Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 24, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
232471 5.1 警告 webmedia explorer - Webmedia Explorer の includes/core.lib.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5252 2012-12-20 18:02 2006-10-12 Show GitHub Exploit DB Packet Storm
232472 7.5 危険 tagit - tagit2b の tagmin/delTagUser.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5249 2012-12-20 18:02 2006-10-11 Show GitHub Exploit DB Packet Storm
232473 7.8 危険 Polycom - Polycom SoundPoint IP 301 VoIP Desktop Phone におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-5233 2012-12-20 18:02 2006-10-10 Show GitHub Exploit DB Packet Storm
232474 7.5 危険 rob hensley - Rob Hensley ackerTodo の Google Gadget login.php における SQL インジェクションの脆弱性 - CVE-2006-5228 2012-12-20 18:02 2006-10-10 Show GitHub Exploit DB Packet Storm
232475 6.8 警告 TorrentFlux - TorrentFlux の admin.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-5227 2012-12-20 18:02 2006-10-10 Show GitHub Exploit DB Packet Storm
232476 7.5 危険 sergey lyubka - Sergey Lyubka Simple HTTPD におけるスタックベースのバッファオーバーフローの脆弱性 - CVE-2006-5216 2012-12-20 18:02 2006-10-10 Show GitHub Exploit DB Packet Storm
232477 5 警告 トレンドマイクロ - SMB および OSCE 用の CSM Suite におけるファイルを削除される脆弱性 - CVE-2006-5212 2012-12-20 18:02 2006-04-21 Show GitHub Exploit DB Packet Storm
232478 6.4 警告 トレンドマイクロ - SMB および OSCE 用の CSM Suite における OfficeScan クライアントを除去される脆弱性 - CVE-2006-5211 2012-12-20 18:02 2006-04-21 Show GitHub Exploit DB Packet Storm
232479 7.5 危険 phpBB - phpBB に使用されている Admin Topic Action Logging Mod における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5209 2012-12-20 18:02 2006-10-10 Show GitHub Exploit DB Packet Storm
232480 5.1 警告 phpmyteam - phpMyTeam の images/smileys/smileys_packs.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5207 2012-12-20 18:02 2006-10-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 25, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
293661 9.8 CRITICAL
Network 		zpanelcp zpanel ZPanel 10.0.1 has insufficient entropy for its password reset process. CWE-798
CWE-640
 Use of Hard-coded Credentials
 Weak Password Recovery Mechanism for Forgotten Password 		CVE-2012-5686 2024-11-21 10:45 2020-02-4 Show GitHub Exploit DB Packet Storm
293662 6.1 MEDIUM
Network 		roundup-tracker roundup Multiple cross-site scripting (XSS) vulnerabilities in Roundup before 1.4.20 allow remote attackers to inject arbitrary web script or HTML via the (1) @ok_message or (2) @error_message parameter to i… CWE-79
Cross-site Scripting 		CVE-2012-6133 2024-11-21 10:45 2020-01-31 Show GitHub Exploit DB Packet Storm
293663 5.4 MEDIUM
Network 		dokeos dokeos Dokeos 2.1.1 has multiple XSS issues involving "extra_" parameters in main/auth/profile.php. CWE-79
Cross-site Scripting 		CVE-2012-5776 2024-11-21 10:45 2020-01-30 Show GitHub Exploit DB Packet Storm
293664 5.5 MEDIUM
Local 		git-extras_project git-extras The git-changelog utility in git-extras 1.7.0 allows local users to overwrite arbitrary files via a symlink attack on (1) /tmp/changelog or (2) /tmp/.git-effort. CWE-59
Link Following 		CVE-2012-6114 2024-11-21 10:45 2020-01-29 Show GitHub Exploit DB Packet Storm
293665 7.8 HIGH
Local 		soapbox_project soapbox Soapbox through 0.3.1: Sandbox bypass - runs a second instance of Soapbox within a sandboxed Soapbox. CWE-269
 Improper Privilege Management 		CVE-2012-6302 2024-11-21 10:45 2020-01-25 Show GitHub Exploit DB Packet Storm
293666 7.5 HIGH
Network 		freeciv freeciv Freeciv before 2.3.3 allows remote attackers to cause a denial of service via a crafted packet. CWE-400
 Uncontrolled Resource Consumption 		CVE-2012-6083 2024-11-21 10:45 2020-01-24 Show GitHub Exploit DB Packet Storm
293667 9.8 CRITICAL
Network 		ht_editor_project ht_editor HT Editor 2.0.20 has a Remote Stack Buffer Overflow Vulnerability CWE-787
 Out-of-bounds Write 		CVE-2012-5867 2024-11-21 10:45 2020-01-24 Show GitHub Exploit DB Packet Storm
293668 9.8 CRITICAL
Network 		babygekko babygekko BabyGekko before 1.2.4 allows PHP file inclusion. CWE-20
 Improper Input Validation  		CVE-2012-5699 2024-11-21 10:45 2020-01-24 Show GitHub Exploit DB Packet Storm
293669 8.8 HIGH
Network 		babygekko babygekko BabyGekko before 1.2.4 has SQL injection. CWE-89
SQL Injection 		CVE-2012-5698 2024-11-21 10:45 2020-01-24 Show GitHub Exploit DB Packet Storm
293670 9.8 CRITICAL
Network 		bulbsecurity smartphone_pentest_framework Bulb Security Smartphone Pentest Framework (SPF) 0.1.2 through 0.1.4 allows remote attackers to execute arbitrary commands via shell metacharacters in the hostingPath parameter to (1) SEAttack.pl or … CWE-78
OS Command  		CVE-2012-5878 2024-11-21 10:45 2020-01-4 Show GitHub Exploit DB Packet Storm