Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 5, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
223081 6.5 警告 レッドハット - Red Hat Enterprise MRG Grid の cumin におけるロールの制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-4404 2013-12-25 14:03 2013-12-17 Show GitHub Exploit DB Packet Storm
223082 5 警告 Idleman - Leed における認証を回避される脆弱性 CWE-20
不適切な入力確認 		CVE-2013-2629 2013-12-25 14:03 2013-12-18 Show GitHub Exploit DB Packet Storm
223083 2.1 注意 VMware - VMware ESX および ESXi において任意のファイルにアクセス可能な問題 CWE-noinfo
情報不足 		CVE-2013-5973 2013-12-25 13:56 2013-12-24 Show GitHub Exploit DB Packet Storm
223084 5 警告 アップル - Apple Motion の OZDocument::parseElement 関数における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2013-6114 2013-12-25 13:53 2013-10-7 Show GitHub Exploit DB Packet Storm
223085 4.9 警告 Novell - Windows 上で稼働する Novell Client の VBA32 AntiRootKit コンポーネントにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2013-3705 2013-12-25 13:43 2013-12-10 Show GitHub Exploit DB Packet Storm
223086 4 警告 シスコシステムズ - Cisco Unified Communications Manager のディザスタリカバリシステムコンポーネントにおける重要なデバイス情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2013-6978 2013-12-25 13:41 2013-12-18 Show GitHub Exploit DB Packet Storm
223087 - - ヒューレット・パッカード - ** 削除 ** HP Autonomy Ultraseek におけるクロスサイトスクリプティングの脆弱性 - CVE-2013-6196 2013-12-25 13:40 2013-12-19 Show GitHub Exploit DB Packet Storm
223088 4.9 警告 IBM - IBM Sterling B2B Integrator および Sterling File Gateway におけるアクセス制限を回避される脆弱性 CWE-20
不適切な入力確認 		CVE-2013-5407 2013-12-25 12:34 2013-12-4 Show GitHub Exploit DB Packet Storm
223089 5 警告 IBM - IBM WebSphere Portal における重要なコンポーネント情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-6723 2013-12-25 12:31 2013-12-20 Show GitHub Exploit DB Packet Storm
223090 4.3 警告 IBM - IBM WebSphere Portal の Web Content Manager UI におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-6328 2013-12-25 12:30 2013-12-20 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
346101 - pyblosxom pyblosxom Cross-site scripting (XSS) vulnerability in the Contributed Packages for PyBlosxom 1.2.2 and earlier allows remote attackers to inject arbitrary web script or HTML via the Comments plugin in the (1) … NVD-CWE-Other
CVE-2006-2880 2017-07-20 10:31 2006-06-7 Show GitHub Exploit DB Packet Storm
346102 - pyblosxom pyblosxom This vulnerability is present only in the Contributed Packages of this product. NVD-CWE-Other
CVE-2006-2880 2017-07-20 10:31 2006-06-7 Show GitHub Exploit DB Packet Storm
346103 - knowledgetree knowledgetree Multiple cross-site scripting (XSS) vulnerabilities in KnowledgeTree Open Source 3.0.3 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) fDocumentId parameter in v… NVD-CWE-Other
CVE-2006-2885 2017-07-20 10:31 2006-06-7 Show GitHub Exploit DB Packet Storm
346104 - jam_warehouse knowledgetree_open_source view.php in KnowledgeTree Open Source 3.0.3 and earlier allows remote attackers to obtain the full installation path via a crafted fDocumentId parameter, which displays the path in the resulting erro… NVD-CWE-Other
CVE-2006-2886 2017-07-20 10:31 2006-06-7 Show GitHub Exploit DB Packet Storm
346105 - mediawiki mediawiki Cross-site scripting (XSS) vulnerability in MediaWiki 1.6.0 up to versions before 1.6.7 allows remote attackers to inject arbitrary HTML and web script via the edit form. NVD-CWE-Other
CVE-2006-2895 2017-07-20 10:31 2006-06-7 Show GitHub Exploit DB Packet Storm
346106 - funkboard funkboard Cross-site scripting (XSS) vulnerability in FunkBoard 0.71 allows remote attackers to inject arbitrary HTML or web script via unspecified vectors. NVD-CWE-Other
CVE-2006-2897 2017-07-20 10:31 2006-06-7 Show GitHub Exploit DB Packet Storm
346107 - cowon_america jetaudio Buffer overflow in jetAudio 6.2.6.8330 (Basic), and possibly other versions, allows user-assisted attackers to execute arbitrary code via an audio file (such as WMA) with long ID Tag values including… NVD-CWE-Other
CVE-2006-2910 2017-07-20 10:31 2006-07-6 Show GitHub Exploit DB Packet Storm
346108 - out_of_the_trees_web_design selectapix Cross-site scripting (XSS) vulnerability in SelectaPix 1.31 allows remote attackers to inject arbitrary web script or HTML via the albumID parameter to (1) popup.php and (2) view_album.php. NVD-CWE-Other
CVE-2006-2913 2017-07-20 10:31 2006-06-9 Show GitHub Exploit DB Packet Storm
346109 - cmpro_team clan_manager_pro PHP remote file inclusion vulnerability in cmpro_header.inc.php in Clan Manager Pro (CMPRO) 1.1 and earlier, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code vi… NVD-CWE-Other
CVE-2006-2921 2017-07-20 10:31 2006-06-9 Show GitHub Exploit DB Packet Storm
346110 - ingate ingate_firewall
ingate_siparator 		Ingate Firewall in the SIP module before 4.4.1 and SIParator before 4.4.1, when TLS is enabled or when SSL/TLS is enabled in the web server, allows remote attackers to cause a denial of service (cras… NVD-CWE-Other
CVE-2006-2924 2017-07-20 10:31 2006-06-9 Show GitHub Exploit DB Packet Storm