Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 18, 2026, 4:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
232401	7.5	危険	rabox	-	Winlpd におけるスタックベースのバッファオーバーフローの脆弱性	-	CVE-2006-3670	2012-12-20 18:02	2006-07-18	Show	GitHub Exploit DB Packet Storm

232402	2.1	注意	mercury messenger	-	Mercury Messenger における他のユーザからチャットログを読まれる脆弱性	-	CVE-2006-3669	2012-12-20 18:02	2006-07-18	Show	GitHub Exploit DB Packet Storm

232403	7.6	危険	dynamic universal music bibliotheque	-	DUMB の it_read_envelope 関数内におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2006-3668	2012-12-20 18:02	2006-07-18	Show	GitHub Exploit DB Packet Storm

232404	10	危険	サイベース	-	Sybase/Financial Fusion Consumer Banking Suite における脆弱性	-	CVE-2006-3667	2012-12-20 18:02	2006-07-18	Show	GitHub Exploit DB Packet Storm

232405	7.5	危険	myiosoft.com	-	AjaxPortal における SQL インジェクションの脆弱性	-	CVE-2006-3666	2012-12-20 18:02	2006-07-18	Show	GitHub Exploit DB Packet Storm

232406	4.3	警告	SquirrelMail Project	-	SquirrelMail におけるクッキーをハイジャックされる脆弱性	-	CVE-2006-3665	2012-12-20 18:02	2006-07-18	Show	GitHub Exploit DB Packet Storm

232407	4.6	警告	finjan	-	Finjan Vital Security Appliance における権限を取得される脆弱性	-	CVE-2006-3663	2012-12-20 18:02	2006-07-18	Show	GitHub Exploit DB Packet Storm

232408	5.8	警告	pixelated by lev	-	PBL Guestbook の pblguestbook.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-3617	2012-12-20 18:02	2006-07-18	Show	GitHub Exploit DB Packet Storm

232409	4.3	警告	carbonize	-	Carbonize Lazarus Guestbook におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-3616	2012-12-20 18:02	2006-07-18	Show	GitHub Exploit DB Packet Storm

232410	5.1	警告	Phorum	-	Phorum における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-3615	2012-12-20 18:02	2006-07-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
292491	-		adobe	acrobat acrobat_reader	Heap-based buffer overflow in Adobe Reader and Acrobat 9.x before 9.5.3, 10.x before 10.1.5, and 11.x before 11.0.1 allows attackers to execute arbitrary code via unspecified vectors, a different vul…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2013-0604	2024-11-21 10:47	2013-01-10	Show	GitHub Exploit DB Packet Storm

292492	-		adobe	acrobat acrobat_reader	Heap-based buffer overflow in Adobe Reader and Acrobat 9.x before 9.5.3, 10.x before 10.1.5, and 11.x before 11.0.1 allows attackers to execute arbitrary code via unspecified vectors, a different vul…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2013-0603	2024-11-21 10:47	2013-01-10	Show	GitHub Exploit DB Packet Storm

292493	-		adobe	acrobat acrobat_reader	Use-after-free vulnerability in Adobe Reader and Acrobat 9.x before 9.5.3, 10.x before 10.1.5, and 11.x before 11.0.1 allows attackers to execute arbitrary code via unspecified vectors.	CWE-399 Resource Management Errors	CVE-2013-0602	2024-11-21 10:47	2013-01-10	Show	GitHub Exploit DB Packet Storm

292494	-		adobe	acrobat acrobat_reader	Adobe Reader and Acrobat 9.x before 9.5.3, 10.x before 10.1.5, and 11.x before 11.0.1 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vector…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2013-0601	2024-11-21 10:47	2013-01-10	Show	GitHub Exploit DB Packet Storm

292495	-		-	-	Multiple directory traversal vulnerabilities in the TFTP Server in Distinct Intranet Servers 3.10 and earlier allow remote attackers to read or write arbitrary files via a .. (dot dot) in the (1) get…	-	CVE-2012-6664	2024-11-21 10:46	2024-06-22	Show	GitHub Exploit DB Packet Storm

292496	7.5	HIGH Network	nokogiri redhat	nokogiri openstack cloudforms_management_engine satellite subscription_asset_manager openshift openstack_foreman enterprise_mrg	Nokogiri before 1.5.4 is vulnerable to XXE attacks	CWE-776 XML Entity Expansion	CVE-2012-6685	2024-11-21 10:46	2020-02-20	Show	GitHub Exploit DB Packet Storm

292497	7.2	HIGH Network	dlink	dsr-250n_firmware	D-Link DSR-250N devices before 1.08B31 allow remote authenticated users to obtain "persistent root access" via the BusyBox CLI, as demonstrated by overwriting the super user password.	CWE-862 Missing Authorization	CVE-2012-6614	2024-11-21 10:46	2020-02-20	Show	GitHub Exploit DB Packet Storm

292498	6.3	MEDIUM Network	socialengine	socialengine	Multiple cross-site request forgery (CSRF) vulnerabilities in the (1) Forum, (2) Event, and (3) Classifieds plugins in SocialEngine before 4.2.4.	CWE-352 Origin Validation Error	CVE-2012-6721	2024-11-21 10:46	2020-02-12	Show	GitHub Exploit DB Packet Storm

292499	6.1	MEDIUM Network	socialengine	socialengine	Multiple cross-site scripting (XSS) vulnerabilities in SocialEngine before 4.2.4 allow remote attackers to inject arbitrary web script or HTML via the (1) title parameter to music/create, (2) locatio…	CWE-79 Cross-site Scripting	CVE-2012-6720	2024-11-21 10:46	2020-02-12	Show	GitHub Exploit DB Packet Storm

292500	9.8	CRITICAL Network	polycom	hdx_system_software	An issue was discovered in Polycom Web Management Interface G3/HDX 8000 HD with Durango 2.6.0 4740 software and embedded Polycom Linux Development Platform 2.14.g3. It has a blank administrative pass…	CWE-798 Use of Hard-coded Credentials	CVE-2012-6611	2024-11-21 10:46	2020-02-11	Show	GitHub Exploit DB Packet Storm