Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 13, 2026, 12:06 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
231241 7.5 危険 wowroster - WoWRoster の conf.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-3998 2012-12-20 18:02 2006-07-17 Show GitHub Exploit DB Packet Storm
231242 7.5 危険 wowroster - WoWRoster の hsList.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-3997 2012-12-20 18:02 2006-07-17 Show GitHub Exploit DB Packet Storm
231243 6.8 警告 user home pages - Mambo または Joomla! 用の User Home Pages コンポーネントにおける PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2006-3995 2012-12-20 18:02 2006-08-4 Show GitHub Exploit DB Packet Storm
231244 7.5 危険 xmb software - XMB の u2u.inc.php における SQL インジェクションの脆弱性 - CVE-2006-3994 2012-12-20 18:02 2006-08-4 Show GitHub Exploit DB Packet Storm
231245 5.1 警告 tsep - Olaf Noehring TSEP の copyright.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-3993 2012-12-20 18:02 2006-08-4 Show GitHub Exploit DB Packet Storm
231246 7.5 危険 voc-project - Cisco Unified Wireless IP Phone 7921 における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-3991 2012-12-20 18:02 2006-08-4 Show GitHub Exploit DB Packet Storm
231247 7.5 危険 phpsavant - Paul M. Jones Savant2 における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-3990 2012-12-20 18:02 2006-08-4 Show GitHub Exploit DB Packet Storm
231248 5 警告 scott weedon - Scott Weedon Ajax Chat の visitor/livesupport/chat.php におけるディレクトリトラバーサルの脆弱性 - CVE-2006-3972 2012-12-20 18:02 2006-08-2 Show GitHub Exploit DB Packet Storm
231249 6.8 警告 scott weedon - Scott Weedon Ajax Chat の visitor/livesupport/chat.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-3971 2012-12-20 18:02 2006-08-2 Show GitHub Exploit DB Packet Storm
231250 5 警告 サン・マイクロシステムズ - Sun Solaris 10 3/05 HW2 の暗号化プロバイダにおけるアプリケーションがデータ変更を検出しない脆弱性 - CVE-2006-3968 2012-12-20 18:02 2006-08-1 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
292321 - linux linux_kernel The main function in tools/hv/hv_kvp_daemon.c in hypervkvpd, as distributed in the Linux kernel before 3.8-rc1, allows local users to cause a denial of service (daemon exit) via a crafted application… NVD-CWE-noinfo
CVE-2012-5532 2024-11-21 10:44 2012-12-27 Show GitHub Exploit DB Packet Storm
292322 - openstack grizzly
folsom 		OpenStack Compute (Nova) Folsom before 2012.2.2 and Grizzly, when using libvirt and LVM backed instances, does not properly clear physical volume (PV) content when reallocating for instances, which a… CWE-200
Information Exposure 		CVE-2012-5625 2024-11-21 10:44 2012-12-27 Show GitHub Exploit DB Packet Storm
292323 - openstack keystone tools/sample_data.sh in OpenStack Keystone 2012.1.3, when access to Amazon Elastic Compute Cloud (Amazon EC2) is configured, uses world-readable permissions for /etc/keystone/ec2rc, which allows loca… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-5483 2024-11-21 10:44 2012-12-27 Show GitHub Exploit DB Packet Storm
292324 - citrix xenapp The XML Service interface in Citrix XenApp 6.5 and 6.5 Feature Pack 1 allows remote attackers to execute arbitrary code via unspecified vectors. NVD-CWE-noinfo
CVE-2012-5161 2024-11-21 10:44 2012-12-27 Show GitHub Exploit DB Packet Storm
292325 - catalin_florian_radut zeropoint Cross-site scripting (XSS) vulnerability in the Zero Point module 6.x-1.x before 6.x-1.18 and 7.x-1.x before 7.x-1.4 for Drupal allows remote attackers to inject arbitrary web script or HTML via the … CWE-79
Cross-site Scripting 		CVE-2012-5591 2024-11-21 10:44 2012-12-27 Show GitHub Exploit DB Packet Storm
292326 - scripthead webmail_plus SQL injection vulnerability in the Webmail Plus module for Drupal allows remote attackers to execute arbitrary SQL commands via unspecified vectors. CWE-89
SQL Injection 		CVE-2012-5590 2024-11-21 10:44 2012-12-27 Show GitHub Exploit DB Packet Storm
292327 - netgenius multilink The MultiLink module 6.x-2.x before 6.x-2.7 and 7.x-2.x before 7.x-2.7 for Drupal does not properly check node permissions when generating an in-content link, which allows remote authenticated users … CWE-200
Information Exposure 		CVE-2012-5589 2024-11-21 10:44 2012-12-27 Show GitHub Exploit DB Packet Storm
292328 - epiqo email The Email Field module 6.x-1.x before 6.x-1.3 for Drupal, when using a field permission module and the field contact field formatter is set to the full or teaser display mode, does not properly check… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-5588 2024-11-21 10:44 2012-12-27 Show GitHub Exploit DB Packet Storm
292329 - epiqo email Cross-site scripting (XSS) vulnerability in the Email Field module 6.x-1.x before 6.x-1.3 for Drupal allows remote attackers to inject arbitrary web script or HTML via the mailto link. CWE-79
Cross-site Scripting 		CVE-2012-5587 2024-11-21 10:44 2012-12-27 Show GitHub Exploit DB Packet Storm
292330 - marc_ingram services The Services module 6.x-3.x before 6.x-3.3 and 7.x-3.x before 7.x-3.3 for Drupal allows remote authenticated users with the "access user profiles" permission to access arbitrary users' emails via vec… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-5586 2024-11-21 10:44 2012-12-27 Show GitHub Exploit DB Packet Storm