Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 14, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
231011	5.8	警告	texas imperial software	-	Texas Imperial Software WFTPD Pro Server におけるバッファオーバーフローの脆弱性	-	CVE-2006-5826	2012-12-20 18:02	2006-11-9	Show	GitHub Exploit DB Packet Storm

231012	10	危険	シマンテック	-	Symantec Veritas NetBackup の NetBackup bpcd デーモンにおけるスタックベースのバッファオーバーフローの脆弱性	-	CVE-2006-5822	2012-12-20 18:02	2006-12-13	Show	GitHub Exploit DB Packet Storm

231013	10	危険	verity	-	Verity Ultraseek における Web 攻撃などに対するプロキシとしてサーバを使用される脆弱性	-	CVE-2006-5819	2012-12-20 18:02	2006-11-17	Show	GitHub Exploit DB Packet Storm

231014	6.8	警告	XOOPS	-	XOOPS の modules/wfdownloads/newlist.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-5810	2012-12-20 18:02	2006-11-8	Show	GitHub Exploit DB Packet Storm

231015	7.5	危険	the web drivers	-	The Web Drivers Simple Forum の message_details.php における SQL インジェクションの脆弱性	-	CVE-2006-5802	2012-12-20 18:02	2006-11-8	Show	GitHub Exploit DB Packet Storm

231016	2.6	注意	xenis	-	xenis.creator CMS の default.asp におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-5800	2012-12-20 18:02	2006-11-8	Show	GitHub Exploit DB Packet Storm

231017	6.8	警告	xenis	-	xenis.creator CMS の default.asp におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-5799	2012-12-20 18:02	2006-11-8	Show	GitHub Exploit DB Packet Storm

231018	7.5	危険	xenis	-	xenis.creator CMS の default.asp における SQL インジェクションの脆弱性	-	CVE-2006-5798	2012-12-20 18:02	2006-11-8	Show	GitHub Exploit DB Packet Storm

231019	7.5	危険	xenis	-	Xenis.creator CMS の default.asp における SQL インジェクションの脆弱性	-	CVE-2006-5797	2012-12-20 18:02	2006-11-8	Show	GitHub Exploit DB Packet Storm

231020	7.5	危険	soholaunch	-	Soholaunch Pro Edition における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5796	2012-12-20 18:02	2006-11-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 14, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
292421	-	moodle	moodle	The Database activity module in Moodle 2.1.x before 2.1.9, 2.2.x before 2.2.6, and 2.3.x before 2.3.3 allows remote authenticated users to read activity entries of a different group's users via an ad…	CWE-200 Information Exposure	CVE-2012-5473	2024-11-21 10:44	2012-11-21	Show	GitHub Exploit DB Packet Storm

292422	-	moodle	moodle	lib/formslib.php in Moodle 2.2.x before 2.2.6 and 2.3.x before 2.3.3 allows remote authenticated users to bypass intended access restrictions via a modified value of a frozen form field.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-5472	2024-11-21 10:44	2012-11-21	Show	GitHub Exploit DB Packet Storm

292423	-	moodle	moodle	The Dropbox Repository File Picker in Moodle 2.1.x before 2.1.9, 2.2.x before 2.2.6, and 2.3.x before 2.3.3 allows remote authenticated users to access the Dropbox of a different user by leveraging a…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-5471	2024-11-21 10:44	2012-11-21	Show	GitHub Exploit DB Packet Storm

292424	-	firebirdsql	firebird	TraceManager in Firebird 2.5.0 and 2.5.1, when trace is enabled, allows remote authenticated users to cause a denial of service (NULL pointer dereference and crash) by preparing an empty dynamic SQL …	CWE-399 Resource Management Errors	CVE-2012-5529	2024-11-21 10:44	2012-11-20	Show	GitHub Exploit DB Packet Storm

292425	-	apple	cups	CUPS 1.4.4, when running in certain Linux distributions such as Debian GNU/Linux, stores the web interface administrator key in /var/run/cups/certs/0 using certain permissions, which allows local use…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-5519	2024-11-21 10:44	2012-11-20	Show	GitHub Exploit DB Packet Storm

292426	-	asial	monaca_debugger	The Asial Monaca Debugger application before 1.4.2 for Android allows remote attackers to obtain sensitive (1) account or (2) session ID information in a system log file via a crafted application.	CWE-200 Information Exposure	CVE-2012-5172	2024-11-21 10:44	2012-11-17	Show	GitHub Exploit DB Packet Storm

292427	-	mantisbt	mantisbt	core/email_api.php in MantisBT before 1.2.12 does not properly manage the sending of e-mail notifications about restricted bugs, which might allow remote authenticated users to obtain sensitive infor…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-5523	2024-11-21 10:44	2012-11-16	Show	GitHub Exploit DB Packet Storm

292428	-	mantisbt	mantisbt	MantisBT before 1.2.12 does not use an expected default value during decisions about whether a user may modify the status of a bug, which allows remote authenticated users to bypass intended access r…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-5522	2024-11-21 10:44	2012-11-16	Show	GitHub Exploit DB Packet Storm

292429	-	vmware	player workstation	Untrusted search path vulnerability in VMware Workstation 8.x before 8.0.5 and VMware Player 4.x before 4.0.5 on Windows allows host OS users to gain host OS privileges via a Trojan horse DLL in a "s…	NVD-CWE-Other	CVE-2012-5459	2024-11-21 10:44	2012-11-14	Show	GitHub Exploit DB Packet Storm

292430	-	vmware	player workstation	VMware Workstation 8.x before 8.0.5 and VMware Player 4.x before 4.0.5 on Windows use weak permissions for unspecified process threads, which allows host OS users to gain host OS privileges via a cra…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-5458	2024-11-21 10:44	2012-11-14	Show	GitHub Exploit DB Packet Storm