Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 13, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230781 7.5 危険 superfreaker studios - Superfreaker Studios UPublisher の viewarticle.asp における SQL インジェクションの脆弱性 - CVE-2006-5888 2012-12-20 18:02 2006-11-14 Show GitHub Exploit DB Packet Storm
230782 5.1 警告 pstotext - pstotext における任意のコマンドを実行される脆弱性 - CVE-2006-5869 2012-12-20 18:02 2006-11-26 Show GitHub Exploit DB Packet Storm
230783 6.4 警告 phpmanta - phpManta の Mdoc/view-sourcecode.php におけるディレクトリトラバーサルの脆弱性 - CVE-2006-5866 2012-12-20 18:02 2006-11-10 Show GitHub Exploit DB Packet Storm
230784 6.5 警告 speedywiki - Speedywiki の index.php における任意の PHP コードをアップロードされる脆弱性 - CVE-2006-5845 2012-12-20 18:02 2006-11-9 Show GitHub Exploit DB Packet Storm
230785 5 警告 speedywiki - Speedywiki における Web サーバのフルパスを取得される脆弱性 - CVE-2006-5844 2012-12-20 18:02 2006-11-9 Show GitHub Exploit DB Packet Storm
230786 6.8 警告 speedywiki - Speedywiki の index.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-5843 2012-12-20 18:02 2006-11-9 Show GitHub Exploit DB Packet Storm
230787 2.1 注意 unicore - Unicore Client の keystore ファイルにおける重要な情報を取得される脆弱性 - CVE-2006-5842 2012-12-20 18:02 2006-11-9 Show GitHub Exploit DB Packet Storm
230788 7.5 危険 phpadventure - PHPAdventure の ad_main.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5839 2012-12-20 18:02 2006-11-9 Show GitHub Exploit DB Packet Storm
230789 7.5 危険 simplechat - iWare Professional CMS 用の SimpleChat モジュールにおける chat_log.php へ任意の PHP コードを挿入される脆弱性 - CVE-2006-5837 2012-12-20 18:02 2006-11-9 Show GitHub Exploit DB Packet Storm
230790 6.8 警告 phpComasy - phpComasy CMS の index.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-5827 2012-12-20 18:02 2006-11-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 14, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
292731 - redhat certificate_system The token processing system (pki-tps) in Red Hat Certificate System (RHCS) before 8.1.3 allows remote attackers to cause a denial of service (Apache httpd web server child process restart) via certai… CWE-20
 Improper Input Validation  		CVE-2012-4556 2024-11-21 10:43 2013-01-5 Show GitHub Exploit DB Packet Storm
292732 - redhat certificate_system The token processing system (pki-tps) in Red Hat Certificate System (RHCS) before 8.1.3 does not properly handle interruptions of token format operations, which allows remote attackers to cause a den… NVD-CWE-Other
CVE-2012-4555 2024-11-21 10:43 2013-01-5 Show GitHub Exploit DB Packet Storm
292733 - redhat certificate_system Multiple cross-site scripting (XSS) vulnerabilities in Red Hat Certificate System (RHCS) before 8.1.3 allow remote attackers to inject arbitrary web script or HTML via the (1) pageStart or (2) pageSi… CWE-79
Cross-site Scripting 		CVE-2012-4543 2024-11-21 10:43 2013-01-5 Show GitHub Exploit DB Packet Storm
292734 - elinks elinks The http_negotiate_create_context function in protocol/http/http_negotiate.c in ELinks 0.12 before 0.12pre6, when using HTTP Negotiate or GSS-Negotiate authentication, delegates user credentials thro… CWE-287
Improper Authentication 		CVE-2012-4545 2024-11-21 10:43 2013-01-3 Show GitHub Exploit DB Packet Storm
292735 - polycom hdx_system_software Cross-site scripting (XSS) vulnerability in the web management interface on Polycom HDX Video End Points with UC APL software before 2.7.1.1_J, and commercial software before 3.0.5, allows remote att… CWE-79
Cross-site Scripting 		CVE-2012-4970 2024-11-21 10:43 2013-01-1 Show GitHub Exploit DB Packet Storm
292736 - i-gen oplynx The Central application in i-GEN opLYNX before 2.01.9 allows remote attackers to bypass authentication via vectors involving the disabling of browser JavaScript support. CWE-287
Improper Authentication 		CVE-2012-4688 2024-11-21 10:43 2012-12-31 Show GitHub Exploit DB Packet Storm
292737 - simple_invoices simple_invoices Multiple cross-site scripting (XSS) vulnerabilities in SimpleInvoices before stable-2012-1-CIS3000 allow remote attackers to inject arbitrary web script or HTML via (1) the having parameter in a mana… CWE-79
Cross-site Scripting 		CVE-2012-4932 2024-11-21 10:43 2012-12-28 Show GitHub Exploit DB Packet Storm
292738 - trustwave
opensuse
fedoraproject 		modsecurity
opensuse
fedora 		The mod_security2 module before 2.7.0 for the Apache HTTP Server allows remote attackers to bypass rules, and deliver arbitrary POST data to a PHP application, via a multipart request in which an inv… NVD-CWE-noinfo
CVE-2012-4528 2024-11-21 10:43 2012-12-28 Show GitHub Exploit DB Packet Storm
292739 - emc data_protection_advisor Directory traversal vulnerability in the Web UI in EMC Data Protection Advisor (DPA) 5.6 through SP1, 5.7 through SP1, and 5.8 through SP4 allows remote attackers to read arbitrary files via unspecif… CWE-22
Path Traversal 		CVE-2012-4616 2024-11-21 10:43 2012-12-27 Show GitHub Exploit DB Packet Storm
292740 - ibm rational_automation_framework IBM Rational Automation Framework (RAF) 3.x through 3.0.0.5 allows remote attackers to bypass intended Env Gen Wizard (aka Environment Generation Wizard) access restrictions by visiting context roots… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-4816 2024-11-21 10:43 2012-12-27 Show GitHub Exploit DB Packet Storm