Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
224041	7.5	危険	recly	-	Joomla! 用の Recly Interactive feederator コンポーネントにおける PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2008-5789	2012-12-20 19:10	2008-12-31	Show	GitHub Exploit DB Packet Storm

224042	7.5	危険	v3chat	-	V3 Chat - Profiles/Dating Script における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-5785	2012-12-20 19:10	2008-12-31	Show	GitHub Exploit DB Packet Storm

224043	7.5	危険	v3chat	-	V3 Chat - Profiles/Dating Script における認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2008-5784	2012-12-20 19:10	2008-12-31	Show	GitHub Exploit DB Packet Storm

224044	7.5	危険	v3chat	-	V3 Chat Live Support の admin/index.php における認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2008-5783	2012-12-20 19:10	2008-12-31	Show	GitHub Exploit DB Packet Storm

224045	7.5	危険	zeeways	-	ZeeMatri の bannerclick.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-5782	2012-12-20 19:10	2008-12-31	Show	GitHub Exploit DB Packet Storm

224046	7.5	危険	phpweather	-	PHP Weather の test.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-5771	2012-12-20 19:10	2008-12-30	Show	GitHub Exploit DB Packet Storm

224047	4.3	警告	phpweather	-	PHP Weather の config/make_config.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-5770	2012-12-20 19:10	2008-12-30	Show	GitHub Exploit DB Packet Storm

224048	7.5	危険	sirium	-	XOOPS 用の AM Events モジュールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-5768	2012-12-20 19:10	2008-12-30	Show	GitHub Exploit DB Packet Storm

224049	6.8	警告	phparanoid	-	PHParanoid におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2008-5758	2012-12-20 19:10	2008-12-30	Show	GitHub Exploit DB Packet Storm

224050	3.5	注意	Textpattern	-	Textpattern の textarea/index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-5757	2012-12-20 19:10	2008-12-30	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 23, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
278831	-	fatwire	fatwire_content_server	FatWire Content Server 5.5.0 allows remote attackers to bypass access restrictions and obtain administrative privileges via unspecified attack vectors in the authentication process.	NVD-CWE-Other	CVE-2006-3679	2018-10-19 01:48	2006-07-21	Show	GitHub Exploit DB Packet Storm

278832	-	photocycle	photocycle	Cross-site scripting (XSS) vulnerability in photocycle in Photocycle 1.0 allows remote attackers to inject arbitrary web script or HTML via the phpage parameter.	NVD-CWE-Other	CVE-2006-3680	2018-10-19 01:48	2006-07-21	Show	GitHub Exploit DB Packet Storm

278833	-	flipper_poll	flipper_poll	PHP remote file inclusion vulnerability in poll.php in Flipper Poll 1.1 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the root_path parameter.	NVD-CWE-Other	CVE-2006-3683	2018-10-19 01:48	2006-07-21	Show	GitHub Exploit DB Packet Storm

278834	-	softcomplex	php_event_calendar	PHP remote file inclusion vulnerability in calendar.php in SoftComplex PHP Event Calendar 1.4 allows remote attackers to execute arbitrary PHP code via a URL in the path_to_calendar parameter, which …	NVD-CWE-Other	CVE-2006-3684	2018-10-19 01:48	2006-07-21	Show	GitHub Exploit DB Packet Storm

278835	-	francisco_charrua	photo-gallery	SQL injection vulnerability in Room.php in Francisco Charrua Photo-Gallery 1.0 allows remote attackers to execute arbitrary SQL commands via the id parameter.	CWE-89 SQL Injection	CVE-2006-3688	2018-10-19 01:48	2006-07-21	Show	GitHub Exploit DB Packet Storm

278836	-	minibb	forum	Multiple PHP remote file inclusion vulnerabilities in MiniBB Forum 1.5a and earlier allow remote attackers to execute arbitrary PHP code via a URL in the absolute_path parameter to (1) components/com…	NVD-CWE-Other	CVE-2006-3690	2018-10-19 01:48	2006-07-21	Show	GitHub Exploit DB Packet Storm

278837	-	vbzoom	vbzoom	Multiple SQL injection vulnerabilities in VBZooM 1.11 and earlier allow remote attackers to execute arbitrary SQL commands via the UserID parameter to (1) ignore-pm.php, (2) sendmail.php, (3) reply.p…	NVD-CWE-Other	CVE-2006-3691	2018-10-19 01:48	2006-07-21	Show	GitHub Exploit DB Packet Storm

278838	-	rocks_clusters	rocks_clusters	Rocks Clusters 4.1 and earlier allows local users to gain privileges via commands enclosed with escaped backticks (\`) in an argument to the (1) mount-loop (mount-loop.c) or (2) umount-loop (umount-l…	NVD-CWE-Other	CVE-2006-3693	2018-10-19 01:48	2006-07-21	Show	GitHub Exploit DB Packet Storm

278839	-	agnitum lavasoft novell	outpost_firewall lavasoft_personal_firewall client_firewall	Agnitum Outpost Firewall Pro 3.51.759.6511 (462), as used in (1) Lavasoft Personal Firewall 1.0.543.5722 (433) and (2) Novell BorderManager Novell Client Firewall 2.0, does not properly restrict user…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2006-3697	2018-10-19 01:48	2006-07-21	Show	GitHub Exploit DB Packet Storm

278840	-	oracle	database_server	Unspecified vulnerability in the Core RDBMS component in Oracle Database 9.0.1.5 and 9.2.0.6 has unknown impact and attack vectors, aka Oracle Vuln# DB02.	NVD-CWE-noinfo	CVE-2006-3699	2018-10-19 01:48	2006-07-21	Show	GitHub Exploit DB Packet Storm