Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
232091	6.8	警告	openfreeway	-	Freeway の admin/create_order_new.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2008-3769	2012-09-25 17:17	2008-08-22	Show	GitHub Exploit DB Packet Storm

232092	4.3	警告	lussumo	-	Vanilla のサインアウトページにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2008-3760	2012-09-25 17:17	2008-08-21	Show	GitHub Exploit DB Packet Storm

232093	7.5	危険	lussumo	-	Vanilla の ajax/UpdateCheck.php におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2008-3759	2012-09-25 17:17	2008-08-21	Show	GitHub Exploit DB Packet Storm

232094	4.3	警告	lussumo	-	Lussumo Vanilla におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-3758	2012-09-25 17:17	2008-08-21	Show	GitHub Exploit DB Packet Storm

232095	7.5	危険	lbstone	-	APB の view_group.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3748	2012-09-25 17:17	2008-08-21	Show	GitHub Exploit DB Packet Storm

232096	9.3	危険	Ipswitch, Inc.	-	Ipswitch WS_FTP Home 2007 などにおけるフォーマットストリングの脆弱性	CWE-134 書式文字列の問題	CVE-2008-3734	2012-09-25 17:17	2008-08-20	Show	GitHub Exploit DB Packet Storm

232097	4.3	警告	nordicwind	-	NOAH におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-3730	2012-09-25 17:17	2008-08-20	Show	GitHub Exploit DB Packet Storm

232098	4.9	警告	Linux	-	Linux kernel の net/ipv6/route.c におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2008-3686	2012-09-25 17:17	2008-08-13	Show	GitHub Exploit DB Packet Storm

232099	7.5	危険	Joomla!	-	Joomla! 用の components/com_user/models/reset.php におけるユーザをリセットされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-3681	2012-09-25 17:17	2008-08-12	Show	GitHub Exploit DB Packet Storm

232100	4.3	警告	idevSpot	-	IDevSpot PhpLinkExchange の index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-3679	2012-09-25 17:17	2008-08-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 20, 2026, 4:09 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
300091	-	freebsd	freebsd	Integer signedness error in FreeBSD 6.0-RELEASE allows local users to cause a denial of service (memory corruption and kernel panic) via a PT_LWPINFO ptrace command with a large negative data value t…	NVD-CWE-Other	CVE-2006-4516	2017-07-20 10:33	2006-10-12	Show	GitHub Exploit DB Packet Storm

300092	-	novell	imanager	Novell iManager 2.5 and 2.0.2 allows remote attackers to cause a denial of service (crash) in the Tomcat server via a long TREE parameter in an HTTP POST, which triggers a NULL pointer dereference.	CWE-189 CWE-399 Numeric Errors Resource Management Errors	CVE-2006-4517	2017-07-20 10:33	2006-11-2	Show	GitHub Exploit DB Packet Storm

300093	-	novell	imanager	This vulnerability is addressed in the following product release: Novell, iManager, 2.6	CWE-189 CWE-399 Numeric Errors Resource Management Errors	CVE-2006-4517	2017-07-20 10:33	2006-11-2	Show	GitHub Exploit DB Packet Storm

300094	-	qbik	wingate	Qbik WinGate 6.1.4 and earlier allows remote attackers to cause a denial of service (CPU consumption) via a DNS request with a self-referencing compressed name pointer, which triggers an infinite loo…	NVD-CWE-Other	CVE-2006-4518	2017-07-20 10:33	2006-11-29	Show	GitHub Exploit DB Packet Storm

300095	-	novell	edirectory	ncp in Novell eDirectory before 8.7.3 SP9, and 8.8.x before 8.8.1 FTF2, does not properly handle NCP fragments with a negative length, which allows remote attackers to cause a denial of service (daem…	NVD-CWE-Other	CVE-2006-4520	2017-07-20 10:33	2007-05-1	Show	GitHub Exploit DB Packet Storm

300096	-	novell	edirectory	The BerDecodeLoginDataRequest function in the libnmasldap.so NMAS module in Novell eDirectory 8.8 and 8.8.1 before the Security Services 2.0.3 patch does not properly increment a pointer when handlin…	NVD-CWE-Other	CVE-2006-4521	2017-07-20 10:33	2006-11-4	Show	GitHub Exploit DB Packet Storm

300097	-	dec	dec_openvms_alpha	NET$SESSION_CONTROL.EXE in DECnet-Plus in OpenVMS ALPHA 7.3-2 and Alpha 8.2 writes a password to an audit log file when there is a successful connection after a "network breakin" event, which allows …	CWE-200 Information Exposure	CVE-2006-4537	2017-07-20 10:33	2006-09-6	Show	GitHub Exploit DB Packet Storm

300098	-	learn.com	learncenter	Cross-site scripting (XSS) vulnerability in learncenter.asp in Learn.com LearnCenter allows remote attackers to inject arbitrary web script or HTML via the id parameter.	NVD-CWE-Other	CVE-2006-4540	2017-07-20 10:33	2006-09-6	Show	GitHub Exploit DB Packet Storm

300099	-	usermin webmin	usermin webmin	Webmin before 1.296 and Usermin before 1.226 do not properly handle a URL with a null ("%00") character, which allows remote attackers to conduct cross-site scripting (XSS), read CGI program source c…	CWE-79 Cross-site Scripting	CVE-2006-4542	2017-07-20 10:33	2006-09-6	Show	GitHub Exploit DB Packet Storm

300100	-	usermin webmin	usermin webmin	This vulnerability is addressed in the following product releases: Webmin, Webmin, 1.296 Usermin, Usermin, 1.226	CWE-79 Cross-site Scripting	CVE-2006-4542	2017-07-20 10:33	2006-09-6	Show	GitHub Exploit DB Packet Storm