Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 9, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
232181	10	危険	TestLink Development Team	-	TestLink における脆弱性	CWE-287 不適切な認証	CVE-2007-6006	2012-12-20 18:33	2007-11-15	Show	GitHub Exploit DB Packet Storm

232182	4.3	警告	webex communications	-	WebEx の GpcContainer.GpcContainer.1 ActiveX コントロールにおけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2007-6005	2012-12-20 18:33	2007-11-15	Show	GitHub Exploit DB Packet Storm

232183	7.5	危険	toko	-	Toko Instan の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-6004	2012-12-20 18:33	2007-11-15	Show	GitHub Exploit DB Packet Storm

232184	4.3	警告	Thomson	-	Thomson SpeedTouch 716 の cgi/b/ic/connect におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-6003	2012-12-20 18:33	2007-11-15	Show	GitHub Exploit DB Packet Storm

232185	7.5	危険	SoftbizScripts	-	Softbiz Auctions Script の product_desc.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-5999	2012-12-20 18:33	2007-11-15	Show	GitHub Exploit DB Packet Storm

232186	4.3	警告	Trolltech	-	Trolltech Qt の QSslSocket における偽装サービスの無効なサーバ証明書を承認するようにユーザを騙す脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2007-5965	2012-12-20 18:33	2008-01-7	Show	GitHub Exploit DB Packet Storm

232187	4.3	警告	レッドハット	-	RHN および Red Hat Network Satellite で使用されている Red Hat Network チャンネル検索機能におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-5961	2012-12-20 18:33	2008-05-20	Show	GitHub Exploit DB Packet Storm

232188	6.5	警告	SoftbizScripts	-	Softbiz Ad Management plus Script の ads.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-5998	2012-12-20 18:33	2007-11-15	Show	GitHub Exploit DB Packet Storm

232189	6.5	警告	SoftbizScripts	-	Softbiz Banner Exchange Network Script の campaign_stats.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-5997	2012-12-20 18:33	2007-11-15	Show	GitHub Exploit DB Packet Storm

232190	7.5	危険	SoftbizScripts	-	Softbiz Link Directory Script の searchresult.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-5996	2012-12-20 18:33	2007-11-15	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 9, 2026, 4:16 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
298071	-	neocrome	seditio	Neocrome Seditio build 161 allows remote attackers to obtain sensitive information via a direct request to (1) docs/new/seditio-createnew-160.sql, (2) docs/upgrade/sedito_convert_to_utf8.optional.sql…	CWE-200 Information Exposure	CVE-2012-5916	2024-11-21 10:45	2012-11-18	Show	GitHub Exploit DB Packet Storm

298072	-	neocrome	seditio	Neocrome Seditio build 161 and earlier allows remote attackers to obtain sensitive information via direct request to (1) view.php, (2) plugins/contact/lang/contact.en.lang.php, (3) system/lang/en/mai…	CWE-200 Information Exposure	CVE-2012-5915	2024-11-21 10:45	2012-11-18	Show	GitHub Exploit DB Packet Storm

298073	-	neocrome	seditio	Multiple cross-site scripting (XSS) vulnerabilities in the sed_import function in system/functions.php in Neocrome Seditio build 160 and 161 allow remote attackers to inject arbitrary web script or H…	CWE-79 Cross-site Scripting	CVE-2012-5914	2024-11-21 10:45	2012-11-18	Show	GitHub Exploit DB Packet Storm

298074	-	wordpress_integrator_project	wordpress_integrator	Cross-site scripting (XSS) vulnerability in wp-integrator.php in the WordPress Integrator module 1.32 for WordPress allows remote attackers to inject arbitrary web script or HTML via the redirect_to …	CWE-79 Cross-site Scripting	CVE-2012-5913	2024-11-21 10:45	2012-11-18	Show	GitHub Exploit DB Packet Storm

298075	-	pico	picopublisher	Multiple SQL injection vulnerabilities in PicoPublisher 2.0 allow remote attackers to execute arbitrary SQL commands via the id parameter to (1) page.php or (2) single.php.	CWE-89 SQL Injection	CVE-2012-5912	2024-11-21 10:45	2012-11-18	Show	GitHub Exploit DB Packet Storm

298076	-	b2evolution	b2evolution	Cross-site scripting (XSS) vulnerability in blogs/blog1.php in b2evolution 4.1.3 allows remote attackers to inject arbitrary web script or HTML via the message body.	CWE-79 Cross-site Scripting	CVE-2012-5911	2024-11-21 10:45	2012-11-18	Show	GitHub Exploit DB Packet Storm

298077	-	b2evolution	b2evolution	SQL injection vulnerability in blogs/htsrv/viewfile.php in b2evolution 4.1.3 allows remote authenticated users to execute arbitrary SQL commands via the root parameter.	CWE-89 SQL Injection	CVE-2012-5910	2024-11-21 10:45	2012-11-18	Show	GitHub Exploit DB Packet Storm

298078	-	mybb	mybb	SQL injection vulnerability in admin/modules/user/users.php in MyBB (aka MyBulletinBoard) 1.6.6 allows remote attackers to execute arbitrary SQL commands via the conditions[usergroup][] parameter in …	CWE-89 SQL Injection	CVE-2012-5909	2024-11-21 10:45	2012-11-18	Show	GitHub Exploit DB Packet Storm

298079	-	mybb	mybb	Cross-site scripting (XSS) vulnerability in admin/modules/user/users.php in MyBB (aka MyBulletinBoard) 1.6.6 allows remote attackers to inject arbitrary web script or HTML via the conditions[usergrou…	CWE-79 Cross-site Scripting	CVE-2012-5908	2024-11-21 10:45	2012-11-18	Show	GitHub Exploit DB Packet Storm

298080	-	tomatocart	tomatocart	Directory traversal vulnerability in json.php in TomatoCart 1.2.0 Alpha 2 and possibly earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the module parameter in a "3" acti…	CWE-22 Path Traversal	CVE-2012-5907	2024-11-21 10:45	2012-11-18	Show	GitHub Exploit DB Packet Storm