Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
232271 7.5 危険 phpbbxtra - Phpbbxtra の includes/archive/archive_topic.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-6789 2012-12-20 18:02 2006-12-27 Show GitHub Exploit DB Packet Storm
232272 6.8 警告 timberwolf - TimberWolf の shownews.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-6778 2012-12-20 18:02 2006-12-27 Show GitHub Exploit DB Packet Storm
232273 9.3 危険 w3m project - w3m の file.c におけるフォーマットストリングの脆弱性 CWE-134
書式文字列の問題 		CVE-2006-6772 2012-12-20 18:02 2006-12-27 Show GitHub Exploit DB Packet Storm
232274 6.8 警告 pwp technologies - PWP Technologies The Classified Ad System の default.asp におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-6768 2012-12-20 18:02 2006-12-27 Show GitHub Exploit DB Packet Storm
232275 7.5 危険 phpmymanga - Phpmymanga の template.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2006-6760 2012-12-20 18:02 2006-12-26 Show GitHub Exploit DB Packet Storm
232276 2.1 注意 phpprofiles - phpProfiles におけるディレクトリコンテンツをリスト化される脆弱性 - CVE-2006-6744 2012-12-20 18:02 2006-12-26 Show GitHub Exploit DB Packet Storm
232277 4.6 警告 phpprofiles - phpProfiles におけるファイルを削除される脆弱性 - CVE-2006-6743 2012-12-20 18:02 2006-12-26 Show GitHub Exploit DB Packet Storm
232278 7.5 危険 phpprofiles - phpProfiles における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2006-6740 2012-12-20 18:02 2006-12-26 Show GitHub Exploit DB Packet Storm
232279 5 警告 phpbuilder - PHPBuilder におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2006-6725 2012-12-20 18:02 2006-12-26 Show GitHub Exploit DB Packet Storm
232280 5.1 警告 powerscripts - PowerClan の footer.inc.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-6715 2012-12-20 18:02 2006-12-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
294011 - alejandro_garza apachesolr_autocomplete Cross-site scripting (XSS) vulnerability in the Apache Solr Autocomplete module 6.x-1.x before 6.x-1.4 and 7.x-1.x before 7.x-1.3 for Drupal allows remote attackers to inject arbitrary web script or … CWE-79
Cross-site Scripting 		CVE-2012-6573 2024-11-21 10:46 2013-06-26 Show GitHub Exploit DB Packet Storm
294012 - kong inf08 Cross-site scripting (XSS) vulnerability in the phptemplate_preprocess_node function in template.php in the Inf08 theme 6.x-1.x before 6.x-1.10 for Drupal allows remote authenticated users with the "… CWE-79
Cross-site Scripting 		CVE-2012-6572 2024-11-21 10:46 2013-06-22 Show GitHub Exploit DB Packet Storm
294013 - huawei ar_19\/29\/49
ar_18-2x
ar_18-3x
ar_28\/46
ar_18-1x
s2300
s8500
s3300hi
s3500
s5100
s3000
s5600
s3900
s3300
s3700
s2700
s7800
s2000 		The HTTP module in the (1) Branch Intelligent Management System (BIMS) and (2) web management components on Huawei AR routers and S2000, S3000, S3500, S3900, S5100, S5600, and S7800 switches uses pre… CWE-310
Cryptographic Issues 		CVE-2012-6571 2024-11-21 10:46 2013-06-21 Show GitHub Exploit DB Packet Storm
294014 - huawei ar_19\/29\/49
ar_18-2x
ar_18-3x
ar_28\/46
ar_18-1x
s2300
s8500
s3300hi
s3500
s5100
s3000
s5600
s3900
s3300
s3700
s2700
s7800
s2000 		The HTTP module in the (1) Branch Intelligent Management System (BIMS) and (2) web management components on Huawei AR routers and S2000, S3000, S3500, S3900, S5100, S5600, S7800, and S8500 switches d… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-6570 2024-11-21 10:46 2013-06-21 Show GitHub Exploit DB Packet Storm
294015 - huawei ar_19\/29\/49
ar_18-2x
ar_18-3x
ar_28\/46
ar_18-1x
s2300
s8500
s3300hi
s3500
s5100
s3000
s5600
s3900
s3300
s3700
s2700
s7800
s2000 		Stack-based buffer overflow in the HTTP module in the (1) Branch Intelligent Management System (BIMS) and (2) web management components on Huawei AR routers and S2000, S3000, S3500, S3900, S5100, S56… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-6569 2024-11-21 10:46 2013-06-21 Show GitHub Exploit DB Packet Storm
294016 - huawei utps Buffer overflow in the back-end component in Huawei UTPS 1.0 allows local users to gain privileges via a long IDS_PLUGIN_NAME string in a plug-in configuration file. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-6568 2024-11-21 10:46 2013-06-21 Show GitHub Exploit DB Packet Storm
294017 - project-redcap redcap REDCap before 4.14.0 allows remote authenticated users to execute arbitrary commands via shell metacharacters in the logic of a custom rule. CWE-20
 Improper Input Validation  		CVE-2012-6567 2024-11-21 10:46 2013-06-17 Show GitHub Exploit DB Packet Storm
294018 - vanderbilt redcap Cross-site scripting (XSS) vulnerability in REDCap before 4.14.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. CWE-79
Cross-site Scripting 		CVE-2012-6566 2024-11-21 10:46 2013-06-17 Show GitHub Exploit DB Packet Storm
294019 - vanderbilt redcap Cross-site scripting (XSS) vulnerability in REDCap before 4.14.3 allows remote authenticated users to inject arbitrary web script or HTML via uppercase characters in JavaScript events within user-def… CWE-79
Cross-site Scripting 		CVE-2012-6565 2024-11-21 10:46 2013-06-17 Show GitHub Exploit DB Packet Storm
294020 - vanderbilt redcap Cross-site scripting (XSS) vulnerability in REDCap before 4.14.5 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. CWE-79
Cross-site Scripting 		CVE-2012-6564 2024-11-21 10:46 2013-06-17 Show GitHub Exploit DB Packet Storm