Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 31, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
226761 5 警告 IBM - IBM Cognos Business Intelligence における XPath インジェクション攻撃を実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2012-4840 2013-03-6 14:50 2013-02-27 Show GitHub Exploit DB Packet Storm
226762 4 警告 IBM - IBM Cognos Business Intelligence における XPath インジェクション攻撃を実行される脆弱性 CWE-200
情報漏えい 		CVE-2012-4837 2013-03-6 14:48 2013-02-27 Show GitHub Exploit DB Packet Storm
226763 3.5 注意 IBM - IBM Cognos Business Intelligence におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-4836 2013-03-6 14:41 2013-02-27 Show GitHub Exploit DB Packet Storm
226764 4.3 警告 IBM - IBM Cognos Business Intelligence におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-4835 2013-03-6 14:40 2013-02-27 Show GitHub Exploit DB Packet Storm
226765 4.3 警告 IBM - IBM Cognos Business Intelligence の Query Studio におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2193 2013-03-6 14:37 2013-02-27 Show GitHub Exploit DB Packet Storm
226766 4.3 警告 IBM - IBM Cognos Business Intelligence におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2177 2013-03-6 14:36 2013-02-27 Show GitHub Exploit DB Packet Storm
226767 5 警告 Fedora Project
レッドハット		 - System Security Services Daemon におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2013-0220 2013-03-5 16:15 2013-02-1 Show GitHub Exploit DB Packet Storm
226768 4 警告 Linux - Linux Kernel の fs/ext4/extents.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2011-3638 2013-03-5 13:59 2011-07-21 Show GitHub Exploit DB Packet Storm
226769 6.2 警告 Linux - Linux Kernel に同梱されている perf における任意のファイルを上書きされる脆弱性 CWE-Other
その他 		CVE-2011-2905 2013-03-5 13:57 2011-10-24 Show GitHub Exploit DB Packet Storm
226770 4.9 警告 Linux - Linux Kernel の NFS クライアント機能の NLM プロトコルの実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-2491 2013-03-5 13:56 2011-07-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
346141 - pblang pblang Directory traversal vulnerability in setcookie.php in PBLang 4.65, and possibly earlier versions, allows remote attackers to read arbitrary files via ".." sequences and "%00" (trailing null byte) in … NVD-CWE-Other
CVE-2005-2892 2017-07-11 10:33 2005-09-15 Show GitHub Exploit DB Packet Storm
346142 - pblang pblang Direct static code injection vulnerability in setcookie.php in PBLang 4.65, and possibly earlier versions, allows remote attackers to execute arbitrary PHP code via the username (u parameter), which … NVD-CWE-Other
CVE-2005-2893 2017-07-11 10:33 2005-09-15 Show GitHub Exploit DB Packet Storm
346143 - pblang pblang Cross-site scripting (XSS) vulnerability in the user registration in PBLang 4.65, and possibly earlier versions, allows remote attackers to inject arbitrary web script or PHP via the location field. NVD-CWE-Other
CVE-2005-2894 2017-07-11 10:33 2005-09-15 Show GitHub Exploit DB Packet Storm
346144 - pblang pblang setcookie.php in PBLang 4.65, and possibly earlier versions, allows remote attackers to obtain sensitive information via a %00 (a null byte) in the u parameter, which reveals the path in an error mes… NVD-CWE-Other
CVE-2005-2895 2017-07-11 10:33 2005-09-15 Show GitHub Exploit DB Packet Storm
346145 - stylemotion web_news SQL injection vulnerability in WEB//NEWS 1.4 allows remote attackers to execute arbitrary SQL commands via the (1) wn_userpw parameter to startup.php, (2) cat, (3) id, or (4) stof parameter to news.p… NVD-CWE-Other
CVE-2005-2896 2017-07-11 10:33 2005-09-15 Show GitHub Exploit DB Packet Storm
346146 - - - SQL injection vulnerability in class-1 Forum Software 0.24.4 allows remote attackers to execute arbitrary SQL commands and bypass the file extension check via SQL code in the file extension of an upl… NVD-CWE-Other
CVE-2005-2902 2017-07-11 10:33 2005-09-15 Show GitHub Exploit DB Packet Storm
346147 - eset_software nod32_antivirus Heap-based buffer overflow in NOD32 2.5 with nod32.002 1.033 build 1127, with active scanning enabled, allows remote attackers to execute arbitrary code via an ARJ archive containing a file with a lo… NVD-CWE-Other
CVE-2005-2903 2017-07-11 10:33 2005-09-15 Show GitHub Exploit DB Packet Storm
346148 - clam_anti-virus clamav libclamav/fsg.c in Clam AntiVirus (ClamAV) before 0.87 allows remote attackers to cause a denial of service (infinite loop) via a crafted FSG packed executable. CWE-399
CWE-17
 Resource Management Errors
Code 		CVE-2005-2919 2017-07-11 10:33 2005-09-21 Show GitHub Exploit DB Packet Storm
346149 - clam_anti-virus clamav Buffer overflow in libclamav/upx.c in Clam AntiVirus (ClamAV) before 0.87 allows remote attackers to execute arbitrary code via a crafted UPX packed executable. NVD-CWE-Other
CVE-2005-2920 2017-07-11 10:33 2005-09-21 Show GitHub Exploit DB Packet Storm
346150 - checkpoint zonealarm
zonealarm_security_suite 		Multiple Check Point Zone Labs ZoneAlarm products before 7.0.362, including ZoneAlarm Security Suite 5.5.062.004 and 6.5.737, use insecure default permissions for critical files, which allows local u… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2005-2932 2017-07-11 10:33 2005-12-31 Show GitHub Exploit DB Packet Storm