Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
224091 7.5 危険 scssboard - sCssBoard の index.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-5577 2012-12-20 18:52 2008-12-15 Show GitHub Exploit DB Packet Storm
224092 7.5 危険 scssboard - sCssBoard の admin/forums.php における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2008-5576 2012-12-20 18:52 2008-12-15 Show GitHub Exploit DB Packet Storm
224093 7.5 危険 proclanmanager - Pro Clan Manager におけるセッションをハイジャックされる脆弱性 CWE-287
不適切な認証 		CVE-2008-5575 2012-12-20 18:52 2008-12-15 Show GitHub Exploit DB Packet Storm
224094 7.5 危険 unscripts - Webmaster Marketplace の member.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5574 2012-12-20 18:52 2008-12-15 Show GitHub Exploit DB Packet Storm
224095 4.3 警告 phpeppershop - PHPepperShop におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-5569 2012-12-20 18:52 2008-12-15 Show GitHub Exploit DB Packet Storm
224096 4.3 警告 php multiple newsletters - Triangle Solutions PHP Multiple Newsletters の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-5566 2012-12-20 18:52 2008-12-15 Show GitHub Exploit DB Packet Storm
224097 5 警告 サン・マイクロシステムズ - Sun Java System Portal Server の Sun Java Web Console コンポーネントにおけるローカルファイルをアクセスされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-5549 2012-12-20 18:52 2008-12-5 Show GitHub Exploit DB Packet Storm
224098 9.3 危険 VirusBuster - VirusBuster における HTML 文書内のマルウェアの検出を回避される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-5548 2012-12-20 18:52 2008-12-12 Show GitHub Exploit DB Packet Storm
224099 9.3 危険 VirusBlokAda Ltd. - VirusBlokAda VBA32 における HTML 文書内のマルウェアの検出を回避される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-5546 2012-12-20 18:52 2008-12-12 Show GitHub Exploit DB Packet Storm
224100 9.3 危険 トレンドマイクロ - Trend Micro AntiVirus の Trend Micro VSAPI における HTML 文書内のマルウェアの検出を回避される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-5545 2012-12-20 18:52 2008-12-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 25, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
279161 - estara softphone eStara SIP softphone allows remote attackers to cause a denial of service (crash) via a SIP OPTIONS request with a negative Expires field. NVD-CWE-Other
CVE-2006-0737 2018-10-20 00:46 2006-02-17 Show GitHub Exploit DB Packet Storm
279162 - estara softphone Multiple format string vulnerabilities in eStara SIP softphone allow remote attackers to cause a denial of service (hang) via SIP INVITE requests with format string specifiers in the SDP session desc… NVD-CWE-Other
CVE-2006-0738 2018-10-20 00:46 2006-02-17 Show GitHub Exploit DB Packet Storm
279163 - estara softphone eStara SIP softphone allows remote attackers to cause a denial of service (crash) via an INVITE request with a Content-Length field that has more than 9 digits. NVD-CWE-Other
CVE-2006-0739 2018-10-20 00:46 2006-02-17 Show GitHub Exploit DB Packet Storm
279164 - x.org
mandrakesoft
redhat
sun
suse 		x11r6
x11r7
mandrake_linux
fedora_core
solaris
suse_linux 		X.Org server (xorg-server) 1.0.0 and later, X11R6.9.0, and X11R7.0 inadvertently treats the address of the geteuid function as if it is the return value of a call to geteuid, which allows local users… NVD-CWE-Other
CVE-2006-0745 2018-10-20 00:46 2006-03-21 Show GitHub Exploit DB Packet Storm
279165 - xpdf xpdf Certain patches for kpdf do not include all relevant patches from xpdf that were associated with CVE-2005-3627, which allows context-dependent attackers to exploit vulnerabilities that were present i… NVD-CWE-Other
CVE-2006-0746 2018-10-20 00:46 2006-03-9 Show GitHub Exploit DB Packet Storm
279166 - freetype freetype Integer underflow in Freetype before 2.2 allows remote attackers to cause a denial of service (crash) via a font file with an odd number of blue values, which causes the underflow when decrementing b… CWE-189
Numeric Errors 		CVE-2006-0747 2018-10-20 00:46 2006-05-23 Show GitHub Exploit DB Packet Storm
279167 - mozilla firefox
seamonkey
thunderbird 		Mozilla Firefox and Thunderbird 1.x before 1.5.0.2 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0.1 allows remote attackers to execute arbitrary code via "an invalid an… CWE-399
 Resource Management Errors 		CVE-2006-0748 2018-10-20 00:46 2006-04-14 Show GitHub Exploit DB Packet Storm
279168 - mozilla firefox
seamonkey
thunderbird 		This vulnerability also affects Mozilla Suite before 1.7.13 CWE-399
 Resource Management Errors 		CVE-2006-0748 2018-10-20 00:46 2006-04-14 Show GitHub Exploit DB Packet Storm
279169 - mozilla firefox
mozilla_suite
seamonkey
thunderbird 		nsHTMLContentSink.cpp in Mozilla Firefox and Thunderbird 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0 allows remote attackers to cause a denial of serv… CWE-399
 Resource Management Errors 		CVE-2006-0749 2018-10-20 00:46 2006-04-14 Show GitHub Exploit DB Packet Storm
279170 - supersmashbrothers army_system SQL injection vulnerability in army.php in supersmashbrothers (SSB) Army System 2.1.0 for Invision Power Board (IPB) allows remote attackers to execute arbitrary SQL commands via the userstat paramet… CWE-89
SQL Injection 		CVE-2006-0750 2018-10-20 00:46 2006-02-18 Show GitHub Exploit DB Packet Storm