Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 5, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
229941	4.3	警告	xt:Commerce	-	xt:Commerce の advanced_search_result.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-6044	2012-12-20 19:10	2009-02-3	Show	GitHub Exploit DB Packet Storm

229942	7.5	危険	phpprobid	-	PPB における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6043	2012-12-20 19:10	2009-02-3	Show	GitHub Exploit DB Packet Storm

229943	7.5	危険	wsnlinks	-	WSN Links の comments.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6033	2012-12-20 19:10	2009-02-3	Show	GitHub Exploit DB Packet Storm

229944	7.5	危険	wsnlinks	-	WSN Links Free の comments.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6032	2012-12-20 19:10	2009-02-3	Show	GitHub Exploit DB Packet Storm

229945	7.5	危険	wsnlinks	-	WSN Links の vote.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6031	2012-12-20 19:10	2009-02-3	Show	GitHub Exploit DB Packet Storm

229946	7.5	危険	university of queensland	-	University of Queensland Library Fez の list.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6028	2012-12-20 19:10	2009-02-3	Show	GitHub Exploit DB Packet Storm

229947	7.5	危険	xnova	-	Xnova の includes/todofleetcontrol.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2008-6023	2012-12-20 19:10	2009-02-2	Show	GitHub Exploit DB Packet Storm

229948	7.5	危険	xnova	-	Xnova の includes/todofleetcontrol.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2008-6022	2012-12-20 19:10	2009-02-2	Show	GitHub Exploit DB Packet Storm

229949	7.5	危険	rianxosencabos cms	-	Rianxosencabos CMS の scripts/links.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6014	2012-12-20 19:10	2009-01-30	Show	GitHub Exploit DB Packet Storm

229950	7.5	危険	sg real estate portal	-	SG Real Estate Portal の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6011	2012-12-20 19:10	2009-01-30	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 6, 2026, 4:18 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
292091	-	lockon	ec-cube	Cross-site request forgery (CSRF) vulnerability in LOCKON EC-CUBE 2.11.0 through 2.13.0 allows remote attackers to hijack the authentication of arbitrary users via unspecified vectors related to refu…	CWE-352 Origin Validation Error	CVE-2013-5993	2024-11-21 10:58	2013-11-21	Show	GitHub Exploit DB Packet Storm

292092	-	lockon	ec-cube	Cross-site scripting (XSS) vulnerability in the displaySystemError function in html/handle_error.php in LOCKON EC-CUBE 2.11.0 through 2.11.5 allows remote attackers to inject arbitrary web script or …	CWE-79 Cross-site Scripting	CVE-2013-5992	2024-11-21 10:58	2013-11-21	Show	GitHub Exploit DB Packet Storm

292093	-	lockon	ec-cube	The displaySystemError function in html/handle_error.php in LOCKON EC-CUBE 2.11.0 through 2.11.5 allows remote attackers to obtain sensitive information by leveraging incorrect handling of error-log …	CWE-200 Information Exposure	CVE-2013-5991	2024-11-21 10:58	2013-11-21	Show	GitHub Exploit DB Packet Storm

292094	-	open-xchange	open-xchange_appsuite	Cross-site scripting (XSS) vulnerability in Open-Xchange (OX) AppSuite 7.2.x before 7.2.2-rev25 and 7.4.x before 7.4.0-rev14 allows remote attackers to inject arbitrary web script or HTML via an atta…	CWE-79 Cross-site Scripting	CVE-2013-6074	2024-11-21 10:58	2013-11-20	Show	GitHub Exploit DB Packet Storm

292095	-	zkoss	zk_framework	Cross-site scripting (XSS) vulnerability in ZK Framework before 5.0.13 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.	CWE-79 Cross-site Scripting	CVE-2013-5966	2024-11-21 10:58	2013-11-20	Show	GitHub Exploit DB Packet Storm

292096	-	dlink	dsl-2740b_firmware dsl-2740b	Multiple cross-site request forgery (CSRF) vulnerabilities in D-Link DSL-2740B Gateway with firmware EU_1.00 allow remote attackers to hijack the authentication of administrators for requests that (1…	CWE-352 Origin Validation Error	CVE-2013-5730	2024-11-21 10:58	2013-11-20	Show	GitHub Exploit DB Packet Storm

292097	-	softaculous	webuzo	Cross-site scripting (XSS) vulnerability in filemanager/login.php in the File Manager module in Softaculous Webuzo before 2.1.4 allows remote attackers to inject arbitrary web script or HTML via the …	CWE-79 Cross-site Scripting	CVE-2013-6042	2024-11-21 10:58	2013-11-19	Show	GitHub Exploit DB Packet Storm

292098	-	vmware	workstation player	VMware Workstation 9.x before 9.0.3 and VMware Player 5.x before 5.0.3 on Linux do not properly handle shared libraries, which allows host OS users to gain host OS privileges via unspecified vectors.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-5972	2024-11-21 10:58	2013-11-18	Show	GitHub Exploit DB Packet Storm

292099	-	ajaxplorer	ajaxplorer	Directory traversal vulnerability in plugins/editor.zoho/agent/save_zoho.php in the Zoho plugin in Pydio (formerly AjaXplorer) before 5.0.4 allows remote attackers to read or delete arbitrary files v…	CWE-22 Path Traversal	CVE-2013-6226	2024-11-21 10:58	2013-11-15	Show	GitHub Exploit DB Packet Storm

292100	-	zikula	zikula_application_framework	Cross-site scripting (XSS) vulnerability in Zikula Application Framework before 1.3.6 allows remote attackers to inject arbitrary web script or HTML via the returnpage parameter to index.php.	CWE-79 Cross-site Scripting	CVE-2013-6168	2024-11-21 10:58	2013-11-15	Show	GitHub Exploit DB Packet Storm