Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 18, 2026, 2:16 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
231501 6.8 警告 WordPress.org - WordPress の wp-admin/templates.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-6808 2012-12-20 18:02 2006-12-28 Show GitHub Exploit DB Packet Storm
231502 7.5 危険 softwebsnepal - Softwebs Nepal Ananda Real Estate の list.asp における SQL インジェクションの脆弱性 - CVE-2006-6807 2012-12-20 18:02 2006-12-28 Show GitHub Exploit DB Packet Storm
231503 6.8 警告 sh-news - SH-News の misc.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-6801 2012-12-20 18:02 2006-12-28 Show GitHub Exploit DB Packet Storm
231504 7.5 危険 The Cacti Group - Cacti における SQL インジェクションの脆弱性 - CVE-2006-6799 2012-12-20 18:02 2006-12-28 Show GitHub Exploit DB Packet Storm
231505 7.5 危険 PHP Outburst - UPB の chat/login.php における任意の PHP コードを挿入される脆弱性 - CVE-2006-6790 2012-12-20 18:02 2006-12-27 Show GitHub Exploit DB Packet Storm
231506 7.5 危険 phpbbxtra - Phpbbxtra の includes/archive/archive_topic.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-6789 2012-12-20 18:02 2006-12-27 Show GitHub Exploit DB Packet Storm
231507 6.8 警告 timberwolf - TimberWolf の shownews.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-6778 2012-12-20 18:02 2006-12-27 Show GitHub Exploit DB Packet Storm
231508 9.3 危険 w3m project - w3m の file.c におけるフォーマットストリングの脆弱性 CWE-134
書式文字列の問題 		CVE-2006-6772 2012-12-20 18:02 2006-12-27 Show GitHub Exploit DB Packet Storm
231509 6.8 警告 pwp technologies - PWP Technologies The Classified Ad System の default.asp におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-6768 2012-12-20 18:02 2006-12-27 Show GitHub Exploit DB Packet Storm
231510 7.5 危険 phpmymanga - Phpmymanga の template.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2006-6760 2012-12-20 18:02 2006-12-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
293911 - ibm tivoli_endpoint_manager Unspecified vulnerability in Tivoli Endpoint Manager for Remote Control Broker 8.2 before 8.2.1-TIV-TEMRC821-IF0002 allows remote attackers to cause a denial of service (resource consumption) via unk… CWE-399
 Resource Management Errors 		CVE-2012-4841 2024-11-21 10:43 2012-11-29 Show GitHub Exploit DB Packet Storm
293912 - samsung printer_firmware The Samsung printer firmware before 20121031 has a hardcoded read-write SNMP community, which makes it easier for remote attackers to obtain administrative access via an SNMP request. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-4964 2024-11-21 10:43 2012-11-28 Show GitHub Exploit DB Packet Storm
293913 - emc it_operations_intelligence EMC Smarts Network Configuration Manager (NCM) before 9.1 uses a hardcoded encryption key for the storage of credentials, which allows local users to obtain sensitive information via unspecified vect… CWE-310
Cryptographic Issues 		CVE-2012-4615 2024-11-21 10:43 2012-11-28 Show GitHub Exploit DB Packet Storm
293914 - emc it_operations_intelligence The default configuration of EMC Smarts Network Configuration Manager (NCM) before 9.1 does not require authentication for database access, which allows remote attackers to have an unspecified impact… CWE-287
Improper Authentication 		CVE-2012-4614 2024-11-21 10:43 2012-11-28 Show GitHub Exploit DB Packet Storm
293915 - emc rsa_adaptive_authentication_on-premise Multiple cross-site scripting (XSS) vulnerabilities in EMC RSA Adaptive Authentication On-Premise (AAOP) before 7.0 allow remote attackers to inject arbitrary web script or HTML via unspecified vecto… CWE-79
Cross-site Scripting 		CVE-2012-4611 2024-11-21 10:43 2012-11-28 Show GitHub Exploit DB Packet Storm
293916 - xen xen The HVMOP_pagetable_dying hypercall in Xen 4.0, 4.1, and 4.2 does not properly check the pagetable state when running on shadow pagetables, which allows a local HVM guest OS to cause a denial of serv… CWE-20
 Improper Input Validation  		CVE-2012-4538 2024-11-21 10:43 2012-11-25 Show GitHub Exploit DB Packet Storm
293917 - ruby-lang ruby The rb_get_path_check function in file.c in Ruby 1.9.3 before patchlevel 286 and Ruby 2.0.0 before r37163 allows context-dependent attackers to create files in unexpected locations or with unexpected… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-4522 2024-11-21 10:43 2012-11-25 Show GitHub Exploit DB Packet Storm
293918 - tecnick tcexam Multiple cross-site scripting (XSS) vulnerabilities in admin/code/tce_select_users_popup.php in Nicola Asuni TCExam before 11.3.009 allow remote attackers to inject arbitrary web script or HTML via t… CWE-79
Cross-site Scripting 		CVE-2012-4602 2024-11-21 10:43 2012-11-24 Show GitHub Exploit DB Packet Storm
293919 - tecnick tcexam Multiple SQL injection vulnerabilities in Nicola Asuni TCExam before 11.3.009 allow remote authenticated users with level 5 or greater permissions to execute arbitrary SQL commands via the (1) user_g… CWE-89
SQL Injection 		CVE-2012-4601 2024-11-21 10:43 2012-11-24 Show GitHub Exploit DB Packet Storm
293920 - xen xen Xen 4.0 through 4.2, when running 32-bit x86 PV guests on 64-bit hypervisors, allows local guest OS administrators to cause a denial of service (infinite loop and hang or crash) via invalid arguments… CWE-399
 Resource Management Errors 		CVE-2012-4539 2024-11-21 10:43 2012-11-22 Show GitHub Exploit DB Packet Storm