Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
224091 7.5 危険 scssboard - sCssBoard の index.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-5577 2012-12-20 18:52 2008-12-15 Show GitHub Exploit DB Packet Storm
224092 7.5 危険 scssboard - sCssBoard の admin/forums.php における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2008-5576 2012-12-20 18:52 2008-12-15 Show GitHub Exploit DB Packet Storm
224093 7.5 危険 proclanmanager - Pro Clan Manager におけるセッションをハイジャックされる脆弱性 CWE-287
不適切な認証 		CVE-2008-5575 2012-12-20 18:52 2008-12-15 Show GitHub Exploit DB Packet Storm
224094 7.5 危険 unscripts - Webmaster Marketplace の member.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5574 2012-12-20 18:52 2008-12-15 Show GitHub Exploit DB Packet Storm
224095 4.3 警告 phpeppershop - PHPepperShop におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-5569 2012-12-20 18:52 2008-12-15 Show GitHub Exploit DB Packet Storm
224096 4.3 警告 php multiple newsletters - Triangle Solutions PHP Multiple Newsletters の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-5566 2012-12-20 18:52 2008-12-15 Show GitHub Exploit DB Packet Storm
224097 5 警告 サン・マイクロシステムズ - Sun Java System Portal Server の Sun Java Web Console コンポーネントにおけるローカルファイルをアクセスされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-5549 2012-12-20 18:52 2008-12-5 Show GitHub Exploit DB Packet Storm
224098 9.3 危険 VirusBuster - VirusBuster における HTML 文書内のマルウェアの検出を回避される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-5548 2012-12-20 18:52 2008-12-12 Show GitHub Exploit DB Packet Storm
224099 9.3 危険 VirusBlokAda Ltd. - VirusBlokAda VBA32 における HTML 文書内のマルウェアの検出を回避される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-5546 2012-12-20 18:52 2008-12-12 Show GitHub Exploit DB Packet Storm
224100 9.3 危険 トレンドマイクロ - Trend Micro AntiVirus の Trend Micro VSAPI における HTML 文書内のマルウェアの検出を回避される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-5545 2012-12-20 18:52 2008-12-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 26, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
279251 - my_little_homepage my_little_weblog Cross-site scripting (XSS) vulnerability in the bbcode function in weblog.php in my little homepage my little weblog, as last modified in April 2004, allows remote attackers to inject arbitrary Javas… NVD-CWE-Other
CVE-2006-0473 2018-10-20 00:45 2006-01-31 Show GitHub Exploit DB Packet Storm
279252 - shareaza shareaza Multiple integer overflows in Shareaza 2.2.1.0 allow remote attackers to execute arbitrary code via (1) a large packet length field, which causes an overflow in the ReadBuffer function in (a) BTPacke… NVD-CWE-Other
CVE-2006-0474 2018-10-20 00:45 2006-01-31 Show GitHub Exploit DB Packet Storm
279253 - nullsoft winamp Buffer overflow in Nullsoft Winamp 5.12 allows remote attackers to execute arbitrary code via a playlist (pls) file with a long file name (File1 field). NVD-CWE-Other
CVE-2006-0476 2018-10-20 00:45 2006-01-31 Show GitHub Exploit DB Packet Storm
279254 - spaiz spaiz-nuke_cms Cross-site scripting (XSS) vulnerability in the Articles module in sPaiz-Nuke allows remote attackers to inject arbitrary web script or HTML via the query parameter in the search file. NVD-CWE-Other
CVE-2006-0480 2018-10-20 00:45 2006-01-31 Show GitHub Exploit DB Packet Storm
279255 - elido face_control Directory traversal vulnerability in Vis.pl, as part of the FACE CONTROL product, allows remote attackers to read arbitrary files via a .. (dot dot) in any parameter that opens a file, such as (1) s … NVD-CWE-Other
CVE-2006-0484 2018-10-20 00:45 2006-02-1 Show GitHub Exploit DB Packet Storm
279256 - tumbleweed mailgate_email_firewall Multiple unspecified vulnerabilities in Tumbleweed MailGate Email Firewall (EMF) 6.x allow remote attackers to (1) trigger temporarily incorrect processing of an e-mail message under "extremely heavy… NVD-CWE-noinfo
CVE-2006-0487 2018-10-20 00:45 2006-02-1 Show GitHub Exploit DB Packet Storm
279257 - microsoft windows_2000
windows_2003_server
windows_xp 		The VDM (Virtual DOS Machine) emulation environment for MS-DOS applications in Windows 2000, Windows XP SP2, and Windows Server 2003 allows local users to read the first megabyte of memory and possib… NVD-CWE-Other
CVE-2006-0488 2018-10-20 00:45 2006-02-1 Show GitHub Exploit DB Packet Storm
279258 - subzane szusermgnt SQL injection vulnerability in SZUserMgnt.class.php in SZUserMgnt 1.4 allows remote attackers to execute arbitrary SQL commands via the username parameter. NVD-CWE-Other
CVE-2006-0491 2018-10-20 00:45 2006-02-1 Show GitHub Exploit DB Packet Storm
279259 - vincent_hor calendarix Multiple SQL injection vulnerabilities in Calendarix allow remote attackers to execute arbitrary SQL commands via (1) the catview parameter in cal_functions.inc.php and (2) the login parameter in cal… NVD-CWE-Other
CVE-2006-0492 2018-10-20 00:45 2006-02-1 Show GitHub Exploit DB Packet Storm
279260 - thomas_rybak mg2 Cross-site scripting (XSS) vulnerability in MG2 (formerly known as Minigal) 0.5.1 allows remote attackers to inject arbitrary web script or HTML via the Name field in a comment associated with a pict… NVD-CWE-Other
CVE-2006-0493 2018-10-20 00:45 2006-02-1 Show GitHub Exploit DB Packet Storm