Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 15, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230981 7.5 危険 SAP - SAP IGS におけるディレクトリトラバーサルの脆弱性 - CVE-2006-6345 2012-12-20 18:02 2006-12-6 Show GitHub Exploit DB Packet Storm
230982 10 危険 ソフォス - Sophos Anti-Virus スキャンエンジンにおけるバッファオーバーフローの脆弱性 - CVE-2006-6335 2012-12-20 18:02 2006-12-12 Show GitHub Exploit DB Packet Storm
230983 6 警告 TorrentFlux - TorrentFlux の metaInfo.php における任意のコマンドを実行される脆弱性 - CVE-2006-6331 2012-12-20 18:02 2006-12-6 Show GitHub Exploit DB Packet Storm
230984 4.9 警告 TorrentFlux - TorrentFlux の index.php におけるファイルを削除される脆弱性 - CVE-2006-6329 2012-12-20 18:02 2006-12-6 Show GitHub Exploit DB Packet Storm
230985 4.9 警告 TorrentFlux - TorrentFlux の index.php におけるディレクトリトラバーサルの脆弱性 - CVE-2006-6328 2012-12-20 18:02 2006-12-6 Show GitHub Exploit DB Packet Storm
230986 5 警告 stefan ritt - elog の show_elog_list 関数におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-6318 2012-12-20 18:02 2006-12-28 Show GitHub Exploit DB Packet Storm
230987 6.8 警告 woltlab - wBB Lite における任意の SQL コマンドを実行される脆弱性 - CVE-2006-6289 2012-12-20 18:02 2006-12-5 Show GitHub Exploit DB Packet Storm
230988 9 危険 vikingboard - Vikingboard の admin.php におけるディレクトリトラバーサルの脆弱性 - CVE-2006-6284 2012-12-20 18:02 2006-12-4 Show GitHub Exploit DB Packet Storm
230989 4.3 警告 vikingboard - Vikingboard におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-6283 2012-12-20 18:02 2006-12-4 Show GitHub Exploit DB Packet Storm
230990 9.3 危険 vikingboard - Vikingboard の members.php における強制 SQL エラーを誘発される脆弱性 - CVE-2006-6282 2012-12-20 18:02 2006-12-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
293501 - fortinet fortigate-3140b
fortigate-60c
fortigate-3040b
fortigate-300c
fortigate-600c
fortigate-5001a-sw
fortigate-3240c
fortigate-310b
fortigate-800c
fortigate-5020
fortigate-100… 		The default configuration of Fortinet Fortigate UTM appliances uses the same Certification Authority certificate and same private key across different customers' installations, which makes it easier … CWE-295
Improper Certificate Validation  		CVE-2012-4948 2024-11-21 10:43 2012-11-14 Show GitHub Exploit DB Packet Storm
293502 - ibm websphere_application_server Cross-site request forgery (CSRF) vulnerability in IBM WebSphere Application Server 6.1 before 6.1.0.45, 7.0 before 7.0.0.25, 8.0 before 8.0.0.5, and 8.5 before 8.5.0.1 allows remote attackers to hij… CWE-352
 Origin Validation Error 		CVE-2012-4853 2024-11-21 10:43 2012-11-14 Show GitHub Exploit DB Packet Storm
293503 - ibm websphere_application_server Cross-site scripting (XSS) vulnerability in IBM WebSphere Application Server 8.5 Liberty Profile before 8.5.0.1 allows remote attackers to inject arbitrary web script or HTML via a crafted URI. CWE-79
Cross-site Scripting 		CVE-2012-4851 2024-11-21 10:43 2012-11-14 Show GitHub Exploit DB Packet Storm
293504 - ibm websphere_application_server IBM WebSphere Application Server 8.5 Liberty Profile before 8.5.0.1, when JAX-RS is used, does not properly validate requests, which allows remote attackers to gain privileges via unspecified vectors. CWE-20
 Improper Input Validation  		CVE-2012-4850 2024-11-21 10:43 2012-11-14 Show GitHub Exploit DB Packet Storm
293505 - ibm cognos_business_intelligence IBM Cognos Business Intelligence (BI) 8.4 and 8.4.1 allows remote authenticated users to cause a denial of service (CPU consumption) via a crafted request containing a zero-valued byte. CWE-189
Numeric Errors 		CVE-2012-4847 2024-11-21 10:43 2012-11-14 Show GitHub Exploit DB Packet Storm
293506 - microsoft .net_framework The code-optimization feature in the reflection implementation in Microsoft .NET Framework 4 and 4.5 does not properly enforce object permissions, which allows remote attackers to execute arbitrary c… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-4777 2024-11-21 10:43 2012-11-14 Show GitHub Exploit DB Packet Storm
293507 - microsoft .net_framework The Web Proxy Auto-Discovery (WPAD) functionality in Microsoft .NET Framework 2.0 SP2, 3.5, 3.5.1, 4, and 4.5 does not validate configuration data that is returned during acquisition of proxy setting… CWE-20
 Improper Input Validation  		CVE-2012-4776 2024-11-21 10:43 2012-11-14 Show GitHub Exploit DB Packet Storm
293508 - microsoft internet_explorer Use-after-free vulnerability in Microsoft Internet Explorer 9 allows remote attackers to execute arbitrary code via a crafted web site, aka "CTreeNode Use After Free Vulnerability." CWE-399
 Resource Management Errors 		CVE-2012-4775 2024-11-21 10:43 2012-11-14 Show GitHub Exploit DB Packet Storm
293509 - bestpractical rt Argument injection vulnerability in Request Tracker (RT) 3.8.x before 3.8.15 and 4.0.x before 4.0.8 allows remote attackers to create arbitrary files via unspecified vectors related to the GnuPG clie… CWE-94
Code Injection 		CVE-2012-4884 2024-11-21 10:43 2012-11-11 Show GitHub Exploit DB Packet Storm
293510 - bestpractical rt Request Tracker (RT) 3.8.x before 3.8.15 and 4.0.x before 4.0.8 allows remote attackers to conduct a "confused deputy" attack to bypass the CSRF warning protection mechanism and cause victims to "mod… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-4734 2024-11-21 10:43 2012-11-11 Show GitHub Exploit DB Packet Storm