Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
219301 2.6 注意 Spambot Module Project - Drupal 用 Spambot モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-6582 2013-08-22 15:27 2012-09-19 Show GitHub Exploit DB Packet Storm
219302 7.5 危険 AlienVault - AlienVault Open Source Security Information Management における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-5321 2013-08-22 15:25 2013-08-20 Show GitHub Exploit DB Packet Storm
219303 4.3 警告 i7MEDIA, LLC - mojoPortal の Forums/EditPost.aspx におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-5320 2013-08-22 15:25 2013-07-29 Show GitHub Exploit DB Packet Storm
219304 4.3 警告 Atlassian - Atlassian JIRA の Admin Panel におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-5319 2013-08-22 15:24 2013-08-6 Show GitHub Exploit DB Packet Storm
219305 7.5 危険 Benjamin ARNAUDETR - Ginkgo CMS における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-5318 2013-08-22 15:23 2013-08-12 Show GitHub Exploit DB Packet Storm
219306 3.5 注意 RiteCMS - RiteCMS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-5317 2013-08-22 15:23 2013-07-30 Show GitHub Exploit DB Packet Storm
219307 6.8 警告 RiteCMS - RiteCMS におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2013-5316 2013-08-22 15:22 2013-07-30 Show GitHub Exploit DB Packet Storm
219308 4.3 警告 Alcatel-Lucent - 複数の Alcatel-Lucent Omnitouch 製品の MyTeamwork サービスにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-4653 2013-08-22 15:19 2013-07-2 Show GitHub Exploit DB Packet Storm
219309 6.8 警告 WinSCP
Debian
Simon Tatham
Novell		 - PuTTY および WinSCP などの製品における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2013-4852 2013-08-21 20:03 2013-07-9 Show GitHub Exploit DB Packet Storm
219310 2.1 注意 Simon Tatham - PuTTY の rsa_verify 関数におけるプライベート RSA および DSA 鍵を破られる脆弱性 CWE-200
情報漏えい 		CVE-2013-4208 2013-08-21 20:00 2013-07-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 24, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
279611 - actualscripts actualanalyzer PHP remote file inclusion vulnerability in direct.php in ActualScripts ActualAnalyzer Lite 2.72 and earlier, Gold 7.63 and earlier, and Server 8.23 and earlier allows remote attackers to execute arbi… NVD-CWE-Other
CVE-2006-1959 2018-10-19 01:37 2006-04-21 Show GitHub Exploit DB Packet Storm
279612 - cisco wireless_lan_solution_engine Cross-site scripting (XSS) vulnerability in the appliance web user interface in Cisco CiscoWorks Wireless LAN Solution Engine (WLSE) and WLSE Express before 2.13 allows remote attackers to inject arb… NVD-CWE-Other
CVE-2006-1960 2018-10-19 01:37 2006-04-21 Show GitHub Exploit DB Packet Storm
279613 - cisco user_registration_tool
wireless_lan_solution_engine
ciscoworks_2000_service_management_solution
hosting_solution_engine
ethernet_subscriber_solution_engine 		Cisco CiscoWorks Wireless LAN Solution Engine (WLSE) and WLSE Express before 2.13, Hosting Solution Engine (HSE) and User Registration Tool (URT) before 20060419, and all versions of Ethernet Subscri… NVD-CWE-Other
CVE-2006-1961 2018-10-19 01:37 2006-04-21 Show GitHub Exploit DB Packet Storm
279614 - pcpin pcpin_chat SQL injection vulnerability in PCPIN Chat 5.0.4 and earlier allows remote attackers to execute arbitrary SQL commands via the username field (login parameter) to main.php. CWE-89
SQL Injection 		CVE-2006-1962 2018-10-19 01:37 2006-04-21 Show GitHub Exploit DB Packet Storm
279615 - pcpin pcpin_chat Directory traversal vulnerability in main.php in PCPIN Chat 5.0.4 and earlier allows remote authenticated users to include and execute arbitrary PHP code via a ".." (dot dot) in a language cookie, as… NVD-CWE-Other
CVE-2006-1963 2018-10-19 01:37 2006-04-21 Show GitHub Exploit DB Packet Storm
279616 - aspsitem aspsitem SQL injection vulnerability in Haberler.asp in ASPSitem 1.83 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter. NVD-CWE-Other
CVE-2006-1964 2018-10-19 01:37 2006-04-21 Show GitHub Exploit DB Packet Storm
279617 - fortinet fortinet28 An unspecified Fortinet product, possibly Fortinet28, allows remote attackers to cause a denial of service via a "small synflood" to the SMTP port (TCP port 25), as demonstrated by a 10-microsecond w… NVD-CWE-Other
CVE-2006-1966 2018-10-19 01:37 2006-04-21 Show GitHub Exploit DB Packet Storm
279618 - krankikom contentboxx Cross-site scripting (XSS) vulnerability in login.php in KRANKIKOM ContentBoxX allows remote attackers to inject arbitrary web script or HTML via the action parameter. NVD-CWE-Other
CVE-2006-1971 2018-10-19 01:37 2006-04-21 Show GitHub Exploit DB Packet Storm
279619 - wingnut easygallery Cross-site scripting (XSS) vulnerability in EasyGallery.php in Wingnut EasyGallery allows remote attackers to inject arbitrary web script or HTML via the ordner parameter. NVD-CWE-Other
CVE-2006-1972 2018-10-19 01:37 2006-04-21 Show GitHub Exploit DB Packet Storm
279620 - flexbb flexbb Cross-site scripting (XSS) vulnerability in FlexBB 0.5.7 BETA and earlier allows remote attackers to inject arbitrary web script or HTML via the (1) name and (2) message parameters. NVD-CWE-Other
CVE-2006-1977 2018-10-19 01:37 2006-04-22 Show GitHub Exploit DB Packet Storm