Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 1, 2026, 2:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
229791	7.5	危険	tufat	-	MyCard の gallery.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4738	2012-12-20 18:52	2008-10-24	Show	GitHub Exploit DB Packet Storm

229792	7.5	危険	pressography	-	WordPress 用の WP Comment Remix プラグインにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2008-4734	2012-12-20 18:52	2008-10-24	Show	GitHub Exploit DB Packet Storm

229793	4.3	警告	pressography	-	WordPress 用の WP Comment Remix プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-4733	2012-12-20 18:52	2008-10-24	Show	GitHub Exploit DB Packet Storm

229794	7.5	危険	pressography	-	WordPress 用の WP Comment Remix プラグインにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4732	2012-12-20 18:52	2008-10-24	Show	GitHub Exploit DB Packet Storm

229795	4.3	警告	CJ Niemira	-	phpMyID の MyID.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-4730	2012-12-20 18:52	2008-10-24	Show	GitHub Exploit DB Packet Storm

229796	4.3	警告	sungard	-	SunGard Banner Student のコンタクトアップデートページにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-4727	2012-12-20 18:52	2008-10-23	Show	GitHub Exploit DB Packet Storm

229797	7.5	危険	X7 Group	-	X7 Chat の help/mini.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-4718	2012-12-20 18:52	2008-10-23	Show	GitHub Exploit DB Packet Storm

229798	7.5	危険	zeeways	-	ZEELYRICS の bannerclick.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4717	2012-12-20 18:52	2008-10-23	Show	GitHub Exploit DB Packet Storm

229799	7.5	危険	scriptdemo	-	BitmixSoft PHP-Lance の show.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4716	2012-12-20 18:52	2008-10-23	Show	GitHub Exploit DB Packet Storm

229800	7.5	危険	pilotgroup	-	PG eTraining の news_read.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4709	2012-12-20 18:52	2008-10-23	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
345861	-	ibm	aix	Unspecified vulnerability in the (1) unix_mp and (2) unix_64 kernels in IBM AIX 5.3 VRMF 5.3.0.30 through 5.3.0.33 allows local users to cause a denial of service (system crash) via unknown vectors r…	NVD-CWE-Other	CVE-2006-0666	2017-07-20 10:29	2006-02-15	Show	GitHub Exploit DB Packet Storm

345862	-	sony_ericsson	k600i t68i v600i w800i	Buffer overflow in Sony Ericsson K600i, V600i, W800i, and T68i cell phone allows remote attackers to cause a denial of service (reboot or shutdown) through a wireless Bluetooth connection via a malfo…	NVD-CWE-Other	CVE-2006-0671	2017-07-20 10:29	2006-02-14	Show	GitHub Exploit DB Packet Storm

345863	-	ibm	aix	Buffer overflow in the arp command of IBM AIX 5.3 L, 5.3, 5.2.2, 5.2 L, and 5.2 allows local users to cause a denial of service (crash) via a long iftype argument.	NVD-CWE-Other	CVE-2006-0674	2017-07-20 10:29	2006-02-14	Show	GitHub Exploit DB Packet Storm

345864	-	plain_black	webgui	Unspecified vulnerability in WebGUI before 6.8.6-gamma allows remote attackers to create an account, when anonymous registration is disabled, via a certain URL.	NVD-CWE-Other	CVE-2006-0680	2017-07-20 10:29	2006-02-15	Show	GitHub Exploit DB Packet Storm

345865	-	power_daemon	power_daemon	Format string vulnerability in powerd.c in Power Daemon (powerd) 2.0.2 and earlier allows remote attackers to execute arbitrary code via format string specifiers in the WHATIDO variable.	NVD-CWE-Other	CVE-2006-0681	2017-07-20 10:29	2006-02-15	Show	GitHub Exploit DB Packet Storm

345866	-	e107	e107	Multiple cross-site scripting (XSS) vulnerabilities in bbcodes system in e107 before 0.7.2 allow remote attackers to inject arbitrary web script or HTML via unknown attack vectors.	NVD-CWE-Other	CVE-2006-0682	2017-07-20 10:29	2006-02-15	Show	GitHub Exploit DB Packet Storm

345867	-	ansilove	ansilove	Unspecified vulnerability in the loaders (load_*.php) in Ansilove before 1.03 allows remote attackers to read arbitrary files via unspecified vectors involving "converting files accessible by the web…	NVD-CWE-Other	CVE-2006-0694	2017-07-20 10:29	2006-02-15	Show	GitHub Exploit DB Packet Storm

345868	-	ansilove	ansilove	Ansilove before 1.03 does not filter uploaded file extensions, which allows remote attackers to execute arbitrary code by uploading arbitrary files with dangerous extensions, then accessing them dire…	NVD-CWE-Other	CVE-2006-0695	2017-07-20 10:29	2006-02-15	Show	GitHub Exploit DB Packet Storm

345869	-	zen_cart	zen_cart	SQL injection vulnerability in Zen Cart before 1.2.7 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.	NVD-CWE-Other	CVE-2006-0696	2017-07-20 10:29	2006-02-15	Show	GitHub Exploit DB Packet Storm

345870	-	zen_cart	zen_cart	Unspecified vulnerabilities in Zen Cart before 1.2.7 allow remote attackers to cause unknown impact via unspecified vectors related to "other attempted exploits" other than SQL injection.	NVD-CWE-Other	CVE-2006-0698	2017-07-20 10:29	2006-02-15	Show	GitHub Exploit DB Packet Storm