Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 2:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
226481 4.3 警告 MyBB Group - MyBB の inc/class_parser.php 内の mycode_parse_video 関数におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2013-7288 2014-01-14 18:07 2013-12-3 Show GitHub Exploit DB Packet Storm
226482 4.3 警告 Andy's PHP Knowledgebase Project - Andy's PHP Knowledgebase の register.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2013-7289 2014-01-14 17:58 2013-12-24 Show GitHub Exploit DB Packet Storm
226483 7.5 危険 Cynthia Fridsma - Horizon Quick Content Management System の download.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2013-7139 2014-01-14 17:41 2013-12-25 Show GitHub Exploit DB Packet Storm
226484 5 警告 Cynthia Fridsma - Horizon Quick Content Management System の lib/functions/d-load.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2013-7138 2014-01-14 17:41 2013-12-25 Show GitHub Exploit DB Packet Storm
226485 4.3 警告 Seagate Technology LLC - Seagate BlackArmor NAS 220 デバイスのファームウェアにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2013-6923 2014-01-14 17:41 2014-01-6 Show GitHub Exploit DB Packet Storm
226486 9.3 危険 Libreswan Project - libreswan の Red Hat Enterprise Linux および Fedora パッケージ用 libreswan.spec ファイルにおける脆弱性 CWE-362
競合状態
CVE-2013-7283 2014-01-14 17:40 2013-12-11 Show GitHub Exploit DB Packet Storm
226487 5 警告 Ecava - Ecava IntegraXor の SCADA サーバにおける任意のプロジェクトバックアップファイルを読まれる脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2014-0752 2014-01-14 17:39 2014-01-8 Show GitHub Exploit DB Packet Storm
226488 7.8 危険 QNAP Systems - QNAP QTS にディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2013-7174 2014-01-14 17:18 2014-01-8 Show GitHub Exploit DB Packet Storm
226489 4.3 警告 シスコシステムズ - Cisco Secure Access Control System の Web インターフェースにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2013-6974 2014-01-14 16:57 2014-01-10 Show GitHub Exploit DB Packet Storm
226490 6.8 警告 シスコシステムズ - Cisco Unity Connection のサーバにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題
CVE-2014-0664 2014-01-14 16:26 2014-01-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
345451 - verosky_media instant_photo_gallery Cross-site scripting (XSS) vulnerability in Verosky Media Instant Photo Gallery allows remote attackers to inject arbitrary web script or HTML via the member parameter in a viewpro action in member.p… NVD-CWE-Other
CVE-2006-2052 2018-10-19 01:37 2006-04-27 Show GitHub Exploit DB Packet Storm
345452 - invision_power_services invision_power_board action_public/search.php in Invision Power Board (IPB) 2.1.x and 2.0.x before 20060425 allows remote attackers to execute arbitrary PHP code via a search with a crafted value of the lastdate paramete… NVD-CWE-Other
CVE-2006-2059 2018-10-19 01:37 2006-04-27 Show GitHub Exploit DB Packet Storm
345453 - invision_power_services invision_power_board Directory traversal vulnerability in action_admin/paysubscriptions.php in Invision Power Board (IPB) 2.1.x and 2.0.x before 20060425 allows remote authenticated administrators to include and execute … NVD-CWE-Other
CVE-2006-2060 2018-10-19 01:37 2006-04-27 Show GitHub Exploit DB Packet Storm
345454 - invision_power_services invision_power_board If you've downloaded IPB 2.1.5 since the time of this post, there is no need to update your installation as the main download has been updated. NVD-CWE-Other
CVE-2006-2060 2018-10-19 01:37 2006-04-27 Show GitHub Exploit DB Packet Storm
345455 - invision_power_services invision_board
invision_power_board
SQL injection vulnerability in lib/func_taskmanager.php in Invision Power Board (IPB) 2.1.x and 2.0.x before 20060425 allows remote attackers to execute arbitrary SQL commands via the ck parameter, w… NVD-CWE-Other
CVE-2006-2061 2018-10-19 01:37 2006-04-27 Show GitHub Exploit DB Packet Storm
345456 - invision_power_services invision_board
invision_power_board
The vendor has released an update to address this and other versions. NVD-CWE-Other
CVE-2006-2061 2018-10-19 01:37 2006-04-27 Show GitHub Exploit DB Packet Storm
345457 - phpsurveyor phpsurveyor SQL injection vulnerability in save.php in PHPSurveyor 0.995 and earlier allows remote attackers to execute arbitrary SQL commands via the surveyid cookie. NOTE: this issue could be leveraged to exe… NVD-CWE-Other
CVE-2006-2065 2018-10-19 01:37 2006-04-27 Show GitHub Exploit DB Packet Storm
345458 - mkportal mkportal Multiple cross-site scripting (XSS) vulnerabilities pm_popup.php in MKPortal 1.1 Rc1 and earlier, as used with vBulletin 3.5.4 and earlier, allow remote attackers to inject arbitrary web script or HT… CWE-79
Cross-site Scripting
CVE-2006-2066 2018-10-19 01:37 2006-04-27 Show GitHub Exploit DB Packet Storm
345459 - mkportal mkportal SQL injection vulnerability in vb_board_functions.php in MKPortal 1.1, as used with vBulletin 3.5.4 and earlier, allows remote attackers to execute arbitrary SQL commands via the userid parameter. NVD-CWE-Other
CVE-2006-2067 2018-10-19 01:37 2006-04-27 Show GitHub Exploit DB Packet Storm
345460 - mybb devbb Cross-site scripting (XSS) vulnerability in member.php in DevBB 1.0.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the member parameter in a viewpro action. NVD-CWE-Other
CVE-2006-2070 2018-10-19 01:37 2006-04-27 Show GitHub Exploit DB Packet Storm