Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
219301 2.6 注意 Spambot Module Project - Drupal 用 Spambot モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-6582 2013-08-22 15:27 2012-09-19 Show GitHub Exploit DB Packet Storm
219302 7.5 危険 AlienVault - AlienVault Open Source Security Information Management における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-5321 2013-08-22 15:25 2013-08-20 Show GitHub Exploit DB Packet Storm
219303 4.3 警告 i7MEDIA, LLC - mojoPortal の Forums/EditPost.aspx におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-5320 2013-08-22 15:25 2013-07-29 Show GitHub Exploit DB Packet Storm
219304 4.3 警告 Atlassian - Atlassian JIRA の Admin Panel におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-5319 2013-08-22 15:24 2013-08-6 Show GitHub Exploit DB Packet Storm
219305 7.5 危険 Benjamin ARNAUDETR - Ginkgo CMS における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-5318 2013-08-22 15:23 2013-08-12 Show GitHub Exploit DB Packet Storm
219306 3.5 注意 RiteCMS - RiteCMS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-5317 2013-08-22 15:23 2013-07-30 Show GitHub Exploit DB Packet Storm
219307 6.8 警告 RiteCMS - RiteCMS におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2013-5316 2013-08-22 15:22 2013-07-30 Show GitHub Exploit DB Packet Storm
219308 4.3 警告 Alcatel-Lucent - 複数の Alcatel-Lucent Omnitouch 製品の MyTeamwork サービスにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-4653 2013-08-22 15:19 2013-07-2 Show GitHub Exploit DB Packet Storm
219309 6.8 警告 WinSCP
Debian
Simon Tatham
Novell		 - PuTTY および WinSCP などの製品における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2013-4852 2013-08-21 20:03 2013-07-9 Show GitHub Exploit DB Packet Storm
219310 2.1 注意 Simon Tatham - PuTTY の rsa_verify 関数におけるプライベート RSA および DSA 鍵を破られる脆弱性 CWE-200
情報漏えい 		CVE-2013-4208 2013-08-21 20:00 2013-07-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 23, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
277981 - estara softphone Multiple format string vulnerabilities in eStara SIP softphone allow remote attackers to cause a denial of service (hang) via SIP INVITE requests with format string specifiers in the SDP session desc… NVD-CWE-Other
CVE-2006-0738 2018-10-20 00:46 2006-02-17 Show GitHub Exploit DB Packet Storm
277982 - estara softphone eStara SIP softphone allows remote attackers to cause a denial of service (crash) via an INVITE request with a Content-Length field that has more than 9 digits. NVD-CWE-Other
CVE-2006-0739 2018-10-20 00:46 2006-02-17 Show GitHub Exploit DB Packet Storm
277983 - x.org
mandrakesoft
redhat
sun
suse 		x11r6
x11r7
mandrake_linux
fedora_core
solaris
suse_linux 		X.Org server (xorg-server) 1.0.0 and later, X11R6.9.0, and X11R7.0 inadvertently treats the address of the geteuid function as if it is the return value of a call to geteuid, which allows local users… NVD-CWE-Other
CVE-2006-0745 2018-10-20 00:46 2006-03-21 Show GitHub Exploit DB Packet Storm
277984 - xpdf xpdf Certain patches for kpdf do not include all relevant patches from xpdf that were associated with CVE-2005-3627, which allows context-dependent attackers to exploit vulnerabilities that were present i… NVD-CWE-Other
CVE-2006-0746 2018-10-20 00:46 2006-03-9 Show GitHub Exploit DB Packet Storm
277985 - freetype freetype Integer underflow in Freetype before 2.2 allows remote attackers to cause a denial of service (crash) via a font file with an odd number of blue values, which causes the underflow when decrementing b… CWE-189
Numeric Errors 		CVE-2006-0747 2018-10-20 00:46 2006-05-23 Show GitHub Exploit DB Packet Storm
277986 - mozilla firefox
seamonkey
thunderbird 		Mozilla Firefox and Thunderbird 1.x before 1.5.0.2 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0.1 allows remote attackers to execute arbitrary code via "an invalid an… CWE-399
 Resource Management Errors 		CVE-2006-0748 2018-10-20 00:46 2006-04-14 Show GitHub Exploit DB Packet Storm
277987 - mozilla firefox
seamonkey
thunderbird 		This vulnerability also affects Mozilla Suite before 1.7.13 CWE-399
 Resource Management Errors 		CVE-2006-0748 2018-10-20 00:46 2006-04-14 Show GitHub Exploit DB Packet Storm
277988 - mozilla firefox
mozilla_suite
seamonkey
thunderbird 		nsHTMLContentSink.cpp in Mozilla Firefox and Thunderbird 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0 allows remote attackers to cause a denial of serv… CWE-399
 Resource Management Errors 		CVE-2006-0749 2018-10-20 00:46 2006-04-14 Show GitHub Exploit DB Packet Storm
277989 - supersmashbrothers army_system SQL injection vulnerability in army.php in supersmashbrothers (SSB) Army System 2.1.0 for Invision Power Board (IPB) allows remote attackers to execute arbitrary SQL commands via the userstat paramet… CWE-89
SQL Injection 		CVE-2006-0750 2018-10-20 00:46 2006-02-18 Show GitHub Exploit DB Packet Storm
277990 - niels_provos honeyd Niels Provos Honeyd before 1.5 replies to certain illegal IP packet fragments that other IP stack implementations would drop, which allows remote attackers to identify IP addresses that are being sim… NVD-CWE-Other
CVE-2006-0752 2018-10-20 00:46 2006-02-18 Show GitHub Exploit DB Packet Storm