Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
220341 4.3 警告 DDSN Interactive - DDSN Interactive cm3 Acora CMS の Admin/login/default.asp におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-4722 2014-04-28 18:14 2013-08-26 Show GitHub Exploit DB Packet Storm
220342 4 警告 東芝テック - 東芝テック製 e-Studio シリーズにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2014-1990 2014-04-28 18:07 2014-04-18 Show GitHub Exploit DB Packet Storm
220343 4.3 警告 LYSESOFT - AndExplorer におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2014-1974 2014-04-28 18:05 2014-04-18 Show GitHub Exploit DB Packet Storm
220344 7.1 危険 サイボウズ - サイボウズ リモートサービスマネージャーにおけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2014-1983 2014-04-28 17:59 2014-04-18 Show GitHub Exploit DB Packet Storm
220345 5.8 警告 サイボウズ - サイボウズ リモートサービスマネージャーにおけるセッション固定の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-1984 2014-04-28 17:58 2014-04-18 Show GitHub Exploit DB Packet Storm
220346 4.3 警告 Ushahidi - Ushahidi Platform におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-2025 2014-04-28 17:51 2013-05-1 Show GitHub Exploit DB Packet Storm
220347 3.5 注意 Episerver - Ektron CMS の content.aspx におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-2729 2014-04-28 17:42 2014-04-16 Show GitHub Exploit DB Packet Storm
220348 9.3 危険 Power Software - Power Software の WinArchiver におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-5660 2014-04-28 17:13 2013-04-29 Show GitHub Exploit DB Packet Storm
220349 4.3 警告 JoomlaBoat.com - Joomla! 用 YouTube Gallery コンポーネントにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-5956 2014-04-28 16:17 2013-09-27 Show GitHub Exploit DB Packet Storm
220350 6.8 警告 OpenX - OpenX におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2013-5954 2014-04-28 16:04 2013-09-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
345591 - coppermine coppermine_photo_gallery Directory traversal vulnerability in index.php in Coppermine 1.4.4 allows remote attackers to read arbitrary files via a .//./ (modified dot dot slash) in the file parameter, which causes a regular e… NVD-CWE-Other
CVE-2006-1909 2017-07-20 10:31 2006-04-21 Show GitHub Exploit DB Packet Storm
345592 - mybulletinboard mybulletinboard Cross-site scripting (XSS) vulnerability in MyBB (MyBulletinBoard) 1.1 allows remote attackers to inject arbitrary web script or HTML via the attachment content disposition in an HTML attachment. NVD-CWE-Other
CVE-2006-1911 2017-07-20 10:31 2006-04-21 Show GitHub Exploit DB Packet Storm
345593 - mybulletinboard mybulletinboard This vulnerability is addressed in the following product release: MyBB, MyBB, 1.1.1 NVD-CWE-Other
CVE-2006-1911 2017-07-20 10:31 2006-04-21 Show GitHub Exploit DB Packet Storm
345594 - jax_scripts jax_guestbook Cross-site scripting (XSS) vulnerability in jax_guestbook.php in Jax Guestbook 3.1, 3.31, and 3.50 allows remote attackers to inject arbitrary web script or HTML via the page parameter. NVD-CWE-Other
CVE-2006-1913 2017-07-20 10:31 2006-04-21 Show GitHub Exploit DB Packet Storm
345595 - dbbs dbbs DbbS 2.0-alpha and earlier allows remote attackers to obtain sensitive information via an invalid (1) fcategoryid parameter to topics.php or (2) unavariabile, (3) GLOBALS, or (4) _SERVER[] parameters… NVD-CWE-Other
CVE-2006-1914 2017-07-20 10:31 2006-04-21 Show GitHub Exploit DB Packet Storm
345596 - dbbs dbbs Multiple cross-site scripting (XSS) vulnerabilities in profile.php in DbbS 2.0-alpha and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) ulocation or (2) uhobbies pa… NVD-CWE-Other
CVE-2006-1916 2017-07-20 10:31 2006-04-21 Show GitHub Exploit DB Packet Storm
345597 - pmtool pmtool SQL injection vulnerability in index.php in PMTool 1.2.2 allows remote attackers to execute arbitrary SQL commands via the order parameter in the include files (1) user.inc.php, (2) customer.inc.php,… NVD-CWE-Other
CVE-2006-1920 2017-07-20 10:31 2006-04-21 Show GitHub Exploit DB Packet Storm
345598 - linpha linpha Multiple cross-site scripting (XSS) vulnerabilities in LinPHA before 1.1.1 allow remote attackers to inject arbitrary web script or HTML via (1) RSS/RSS.php and (2) possibly other vectors. NVD-CWE-Other
CVE-2006-1923 2017-07-20 10:31 2006-04-21 Show GitHub Exploit DB Packet Storm
345599 - linpha linpha SQL injection vulnerability in functions/db_api.php in LinPHA 1.1.1 allows remote attackers to execute arbitrary SQL commands via unknown vectors. NVD-CWE-Other
CVE-2006-1924 2017-07-20 10:31 2006-04-21 Show GitHub Exploit DB Packet Storm
345600 - cisco ios_xr Cisco IOS XR, when configured for Multi Protocol Label Switching (MPLS) and running on Cisco CRS-1 or Cisco 12000 series routers, allows remote attackers to cause a denial of service (Line card crash… NVD-CWE-Other
CVE-2006-1927 2017-07-20 10:31 2006-04-21 Show GitHub Exploit DB Packet Storm