Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 14, 2026, 2:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230711	7.5	危険	Plume CMS	-	Plume CMS の manager/tools/link/dbinstall.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2006-7021	2012-12-20 18:18	2007-02-14	Show	GitHub Exploit DB Packet Storm

230712	7.5	危険	phpwcms	-	phpwcms における任意のコードを実行される脆弱性	-	CVE-2006-7019	2012-12-20 18:18	2007-02-14	Show	GitHub Exploit DB Packet Storm

230713	7.5	危険	phpjobboard	-	phpjobboard における認証を回避される脆弱性	-	CVE-2006-7016	2012-12-20 18:18	2007-02-14	Show	GitHub Exploit DB Packet Storm

230714	10	危険	scart	-	SCart の scart.cgi における任意のコマンドを実行される脆弱性	-	CVE-2006-7012	2012-12-20 18:18	2007-02-14	Show	GitHub Exploit DB Packet Storm

230715	4.3	警告	wheatblog	-	wB の add_comment.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-7002	2012-12-20 18:18	2007-02-12	Show	GitHub Exploit DB Packet Storm

230716	7.1	危険	phpmychat plus	-	PhpMyChat Plus の avatar.php におけるディレクトリトラバーサルの脆弱性	-	CVE-2006-7001	2012-12-20 18:18	2007-02-12	Show	GitHub Exploit DB Packet Storm

230717	4.3	警告	the war forge	-	warforge.NEWS におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-6996	2012-12-20 18:18	2007-02-12	Show	GitHub Exploit DB Packet Storm

230718	6	警告	v3chat	-	V3 Chat の mycontacts.php における他のユーザとして権限を取得される脆弱性	-	CVE-2006-6995	2012-12-20 18:18	2007-02-12	Show	GitHub Exploit DB Packet Storm

230719	7.8	危険	softinform	-	FineBrowser Freeware における他のドメインから制限された情報をアクセスされる脆弱性	-	CVE-2006-6987	2012-12-20 18:18	2007-02-8	Show	GitHub Exploit DB Packet Storm

230720	7.5	危険	phpgraphy	-	phpGraphy における任意の PHP コードを実行される脆弱性	-	CVE-2006-6966	2012-12-20 18:18	2007-02-3	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 14, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
292891	-	sitaram_chamarty gitolite	gitolite	Directory traversal vulnerability in gitolite 3.x before 3.1, when wild card repositories and a pattern matching "../" are enabled, allows remote authenticated users to create arbitrary repositories …	CWE-22 Path Traversal	CVE-2012-4506	2024-11-21 10:43	2012-10-23	Show	GitHub Exploit DB Packet Storm

292892	-	otrs	otrs	Cross-site scripting (XSS) vulnerability in Open Ticket Request System (OTRS) Help Desk 2.4.x before 2.4.15, 3.0.x before 3.0.17, and 3.1.x before 3.1.11 allows remote attackers to inject arbitrary w…	CWE-79 Cross-site Scripting	CVE-2012-4751	2024-11-21 10:43	2012-10-23	Show	GitHub Exploit DB Packet Storm

292893	-	novell	zenworks_asset_management	The rtrlet web application in the Web Console in Novell ZENworks Asset Management (ZAM) 7.5 uses a hard-coded username of Ivanhoe and a hard-coded password of Scott for the (1) GetFile_Password and (…	CWE-255 Credentials Management	CVE-2012-4933	2024-11-21 10:43	2012-10-21	Show	GitHub Exploit DB Packet Storm

292894	-	ibm	aix vios	The FTP client in IBM AIX 6.1 and 7.1, and VIOS 2.2.1.4-FP-25 SP-02, does not properly manage privileges in an RBAC environment, which allows attackers to bypass intended file-read restrictions by le…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-4845	2024-11-21 10:43	2012-10-20	Show	GitHub Exploit DB Packet Storm

292895	-	ibm	db2	Stack-based buffer overflow in the SQL/PSM (aka SQL Persistent Stored Module) Stored Procedure (SP) infrastructure in IBM DB2 9.1, 9.5, 9.7 before FP7, 9.8, and 10.1 might allow remote authenticated …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2012-4826	2024-11-21 10:43	2012-10-20	Show	GitHub Exploit DB Packet Storm

292896	-	oracle	industry_applications	Unspecified vulnerability in the Oracle Central Designer component in Oracle Industry Applications 1.3, 1.4, and 1.4.2 allows remote attackers to affect confidentiality, integrity, and availability v…	NVD-CWE-noinfo	CVE-2012-5066	2024-11-21 10:43	2012-10-17	Show	GitHub Exploit DB Packet Storm

292897	-	oracle	fusion_middleware	Unspecified vulnerability in the Oracle WebCenter Sites component in Oracle Fusion Middleware 6.1, 6.2, 6.3.x, 7, 7.0.1, 7.0.2, 7.0.3, 7.5, 7.6.1, 7.6.2, and 11.1.1.6.0 allows local users to affect i…	NVD-CWE-noinfo	CVE-2012-5065	2024-11-21 10:43	2012-10-17	Show	GitHub Exploit DB Packet Storm

292898	-	oracle	financial_services_software	Unspecified vulnerability in the Oracle FLEXCUBE Universal Banking component in Oracle Financial Services Software 10.0.0, 10.0.2, 10.1.0, 10.2.0, 10.2.2, 10.3.0, 10.5.0, and 11.0.0 through 11.2.0 al…	NVD-CWE-noinfo	CVE-2012-5064	2024-11-21 10:43	2012-10-17	Show	GitHub Exploit DB Packet Storm

292899	-	oracle	financial_services_software	Unspecified vulnerability in the Oracle FLEXCUBE Universal Banking component in Oracle Financial Services Software 10.0.0, 10.0.2, 10.1.0, 10.2.0, 10.2.2, 10.3.0, 10.5.0, 11.0.0 through 11.4.0, and 1…	NVD-CWE-noinfo	CVE-2012-5063	2024-11-21 10:43	2012-10-17	Show	GitHub Exploit DB Packet Storm

292900	-	oracle	financial_services_software	Unspecified vulnerability in the Oracle FLEXCUBE Universal Banking component in Oracle Financial Services Software 10.0.0, 10.0.2, 10.1.0, 10.2.0, 10.2.2, 10.3.0, 10.5.0, 11.0.0 through 11.4.0, and 1…	NVD-CWE-noinfo	CVE-2012-5061	2024-11-21 10:43	2012-10-17	Show	GitHub Exploit DB Packet Storm