Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 19, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
231851	7.5	危険	phpoutsourcing	-	PHPOutsourcing Zorum の gorum/dbproperty.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5431	2012-12-20 18:02	2006-10-20	Show	GitHub Exploit DB Packet Storm

231852	5	警告	xorp	-	XORP におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-5425	2012-12-20 18:02	2006-10-17	Show	GitHub Exploit DB Packet Storm

231853	7.5	危険	wsnlinks	-	WSN Forum における任意の PHP コードを実行される脆弱性	-	CVE-2006-5421	2012-12-20 18:02	2006-10-20	Show	GitHub Exploit DB Packet Storm

231854	7.5	危険	university of glasgow	-	University of Glasgow SID の client.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5419	2012-12-20 18:02	2006-10-20	Show	GitHub Exploit DB Packet Storm

231855	6.8	警告	phpBB	-	phpBB 用の SearchIndexer の pbpbb アーカイブにおける PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2006-5418	2012-12-20 18:02	2006-10-20	Show	GitHub Exploit DB Packet Storm

231856	7.5	危険	supermod	-	YaBBSM 用の SuperMod における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5413	2012-12-20 18:02	2006-10-20	Show	GitHub Exploit DB Packet Storm

231857	6.2	警告	東芝	-	複数製品に使用される Toshiba Bluetooth ワイアレスデバイスドライバにおけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-5405	2012-12-20 18:02	2006-10-18	Show	GitHub Exploit DB Packet Storm

231858	2.6	注意	シマンテック	-	Norton AntiVirus などの Symantec Automated Support Assistant で使用される ActiveX コントロールにおける重要な情報を取得される脆弱性	-	CVE-2006-5404	2012-12-20 18:02	2006-10-5	Show	GitHub Exploit DB Packet Storm

231859	5.1	警告	シマンテック	-	Norton AntiVirus などの Symantec Automated Support Assistant で使用される ActiveX コントロールにおけるスタックベースのバッファオーバーフローの脆弱性	-	CVE-2006-5403	2012-12-20 18:02	2006-10-5	Show	GitHub Exploit DB Packet Storm

231860	7.5	危険	phpmybibli	-	PHPmybibli における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2006-5402	2012-12-20 18:02	2006-10-18	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
293851	7.8	HIGH Local	toshiba	configfree_utility	Multiple stack-based buffer overflows in CFProfile.exe in Toshiba ConfigFree Utility 8.0.38 allow user-assisted attackers to execute arbitrary code.	CWE-787 Out-of-bounds Write	CVE-2012-4980	2024-11-21 10:43	2019-12-28	Show	GitHub Exploit DB Packet Storm

293852	7.8	HIGH Local	freebsd debian	freebsd debian_linux	FreeBSD: Input Validation Flaw allows local users to gain elevated privileges	CWE-20 Improper Input Validation	CVE-2012-4576	2024-11-21 10:43	2019-12-3	Show	GitHub Exploit DB Packet Storm

293853	6.1	MEDIUM Network	piwigo	piwigo	piwigo has XSS in password.php (incomplete fix for CVE-2012-4525)	CWE-79 Cross-site Scripting	CVE-2012-4526	2024-11-21 10:43	2019-12-3	Show	GitHub Exploit DB Packet Storm

293854	6.1	MEDIUM Network	piwigo	piwigo	piwigo has XSS in password.php	CWE-79 Cross-site Scripting	CVE-2012-4525	2024-11-21 10:43	2019-12-3	Show	GitHub Exploit DB Packet Storm

293855	7.5	HIGH Network	sillycycle fedoraproject	xlockmore fedora	xlockmore before 5.43 'dclock' security bypass vulnerability	CWE-20 Improper Input Validation	CVE-2012-4524	2024-11-21 10:43	2019-11-22	Show	GitHub Exploit DB Packet Storm

293856	9.8	CRITICAL Network	letodms_project	letodms	SQL injection vulnerability in LetoDMS_Core/Core/inc.ClassDMS.php in LetoDMS (formerly MyDMS) before 3.3.8 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.	CWE-89 SQL Injection	CVE-2012-4570	2024-11-21 10:43	2017-10-24	Show	GitHub Exploit DB Packet Storm

293857	6.1	MEDIUM Network	letodms_project	letodms	Multiple cross-site scripting (XSS) vulnerabilities in out/out.UsrMgr.php in LetoDMS (formerly MyDMS) before 3.3.9 allow remote attackers to inject arbitrary web script or HTML via unspecified vector…	CWE-79 Cross-site Scripting	CVE-2012-4569	2024-11-21 10:43	2017-10-24	Show	GitHub Exploit DB Packet Storm

293858	8.8	HIGH Network	letodms_project	letodms	Multiple cross-site request forgery (CSRF) vulnerabilities in LetoDMS (formerly MyDMS) before 3.3.8 allow remote attackers to hijack the authentication of unspecified victims via unknown vectors.	CWE-352 Origin Validation Error	CVE-2012-4568	2024-11-21 10:43	2017-10-24	Show	GitHub Exploit DB Packet Storm

293859	6.1	MEDIUM Network	letodms_project	letodms	Multiple cross-site scripting (XSS) vulnerabilities in LetoDMS (formerly MyDMS) before 3.3.8 allow remote attackers to inject arbitrary web script or HTML via unspecified parameters in (1) inc/inc.Cl…	CWE-79 Cross-site Scripting	CVE-2012-4567	2024-11-21 10:43	2017-10-24	Show	GitHub Exploit DB Packet Storm

293860	6.5	MEDIUM Network	cisco	ios	Cisco IOS before 15.2(4)S6 does not initialize an unspecified variable, which might allow remote authenticated users to cause a denial of service (CPU consumption, watchdog timeout, crash) by walking…	CWE-399 Resource Management Errors	CVE-2012-5030	2024-11-21 10:43	2017-08-3	Show	GitHub Exploit DB Packet Storm