Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 18, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
231411	7.5	危険	phpgiggle	-	comscripts.com 上で配布されている J. He PHPGiggle における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-7119	2012-12-20 18:18	2007-03-5	Show	GitHub Exploit DB Packet Storm

231412	7.5	危険	PHPKIT	-	PHPKit における SQL インジェクションの脆弱性	-	CVE-2006-7115	2012-12-20 18:18	2007-03-5	Show	GitHub Exploit DB Packet Storm

231413	5	警告	planerd.net	-	P-News における重要な情報を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2006-7114	2012-12-20 18:18	2007-03-5	Show	GitHub Exploit DB Packet Storm

231414	7.5	危険	planerd.net	-	P-News における任意のコードをアップロードおよび実行される脆弱性	CWE-20 不適切な入力確認	CVE-2006-7113	2012-12-20 18:18	2007-03-5	Show	GitHub Exploit DB Packet Storm

231415	7.5	危険	powerphlogger	-	Power Phlogger の config.inc.php3 における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2006-7106	2012-12-20 18:18	2007-03-3	Show	GitHub Exploit DB Packet Storm

231416	7.5	危険	phpwind	-	PHPWind の admin.php における SQL インジェクションの脆弱性	-	CVE-2006-7101	2012-12-20 18:18	2007-03-3	Show	GitHub Exploit DB Packet Storm

231417	6.8	警告	phpBB	-	phpBB Insert User の includes/functions_mod_user.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2006-7100	2012-12-20 18:18	2007-03-3	Show	GitHub Exploit DB Packet Storm

231418	5	警告	solarpay	-	SolarPay の index.php におけるディレクトリトラバーサルの脆弱性	-	CVE-2006-7099	2012-12-20 18:18	2007-03-3	Show	GitHub Exploit DB Packet Storm

231419	10	危険	taskfreak	-	TaskFreak! における脆弱性	-	CVE-2006-7097	2012-12-20 18:18	2007-03-2	Show	GitHub Exploit DB Packet Storm

231420	6.8	警告	phpbb security	-	phpBB Security の phpbb_security.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2006-7090	2012-12-20 18:18	2007-03-2	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
293861	8.1	HIGH Adjacent	cisco	adaptive_security_appliance_software	ASA 5515-X Adaptive Security Appliance Adaptive Security Appliance (ASA) Software 9.4.x before 9.4.1 Interim, 9.2.x before 9.2.4 Interim, ASA 5510 Adaptive Security Appliance Adaptive Security Applia…	CWE-254 7PK - Security Features	CVE-2012-5010	2024-11-21 10:43	2017-06-28	Show	GitHub Exploit DB Packet Storm

293862	-		n-tron	702w_industrial_wireless_access_point	N-Tron 702-W Industrial Wireless Access Point devices use the same (1) SSH and (2) HTTPS private keys across different customers' installations, which makes it easier for remote attackers to defeat c…	CWE-310 Cryptographic Issues	CVE-2012-4716	2024-11-21 10:43	2015-06-14	Show	GitHub Exploit DB Packet Storm

293863	-		template_cms_project	template_cms	Multiple cross-site request forgery (CSRF) vulnerabilities in Template CMS 2.1.1 and earlier allow remote attackers to hijack the authentication of administrators for requests that (1) create an admi…	CWE-352 Origin Validation Error	CVE-2012-4902	2024-11-21 10:43	2015-05-21	Show	GitHub Exploit DB Packet Storm

293864	-		template_cms_project	template_cms	Cross-site scripting (XSS) vulnerability in Template CMS 2.1.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the themes_editor parameter in an add_template action to …	CWE-79 Cross-site Scripting	CVE-2012-4901	2024-11-21 10:43	2015-05-21	Show	GitHub Exploit DB Packet Storm

293865	-		mikejolley	download_monitor	Cross-site scripting (XSS) vulnerability in the Download Monitor plugin before 3.3.5.9 for WordPress allows remote attackers to inject arbitrary web script or HTML via the dlsearch parameter to the d…	CWE-79 Cross-site Scripting	CVE-2012-4768	2024-11-21 10:43	2014-09-4	Show	GitHub Exploit DB Packet Storm

293866	-		xnview	xnview	Heap-based buffer overflow in the xjpegls.dll (aka JLS, JPEG-LS, or JPEG lossless) format plugin in XnView 1.99 and 1.99.1 allows remote attackers to execute arbitrary code via a crafted JLS image fi…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2012-4988	2024-11-21 10:43	2014-07-9	Show	GitHub Exploit DB Packet Storm

293867	-		corel	quattro_pro_x6	The (1) QProGetNotebookWindowHandle and (2) Ordinal132 functions in QPW160.dll in Corel Quattro Pro X6 Standard Edition 16.0.0.388 and earlier allows remote attackers to cause a denial of service (NU…	NVD-CWE-Other	CVE-2012-4728	2024-11-21 10:43	2014-06-6	Show	GitHub Exploit DB Packet Storm

293868	-		owncloud	owncloud	CRLF injection vulnerability in ownCloud Server before 4.0.8 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via the url path parameter.	NVD-CWE-Other	CVE-2012-5057	2024-11-21 10:43	2014-06-4	Show	GitHub Exploit DB Packet Storm

293869	-		owncloud	owncloud	Multiple cross-site scripting (XSS) vulnerabilities in ownCloud Server before 4.0.8 allow remote attackers to inject arbitrary web script or HTML via the (1) readyCallback parameter to apps/files_odf…	CWE-79 Cross-site Scripting	CVE-2012-5056	2024-11-21 10:43	2014-06-4	Show	GitHub Exploit DB Packet Storm

293870	-		davistribe	google_doc_embedder	Directory traversal vulnerability in the Google Doc Embedder plugin before 2.5.4 for WordPress allows remote attackers to read arbitrary files via a .. (dot dot) in the file parameter to libs/pdf.php.	CWE-22 Path Traversal	CVE-2012-4915	2024-11-21 10:43	2014-05-29	Show	GitHub Exploit DB Packet Storm