Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
220301 9 危険 OpenStack - OpenStack Neutron の openvswitch-agent プロセスにおけるセキュリティグループの制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-0187 2014-05-1 15:55 2014-04-16 Show GitHub Exploit DB Packet Storm
220302 5 警告 Joachim Baran - Ruby 用 BaseSpace Ruby SDK gem の API クライアントの put_call 関数における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2013-7111 2014-05-1 15:37 2013-11-15 Show GitHub Exploit DB Packet Storm
220303 7.5 危険 Phusion B.V. - Juvia における脆弱性 CWE-255
証明書・パスワード管理 		CVE-2013-7134 2014-05-1 15:37 2013-12-15 Show GitHub Exploit DB Packet Storm
220304 4.6 警告 GNOME Project - GNOME Shell の自動スクリーンロック機能における任意のコマンドを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-7221 2014-05-1 15:37 2013-09-18 Show GitHub Exploit DB Packet Storm
220305 4.6 警告 GNOME Project - GNOME Shell の js/ui/screenShield.js における任意のコマンドを実行される脆弱性 CWE-Other
その他 		CVE-2013-7220 2014-05-1 15:36 2013-03-11 Show GitHub Exploit DB Packet Storm
220306 7.5 危険 Western Digital Corporation - WD Arkeia Virtual Appliance のファームウェアの opt/arkeia/wui/htdocs/index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2014-2846 2014-05-1 15:23 2014-04-21 Show GitHub Exploit DB Packet Storm
220307 5 警告 Zarafa - Zarafa の provider/libserver/ECSession.cpp の ValidateUserLogon 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2014-0079 2014-05-1 15:16 2014-02-14 Show GitHub Exploit DB Packet Storm
220308 5 警告 Zarafa - Zarafa の provider/libserver/ECSession.cpp の ValidateUserLogon 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2014-0037 2014-05-1 15:01 2014-01-30 Show GitHub Exploit DB Packet Storm
220309 2.1 注意 dkorunic - PAM S/Key モジュール用の特定の Gentoo パッチにおける重要な情報を取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2013-4285 2014-05-1 14:51 2013-06-12 Show GitHub Exploit DB Packet Storm
220310 4.4 警告 zlib.org - pigz におけるアクセス権限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-0296 2014-05-1 14:17 2013-02-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
345591 - coppermine coppermine_photo_gallery Directory traversal vulnerability in index.php in Coppermine 1.4.4 allows remote attackers to read arbitrary files via a .//./ (modified dot dot slash) in the file parameter, which causes a regular e… NVD-CWE-Other
CVE-2006-1909 2017-07-20 10:31 2006-04-21 Show GitHub Exploit DB Packet Storm
345592 - mybulletinboard mybulletinboard Cross-site scripting (XSS) vulnerability in MyBB (MyBulletinBoard) 1.1 allows remote attackers to inject arbitrary web script or HTML via the attachment content disposition in an HTML attachment. NVD-CWE-Other
CVE-2006-1911 2017-07-20 10:31 2006-04-21 Show GitHub Exploit DB Packet Storm
345593 - mybulletinboard mybulletinboard This vulnerability is addressed in the following product release: MyBB, MyBB, 1.1.1 NVD-CWE-Other
CVE-2006-1911 2017-07-20 10:31 2006-04-21 Show GitHub Exploit DB Packet Storm
345594 - jax_scripts jax_guestbook Cross-site scripting (XSS) vulnerability in jax_guestbook.php in Jax Guestbook 3.1, 3.31, and 3.50 allows remote attackers to inject arbitrary web script or HTML via the page parameter. NVD-CWE-Other
CVE-2006-1913 2017-07-20 10:31 2006-04-21 Show GitHub Exploit DB Packet Storm
345595 - dbbs dbbs DbbS 2.0-alpha and earlier allows remote attackers to obtain sensitive information via an invalid (1) fcategoryid parameter to topics.php or (2) unavariabile, (3) GLOBALS, or (4) _SERVER[] parameters… NVD-CWE-Other
CVE-2006-1914 2017-07-20 10:31 2006-04-21 Show GitHub Exploit DB Packet Storm
345596 - dbbs dbbs Multiple cross-site scripting (XSS) vulnerabilities in profile.php in DbbS 2.0-alpha and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) ulocation or (2) uhobbies pa… NVD-CWE-Other
CVE-2006-1916 2017-07-20 10:31 2006-04-21 Show GitHub Exploit DB Packet Storm
345597 - pmtool pmtool SQL injection vulnerability in index.php in PMTool 1.2.2 allows remote attackers to execute arbitrary SQL commands via the order parameter in the include files (1) user.inc.php, (2) customer.inc.php,… NVD-CWE-Other
CVE-2006-1920 2017-07-20 10:31 2006-04-21 Show GitHub Exploit DB Packet Storm
345598 - linpha linpha Multiple cross-site scripting (XSS) vulnerabilities in LinPHA before 1.1.1 allow remote attackers to inject arbitrary web script or HTML via (1) RSS/RSS.php and (2) possibly other vectors. NVD-CWE-Other
CVE-2006-1923 2017-07-20 10:31 2006-04-21 Show GitHub Exploit DB Packet Storm
345599 - linpha linpha SQL injection vulnerability in functions/db_api.php in LinPHA 1.1.1 allows remote attackers to execute arbitrary SQL commands via unknown vectors. NVD-CWE-Other
CVE-2006-1924 2017-07-20 10:31 2006-04-21 Show GitHub Exploit DB Packet Storm
345600 - cisco ios_xr Cisco IOS XR, when configured for Multi Protocol Label Switching (MPLS) and running on Cisco CRS-1 or Cisco 12000 series routers, allows remote attackers to cause a denial of service (Line card crash… NVD-CWE-Other
CVE-2006-1927 2017-07-20 10:31 2006-04-21 Show GitHub Exploit DB Packet Storm