Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
224331 5 警告 the spanner
WordPress.org		 - WordPress の SpamBam プラグインにおける制限を回避される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-4616 2012-12-20 18:52 2008-10-20 Show GitHub Exploit DB Packet Storm
224332 10 危険 portalapp - PortalApp の i_utils.asp における脆弱性 CWE-noinfo
情報不足 		CVE-2008-4615 2012-12-20 18:52 2008-10-20 Show GitHub Exploit DB Packet Storm
224333 7.5 危険 portalapp - PortalApp におけるトピックなどを作成および削除される脆弱性 CWE-287
不適切な認証 		CVE-2008-4614 2012-12-20 18:52 2008-10-20 Show GitHub Exploit DB Packet Storm
224334 7.5 危険 portalapp - PortalApp の forums.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4613 2012-12-20 18:52 2008-10-20 Show GitHub Exploit DB Packet Storm
224335 4.3 警告 portalapp - PortalApp におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-4612 2012-12-20 18:52 2008-10-20 Show GitHub Exploit DB Packet Storm
224336 6.5 警告 qualityunit - Post Affiliate Pro の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-4602 2012-12-20 18:52 2008-10-17 Show GitHub Exploit DB Packet Storm
224337 7.5 危険 steve dawson - PokerMax Poker League Tournament Script の configure.php における認証を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-4600 2012-12-20 18:52 2008-10-17 Show GitHub Exploit DB Packet Storm
224338 10 危険 slaytanic scripts - Slaytanic Scripts Content Plus における脆弱性 CWE-noinfo
情報不足 		CVE-2008-4595 2012-12-20 18:52 2008-10-17 Show GitHub Exploit DB Packet Storm
224339 10 危険 sportspanel - Sports Clubs Web Panel の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-4592 2012-12-20 18:52 2008-10-16 Show GitHub Exploit DB Packet Storm
224340 4.3 警告 phpwebgallery - PhpWebGallery の admin/include/isadmin.inc.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-4591 2012-12-20 18:52 2008-10-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 25, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
278951 - sun solaris
sunos 		Unspecified vulnerability in Sun Solaris 8, 9 and 10 allows remote attackers to cause a denial of service (panic) via crafted IPv6 packets, a different vulnerability than CVE-2006-5013. NVD-CWE-Other
CVE-2006-5073 2018-10-31 01:25 2006-09-29 Show GitHub Exploit DB Packet Storm
278952 - php php Race condition in the symlink function in PHP 5.1.6 and earlier allows local users to bypass the open_basedir restriction by using a combination of symlink, mkdir, and unlink functions to change the … CWE-362
Race Condition 		CVE-2006-5178 2018-10-31 01:25 2006-10-10 Show GitHub Exploit DB Packet Storm
278953 - netbsd
sun 		netbsd
solaris
sunos 		Race condition in the Xsession script, as used by X Display Manager (xdm) in NetBSD before 20060212, X.Org before 20060225, and Solaris 8 through 10 before 20061006, causes a user's Xsession errors f… NVD-CWE-Other
CVE-2006-5214 2018-10-31 01:25 2006-10-10 Show GitHub Exploit DB Packet Storm
278954 - mysqldumper mysqldumper Cross-site scripting (XSS) vulnerability in sql.php in MysqlDumper 1.21 b6 allows remote attackers to inject arbitrary web script or HTML via the db parameter. NVD-CWE-Other
CVE-2006-5264 2018-10-31 01:25 2006-10-13 Show GitHub Exploit DB Packet Storm
278955 - php php Buffer overflow in PHP before 5.2.0 allows remote attackers to execute arbitrary code via crafted UTF-8 inputs to the (1) htmlentities or (2) htmlspecialchars functions. NVD-CWE-Other
CVE-2006-5465 2018-10-31 01:25 2006-11-4 Show GitHub Exploit DB Packet Storm
278956 - php php Unspecified vulnerabilities in PHP, probably before 5.2.0, allow local users to bypass open_basedir restrictions and perform unspecified actions via unspecified vectors involving the (1) chdir and (2… NVD-CWE-noinfo
CVE-2006-5706 2018-10-31 01:25 2006-11-4 Show GitHub Exploit DB Packet Storm
278957 - linux linux_kernel The minix filesystem code in Linux kernel 2.6.x before 2.6.24, including 2.6.18, allows local users to cause a denial of service (hang) via a malformed minix file stream that triggers an infinite loo… CWE-189
Numeric Errors 		CVE-2006-6058 2018-10-31 01:25 2006-11-22 Show GitHub Exploit DB Packet Storm
278958 - sun solaris
sunos 		Race condition in the kernel in Sun Solaris 8 through 10 allows local users to cause a denial of service (panic) via unspecified vectors, possibly related to the exitlwps function and SIGKILL and /pr… CWE-362
Race Condition 		CVE-2006-6275 2018-10-31 01:25 2006-12-4 Show GitHub Exploit DB Packet Storm
278959 - sun solaris
sunos 		Directory traversal vulnerability in ld.so.1 in Sun Solaris 8, 9, and 10 allows local users to execute arbitrary code via a .. (dot dot) sequence in the LANG environment variable that points to a loc… NVD-CWE-Other
CVE-2006-6494 2018-10-31 01:25 2006-12-13 Show GitHub Exploit DB Packet Storm
278960 - sun solaris
sunos 		Stack-based buffer overflow in ld.so.1 in Sun Solaris 8, 9, and 10 allows local users to execute arbitrary code via large precision padding values in a format string specifier in the format parameter… NVD-CWE-Other
CVE-2006-6495 2018-10-31 01:25 2006-12-13 Show GitHub Exploit DB Packet Storm