScan Enterprise の SSL の実装における重要な情報を取得される脆弱性 CWE-310
暗号の問題 		CVE-2013-0531 2013-09-10 16:18 2013-06-14 Show GitHub Exploit DB Packet Storm
219094 5.4 警告 アップル - Apple AirPort Base Station ファームウェアにおけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2013-5132 2013-09-10 16:15 2013-09-6 Show GitHub Exploit DB Packet Storm
219095 4.3 警告 シスコシステムズ - Cisco SocialMiner の bookmarklet.jsp におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-5483 2013-09-10 14:15 2013-09-6 Show GitHub Exploit DB Packet Storm
219096 7.1 危険 シスコシステムズ - Cisco Adaptive Security Appliances デバイスにおけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2013-3458 2013-09-10 14:14 2013-09-6 Show GitHub Exploit DB Packet Storm
219097 4 警告 Advance Pro Technologies - AdvancePro に情報漏えいの脆弱性 CWE-200
CWE-264
CVE-2013-3596 2013-09-10 11:45 2013-09-3 Show GitHub Exploit DB Packet Storm
219098 5 警告 Puppet - Puppet Enterprise における Cookie をキャプチャされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-4964 2013-09-9 17:39 2013-08-15 Show GitHub Exploit DB Packet Storm
219099 6.8 警告 Trivantis Corporation Inc. - Coursemill Learning Management System におけるクロスサイトリクエストフォージェリ攻撃を実行される脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2013-5708 2013-09-9 16:04 2013-08-30 Show GitHub Exploit DB Packet Storm
219100 4.3 警告 Trivantis Corporation Inc. - Coursemill Learning Management System におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-5707 2013-09-9 15:53 2013-08-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 23, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
279321 - sphider sphider Multiple cross-site scripting (XSS) vulnerabilities in search.php in Sphider allow remote attackers to inject arbitrary web script or HTML via (1) the PATH_INFO and (2) the category parameter. CWE-79
Cross-site Scripting 		CVE-2006-2506 2018-10-19 01:40 2006-05-23 Show GitHub Exploit DB Packet Storm
279322 - teake_nutma foing Multiple PHP remote file inclusion vulnerabilities in Teake Nutma Foing 0.2.0 through 0.7.0, as used with phpBB, allow remote attackers to execute arbitrary PHP code via a URL in the phpbb_root_path … NVD-CWE-Other
CVE-2006-2507 2018-10-19 01:40 2006-05-23 Show GitHub Exploit DB Packet Storm
279323 - yourfreeworld stylish_text_ads_script SQL injection vulnerability in tr1.php in YourFreeWorld.com Stylish Text Ads Script allows remote attackers to execute arbitrary SQL commands via the id parameter, possibly involving an attack vector… NVD-CWE-Other
CVE-2006-2508 2018-10-19 01:40 2006-05-23 Show GitHub Exploit DB Packet Storm
279324 - yourfreeworld short_url_and_url_tracker_script SQL injection vulnerability in login.php in YourFreeWorld.com Short Url & Url Tracker Script allows remote attackers to execute arbitrary SQL commands via the id parameter. NVD-CWE-Other
CVE-2006-2509 2018-10-19 01:40 2006-05-23 Show GitHub Exploit DB Packet Storm
279325 - yourfreeworld short_url_and_url_tracker_script Cross-site scripting (XSS) vulnerability in the URL submission form in YourFreeWorld.com Short Url & Url Tracker Script allows remote attackers to inject arbitrary web script or HTML via an unspecifi… NVD-CWE-Other
CVE-2006-2510 2018-10-19 01:40 2006-05-23 Show GitHub Exploit DB Packet Storm
279326 - frontrange iheat The ActiveX version of FrontRange iHEAT allows remote authenticated users to run arbitrary programs or access arbitrary files on the host machine by uploading a file with an extension that is not ass… NVD-CWE-Other
CVE-2006-2511 2018-10-19 01:40 2006-05-23 Show GitHub Exploit DB Packet Storm
279327 - hiox_india guest_book Cross-site scripting (XSS) vulnerability in index.php in Hiox Guestbook 3.1 allows remote attackers to inject arbitrary web script or HTML via the input forms for signing the guestbook. NVD-CWE-Other
CVE-2006-2515 2018-10-19 01:40 2006-05-23 Show GitHub Exploit DB Packet Storm
279328 - xoops xoops mainfile.php in XOOPS 2.0.13.2 and earlier, when register_globals is enabled, allows remote attackers to overwrite variables such as $xoopsOption['nocommon'] and conduct directory traversal attacks o… CWE-22
Path Traversal 		CVE-2006-2516 2018-10-19 01:40 2006-05-23 Show GitHub Exploit DB Packet Storm
279329 - xoops xoops Successful exploitation requires that "register_globals" is enabled, and that "magic_quotes_gpc" is disabled. CWE-22
Path Traversal 		CVE-2006-2516 2018-10-19 01:40 2006-05-23 Show GitHub Exploit DB Packet Storm
279330 - phpwcms phpwcms Cross-site scripting (XSS) vulnerability in phpwcms 1.2.5-DEV allows remote attackers to inject arbitrary web script or HTML via the BL[be_cnt_plainhtml] parameter to include/inc_tmpl/content/cnt6.in… NVD-CWE-Other
CVE-2006-2518 2018-10-19 01:40 2006-05-23 Show GitHub Exploit DB Packet Storm