Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
222771 4.3 警告 youjoomla - YJ Whois コンポーネントの modules/mod_yj_whois.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4233 2012-12-20 19:28 2009-12-4 Show GitHub Exploit DB Packet Storm
222772 7.5 危険 ruven pillay - IIPImage Server の FastCGI プログラムにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-4230 2012-12-20 19:28 2009-12-8 Show GitHub Exploit DB Packet Storm
222773 4.3 警告 Xfig project - Xfig の u_bound.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2009-4228 2012-12-20 19:28 2009-12-8 Show GitHub Exploit DB Packet Storm
222774 6.8 警告 Xfig project - Xfig の f_readold.c におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-4227 2012-12-20 19:28 2009-12-8 Show GitHub Exploit DB Packet Storm
222775 7.1 危険 サン・マイクロシステムズ - Sun OpenSolaris のカーネルにおけるサービス運用妨害 (DoS) の脆弱性 CWE-362
競合状態 		CVE-2009-4226 2012-12-20 19:28 2009-12-3 Show GitHub Exploit DB Packet Storm
222776 7.5 危険 smartisoft - phpBazar における管理コントロールパネルへのアクセス権を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-4222 2012-12-20 19:28 2009-12-7 Show GitHub Exploit DB Packet Storm
222777 7.5 危険 smartisoft - phpBazar の classified.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4221 2012-12-20 19:28 2009-12-7 Show GitHub Exploit DB Packet Storm
222778 7.5 危険 raphael mazoyer - PointComma の includes/classes/pctemplate.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2009-4220 2012-12-20 19:28 2009-12-7 Show GitHub Exploit DB Packet Storm
222779 7.5 危険 ringsworld - Flashlight Free Edition の admin.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-4205 2012-12-20 19:28 2009-12-4 Show GitHub Exploit DB Packet Storm
222780 7.5 危険 ringsworld - Flashlight Free Edition の read.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4204 2012-12-20 19:28 2009-12-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 25, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
278951 - sun solaris
sunos 		Unspecified vulnerability in Sun Solaris 8, 9 and 10 allows remote attackers to cause a denial of service (panic) via crafted IPv6 packets, a different vulnerability than CVE-2006-5013. NVD-CWE-Other
CVE-2006-5073 2018-10-31 01:25 2006-09-29 Show GitHub Exploit DB Packet Storm
278952 - php php Race condition in the symlink function in PHP 5.1.6 and earlier allows local users to bypass the open_basedir restriction by using a combination of symlink, mkdir, and unlink functions to change the … CWE-362
Race Condition 		CVE-2006-5178 2018-10-31 01:25 2006-10-10 Show GitHub Exploit DB Packet Storm
278953 - netbsd
sun 		netbsd
solaris
sunos 		Race condition in the Xsession script, as used by X Display Manager (xdm) in NetBSD before 20060212, X.Org before 20060225, and Solaris 8 through 10 before 20061006, causes a user's Xsession errors f… NVD-CWE-Other
CVE-2006-5214 2018-10-31 01:25 2006-10-10 Show GitHub Exploit DB Packet Storm
278954 - mysqldumper mysqldumper Cross-site scripting (XSS) vulnerability in sql.php in MysqlDumper 1.21 b6 allows remote attackers to inject arbitrary web script or HTML via the db parameter. NVD-CWE-Other
CVE-2006-5264 2018-10-31 01:25 2006-10-13 Show GitHub Exploit DB Packet Storm
278955 - php php Buffer overflow in PHP before 5.2.0 allows remote attackers to execute arbitrary code via crafted UTF-8 inputs to the (1) htmlentities or (2) htmlspecialchars functions. NVD-CWE-Other
CVE-2006-5465 2018-10-31 01:25 2006-11-4 Show GitHub Exploit DB Packet Storm
278956 - php php Unspecified vulnerabilities in PHP, probably before 5.2.0, allow local users to bypass open_basedir restrictions and perform unspecified actions via unspecified vectors involving the (1) chdir and (2… NVD-CWE-noinfo
CVE-2006-5706 2018-10-31 01:25 2006-11-4 Show GitHub Exploit DB Packet Storm
278957 - linux linux_kernel The minix filesystem code in Linux kernel 2.6.x before 2.6.24, including 2.6.18, allows local users to cause a denial of service (hang) via a malformed minix file stream that triggers an infinite loo… CWE-189
Numeric Errors 		CVE-2006-6058 2018-10-31 01:25 2006-11-22 Show GitHub Exploit DB Packet Storm
278958 - sun solaris
sunos 		Race condition in the kernel in Sun Solaris 8 through 10 allows local users to cause a denial of service (panic) via unspecified vectors, possibly related to the exitlwps function and SIGKILL and /pr… CWE-362
Race Condition 		CVE-2006-6275 2018-10-31 01:25 2006-12-4 Show GitHub Exploit DB Packet Storm
278959 - sun solaris
sunos 		Directory traversal vulnerability in ld.so.1 in Sun Solaris 8, 9, and 10 allows local users to execute arbitrary code via a .. (dot dot) sequence in the LANG environment variable that points to a loc… NVD-CWE-Other
CVE-2006-6494 2018-10-31 01:25 2006-12-13 Show GitHub Exploit DB Packet Storm
278960 - sun solaris
sunos 		Stack-based buffer overflow in ld.so.1 in Sun Solaris 8, 9, and 10 allows local users to execute arbitrary code via large precision padding values in a format string specifier in the format parameter… NVD-CWE-Other
CVE-2006-6495 2018-10-31 01:25 2006-12-13 Show GitHub Exploit DB Packet Storm