Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 24, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
232031 7.5 危険 phpwcms - phpwcms における任意のコードを実行される脆弱性 - CVE-2006-7019 2012-12-20 18:18 2007-02-14 Show GitHub Exploit DB Packet Storm
232032 7.5 危険 phpjobboard - phpjobboard における認証を回避される脆弱性 - CVE-2006-7016 2012-12-20 18:18 2007-02-14 Show GitHub Exploit DB Packet Storm
232033 10 危険 scart - SCart の scart.cgi における任意のコマンドを実行される脆弱性 - CVE-2006-7012 2012-12-20 18:18 2007-02-14 Show GitHub Exploit DB Packet Storm
232034 4.3 警告 wheatblog - wB の add_comment.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-7002 2012-12-20 18:18 2007-02-12 Show GitHub Exploit DB Packet Storm
232035 7.1 危険 phpmychat plus - PhpMyChat Plus の avatar.php におけるディレクトリトラバーサルの脆弱性 - CVE-2006-7001 2012-12-20 18:18 2007-02-12 Show GitHub Exploit DB Packet Storm
232036 4.3 警告 the war forge - warforge.NEWS におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-6996 2012-12-20 18:18 2007-02-12 Show GitHub Exploit DB Packet Storm
232037 6 警告 v3chat - V3 Chat の mycontacts.php における他のユーザとして権限を取得される脆弱性 - CVE-2006-6995 2012-12-20 18:18 2007-02-12 Show GitHub Exploit DB Packet Storm
232038 7.8 危険 softinform - FineBrowser Freeware における他のドメインから制限された情報をアクセスされる脆弱性 - CVE-2006-6987 2012-12-20 18:18 2007-02-8 Show GitHub Exploit DB Packet Storm
232039 7.5 危険 phpgraphy - phpGraphy における任意の PHP コードを実行される脆弱性 - CVE-2006-6966 2012-12-20 18:18 2007-02-3 Show GitHub Exploit DB Packet Storm
232040 6.8 警告 ウェブルート株式会社 - WebRoot Spy Sweeper におけるマルウェアを回避される脆弱性 - CVE-2006-6961 2012-12-20 18:18 2007-01-29 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 24, 2026, 4:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
293961 - neocrome seditio Neocrome Seditio build 161 allows remote attackers to obtain sensitive information via a direct request to (1) docs/new/seditio-createnew-160.sql, (2) docs/upgrade/sedito_convert_to_utf8.optional.sql… CWE-200
Information Exposure 		CVE-2012-5916 2024-11-21 10:45 2012-11-18 Show GitHub Exploit DB Packet Storm
293962 - neocrome seditio Neocrome Seditio build 161 and earlier allows remote attackers to obtain sensitive information via direct request to (1) view.php, (2) plugins/contact/lang/contact.en.lang.php, (3) system/lang/en/mai… CWE-200
Information Exposure 		CVE-2012-5915 2024-11-21 10:45 2012-11-18 Show GitHub Exploit DB Packet Storm
293963 - neocrome seditio Multiple cross-site scripting (XSS) vulnerabilities in the sed_import function in system/functions.php in Neocrome Seditio build 160 and 161 allow remote attackers to inject arbitrary web script or H… CWE-79
Cross-site Scripting 		CVE-2012-5914 2024-11-21 10:45 2012-11-18 Show GitHub Exploit DB Packet Storm
293964 - wordpress_integrator_project wordpress_integrator Cross-site scripting (XSS) vulnerability in wp-integrator.php in the WordPress Integrator module 1.32 for WordPress allows remote attackers to inject arbitrary web script or HTML via the redirect_to … CWE-79
Cross-site Scripting 		CVE-2012-5913 2024-11-21 10:45 2012-11-18 Show GitHub Exploit DB Packet Storm
293965 - pico picopublisher Multiple SQL injection vulnerabilities in PicoPublisher 2.0 allow remote attackers to execute arbitrary SQL commands via the id parameter to (1) page.php or (2) single.php. CWE-89
SQL Injection 		CVE-2012-5912 2024-11-21 10:45 2012-11-18 Show GitHub Exploit DB Packet Storm
293966 - b2evolution b2evolution Cross-site scripting (XSS) vulnerability in blogs/blog1.php in b2evolution 4.1.3 allows remote attackers to inject arbitrary web script or HTML via the message body. CWE-79
Cross-site Scripting 		CVE-2012-5911 2024-11-21 10:45 2012-11-18 Show GitHub Exploit DB Packet Storm
293967 - b2evolution b2evolution SQL injection vulnerability in blogs/htsrv/viewfile.php in b2evolution 4.1.3 allows remote authenticated users to execute arbitrary SQL commands via the root parameter. CWE-89
SQL Injection 		CVE-2012-5910 2024-11-21 10:45 2012-11-18 Show GitHub Exploit DB Packet Storm
293968 - mybb mybb SQL injection vulnerability in admin/modules/user/users.php in MyBB (aka MyBulletinBoard) 1.6.6 allows remote attackers to execute arbitrary SQL commands via the conditions[usergroup][] parameter in … CWE-89
SQL Injection 		CVE-2012-5909 2024-11-21 10:45 2012-11-18 Show GitHub Exploit DB Packet Storm
293969 - mybb mybb Cross-site scripting (XSS) vulnerability in admin/modules/user/users.php in MyBB (aka MyBulletinBoard) 1.6.6 allows remote attackers to inject arbitrary web script or HTML via the conditions[usergrou… CWE-79
Cross-site Scripting 		CVE-2012-5908 2024-11-21 10:45 2012-11-18 Show GitHub Exploit DB Packet Storm
293970 - tomatocart tomatocart Directory traversal vulnerability in json.php in TomatoCart 1.2.0 Alpha 2 and possibly earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the module parameter in a "3" acti… CWE-22
Path Traversal 		CVE-2012-5907 2024-11-21 10:45 2012-11-18 Show GitHub Exploit DB Packet Storm