Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
222761 4.3 警告 YABSoft - YABSoft AIH Script の search.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4266 2012-12-20 19:28 2009-12-10 Show GitHub Exploit DB Packet Storm
222762 9.3 危険 pointdev - Ideal Administration 2009 におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-4265 2012-12-20 19:28 2009-12-10 Show GitHub Exploit DB Packet Storm
222763 7.5 危険 ptcpay - PTCPay GeN3 forum の main_forum.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4263 2012-12-20 19:28 2009-12-10 Show GitHub Exploit DB Packet Storm
222764 7.5 危険 Ganeti project - Ganeti の iallocator フレームワークにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-4261 2012-12-20 19:28 2009-12-21 Show GitHub Exploit DB Packet Storm
222765 7.5 危険 truesolution - AlefMentor の cource.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4256 2012-12-20 19:28 2009-12-9 Show GitHub Exploit DB Packet Storm
222766 4.3 警告 youjoomla - Joomla! 用の You!Hostit! におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4255 2012-12-20 19:28 2009-12-9 Show GitHub Exploit DB Packet Storm
222767 5 警告 phpee - PowerPhlogger における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2009-4254 2012-12-20 19:28 2009-12-9 Show GitHub Exploit DB Packet Storm
222768 4.3 警告 phpee - PowerPhlogger の dspStats.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4253 2012-12-20 19:28 2009-12-9 Show GitHub Exploit DB Packet Storm
222769 6.5 警告 TestLink Development Team - TestLink における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4238 2012-12-20 19:28 2009-12-10 Show GitHub Exploit DB Packet Storm
222770 3.5 注意 TestLink Development Team - TestLink におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4237 2012-12-20 19:28 2009-12-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 25, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
278951 - sun solaris
sunos 		Unspecified vulnerability in Sun Solaris 8, 9 and 10 allows remote attackers to cause a denial of service (panic) via crafted IPv6 packets, a different vulnerability than CVE-2006-5013. NVD-CWE-Other
CVE-2006-5073 2018-10-31 01:25 2006-09-29 Show GitHub Exploit DB Packet Storm
278952 - php php Race condition in the symlink function in PHP 5.1.6 and earlier allows local users to bypass the open_basedir restriction by using a combination of symlink, mkdir, and unlink functions to change the … CWE-362
Race Condition 		CVE-2006-5178 2018-10-31 01:25 2006-10-10 Show GitHub Exploit DB Packet Storm
278953 - netbsd
sun 		netbsd
solaris
sunos 		Race condition in the Xsession script, as used by X Display Manager (xdm) in NetBSD before 20060212, X.Org before 20060225, and Solaris 8 through 10 before 20061006, causes a user's Xsession errors f… NVD-CWE-Other
CVE-2006-5214 2018-10-31 01:25 2006-10-10 Show GitHub Exploit DB Packet Storm
278954 - mysqldumper mysqldumper Cross-site scripting (XSS) vulnerability in sql.php in MysqlDumper 1.21 b6 allows remote attackers to inject arbitrary web script or HTML via the db parameter. NVD-CWE-Other
CVE-2006-5264 2018-10-31 01:25 2006-10-13 Show GitHub Exploit DB Packet Storm
278955 - php php Buffer overflow in PHP before 5.2.0 allows remote attackers to execute arbitrary code via crafted UTF-8 inputs to the (1) htmlentities or (2) htmlspecialchars functions. NVD-CWE-Other
CVE-2006-5465 2018-10-31 01:25 2006-11-4 Show GitHub Exploit DB Packet Storm
278956 - php php Unspecified vulnerabilities in PHP, probably before 5.2.0, allow local users to bypass open_basedir restrictions and perform unspecified actions via unspecified vectors involving the (1) chdir and (2… NVD-CWE-noinfo
CVE-2006-5706 2018-10-31 01:25 2006-11-4 Show GitHub Exploit DB Packet Storm
278957 - linux linux_kernel The minix filesystem code in Linux kernel 2.6.x before 2.6.24, including 2.6.18, allows local users to cause a denial of service (hang) via a malformed minix file stream that triggers an infinite loo… CWE-189
Numeric Errors 		CVE-2006-6058 2018-10-31 01:25 2006-11-22 Show GitHub Exploit DB Packet Storm
278958 - sun solaris
sunos 		Race condition in the kernel in Sun Solaris 8 through 10 allows local users to cause a denial of service (panic) via unspecified vectors, possibly related to the exitlwps function and SIGKILL and /pr… CWE-362
Race Condition 		CVE-2006-6275 2018-10-31 01:25 2006-12-4 Show GitHub Exploit DB Packet Storm
278959 - sun solaris
sunos 		Directory traversal vulnerability in ld.so.1 in Sun Solaris 8, 9, and 10 allows local users to execute arbitrary code via a .. (dot dot) sequence in the LANG environment variable that points to a loc… NVD-CWE-Other
CVE-2006-6494 2018-10-31 01:25 2006-12-13 Show GitHub Exploit DB Packet Storm
278960 - sun solaris
sunos 		Stack-based buffer overflow in ld.so.1 in Sun Solaris 8, 9, and 10 allows local users to execute arbitrary code via large precision padding values in a format string specifier in the format parameter… NVD-CWE-Other
CVE-2006-6495 2018-10-31 01:25 2006-12-13 Show GitHub Exploit DB Packet Storm