Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
225221 4.9 警告 agtc websolutions - PHP-AGTC Membership System におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-2687 2014-03-11 17:43 2006-05-31 Show GitHub Exploit DB Packet Storm
225222 2.1 注意 The PHP Group - PHP における制限を回避される脆弱性 - CVE-2006-2660 2014-03-11 17:43 2006-06-13 Show GitHub Exploit DB Packet Storm
225223 7.5 危険 Alt-N - Alt-N MDaemon におけるバッファオーバーフローの脆弱性 - CVE-2006-2646 2014-03-11 17:43 2006-05-30 Show GitHub Exploit DB Packet Storm
225224 3.5 注意 andrew godwin - Andrew Godwin ByteHoard におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-2632 2014-03-11 17:43 2006-05-30 Show GitHub Exploit DB Packet Storm
225225 4.3 警告 AlstraSoft - AlstraSoft Web Host Directory におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2006-2618 2014-03-11 17:43 2006-05-26 Show GitHub Exploit DB Packet Storm
225226 4.3 警告 chatty - Chatty におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-2606 2014-03-11 17:43 2006-05-25 Show GitHub Exploit DB Packet Storm
225227 5 警告 even balance - PunkBuster におけるバッファオーバーフローの脆弱性 - CVE-2006-2587 2014-03-11 17:43 2006-05-25 Show GitHub Exploit DB Packet Storm
225228 6.4 警告 genecys - Genecys におけるバッファオーバーフローの脆弱性 - CVE-2006-2554 2014-03-11 17:43 2006-05-24 Show GitHub Exploit DB Packet Storm
225229 5.8 警告 greg donald - Destiney Rated Images Script におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-2533 2014-03-11 17:43 2006-05-22 Show GitHub Exploit DB Packet Storm
225230 7.5 危険 Coppermine Photo Gallery - Coppermine Photo Gallery における任意のファイルをアップロードされる脆弱性 - CVE-2006-2514 2014-03-11 17:43 2006-05-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
277991 9.8 CRITICAL
Network
cpanel cpanel cPanel before 11.54.0.4 allows unauthenticated arbitrary code execution via cpsrvd (SEC-91). CWE-20
 Improper Input Validation 
CVE-2016-10855 2024-11-21 11:44 2019-08-2 Show GitHub Exploit DB Packet Storm
277992 5.4 MEDIUM
Network
cpanel cpanel cPanel before 11.54.0.4 allows self XSS in the X3 Entropy Banner interface (SEC-87). CWE-79
Cross-site Scripting
CVE-2016-10854 2024-11-21 11:44 2019-08-2 Show GitHub Exploit DB Packet Storm
277993 5.4 MEDIUM
Network
cpanel cpanel cPanel before 11.54.0.4 allows stored XSS in the WHM Feature Manager interface (SEC-86). CWE-79
Cross-site Scripting
CVE-2016-10853 2024-11-21 11:44 2019-08-2 Show GitHub Exploit DB Packet Storm
277994 6.5 MEDIUM
Network
cpanel cpanel cPanel before 11.54.0.4 lacks ACL enforcement in the AppConfig subsystem (SEC-85). CWE-284
Improper Access Control
CVE-2016-10852 2024-11-21 11:44 2019-08-2 Show GitHub Exploit DB Packet Storm
277995 5.4 MEDIUM
Network
cpanel cpanel cPanel before 11.54.0.4 allows self XSS in the WHM PHP Configuration editor interface (SEC-84). CWE-79
Cross-site Scripting
CVE-2016-10851 2024-11-21 11:44 2019-08-2 Show GitHub Exploit DB Packet Storm
277996 8.8 HIGH
Network
cpanel cpanel cPanel before 11.54.0.4 allows arbitrary code execution via scripts/synccpaddonswithsqlhost (SEC-83). CWE-20
 Improper Input Validation 
CVE-2016-10850 2024-11-21 11:44 2019-08-2 Show GitHub Exploit DB Packet Storm
277997 8.8 HIGH
Network
edx edx-platform edx-platform before 2016-06-06 allows CSRF. CWE-352
 Origin Validation Error
CVE-2016-10766 2024-11-21 11:44 2019-07-30 Show GitHub Exploit DB Packet Storm
277998 5.3 MEDIUM
Network
edx edx-platform edx-platform before 2016-06-10 allows account activation with a spoofed e-mail address. CWE-20
 Improper Input Validation 
CVE-2016-10765 2024-11-21 11:44 2019-07-30 Show GitHub Exploit DB Packet Storm
277999 9.8 CRITICAL
Network
linux linux_kernel In the Linux kernel before 4.9.6, there is an off by one in the drivers/mtd/spi-nor/cadence-quadspi.c cqspi_setup_flash() function. There are CQSPI_MAX_CHIPSELECT elements in the ->f_pdata array so t… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2016-10764 2024-11-21 11:44 2019-07-28 Show GitHub Exploit DB Packet Storm
278000 4.8 MEDIUM
Network
automattic camptix_event_ticketing The CampTix Event Ticketing plugin before 1.5 for WordPress allows XSS in the admin section via a ticket title or body. CWE-79
Cross-site Scripting
CVE-2016-10763 2024-11-21 11:44 2019-07-18 Show GitHub Exploit DB Packet Storm