Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 30, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
232511	7.5	危険	salims softhouse	-	forum/forum.php JAF CMS における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-7128	2012-12-20 18:18	2007-03-5	Show	GitHub Exploit DB Packet Storm

232512	6.8	警告	salims softhouse	-	JAF CMS における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2006-7127	2012-12-20 18:18	2007-03-5	Show	GitHub Exploit DB Packet Storm

232513	7.5	危険	phpgiggle	-	comscripts.com 上で配布されている J. He PHPGiggle における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-7119	2012-12-20 18:18	2007-03-5	Show	GitHub Exploit DB Packet Storm

232514	7.5	危険	PHPKIT	-	PHPKit における SQL インジェクションの脆弱性	-	CVE-2006-7115	2012-12-20 18:18	2007-03-5	Show	GitHub Exploit DB Packet Storm

232515	5	警告	planerd.net	-	P-News における重要な情報を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2006-7114	2012-12-20 18:18	2007-03-5	Show	GitHub Exploit DB Packet Storm

232516	7.5	危険	planerd.net	-	P-News における任意のコードをアップロードおよび実行される脆弱性	CWE-20 不適切な入力確認	CVE-2006-7113	2012-12-20 18:18	2007-03-5	Show	GitHub Exploit DB Packet Storm

232517	7.5	危険	powerphlogger	-	Power Phlogger の config.inc.php3 における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2006-7106	2012-12-20 18:18	2007-03-3	Show	GitHub Exploit DB Packet Storm

232518	7.5	危険	phpwind	-	PHPWind の admin.php における SQL インジェクションの脆弱性	-	CVE-2006-7101	2012-12-20 18:18	2007-03-3	Show	GitHub Exploit DB Packet Storm

232519	6.8	警告	phpBB	-	phpBB Insert User の includes/functions_mod_user.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2006-7100	2012-12-20 18:18	2007-03-3	Show	GitHub Exploit DB Packet Storm

232520	5	警告	solarpay	-	SolarPay の index.php におけるディレクトリトラバーサルの脆弱性	-	CVE-2006-7099	2012-12-20 18:18	2007-03-3	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 30, 2026, 4:16 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
291761	-	apache	struts	Apache Struts 2.0.0 through 2.3.15.1 allows remote attackers to bypass access controls via a crafted action: prefix.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-4310	2024-11-21 10:55	2013-10-1	Show	GitHub Exploit DB Packet Storm

291762	-	redhat	libvirt	The virFileNBDDeviceAssociate function in util/virfile.c in libvirt 1.1.2 and earlier allows remote authenticated users to cause a denial of service (uninitialized pointer dereference and crash) via …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2013-4297	2024-11-21 10:55	2013-10-1	Show	GitHub Exploit DB Packet Storm

291763	-	redhat canonical	libvirt ubuntu_linux enterprise_linux	The remoteDispatchDomainMemoryStats function in daemon/remote.c in libvirt 0.9.1 through 0.10.1.x, 0.10.2.x before 0.10.2.8, 1.0.x before 1.0.5.6, and 1.1.x before 1.1.2 allows remote authenticated u…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2013-4296	2024-11-21 10:55	2013-10-1	Show	GitHub Exploit DB Packet Storm

291764	-	redhat	libvirt	libvirt 1.1.0 and 1.1.1 allows local users to cause a denial of service (memory consumption) via a large number of domain migrate parameters in certain RPC calls in (1) daemon/remote.c and (2) remote…	CWE-399 Resource Management Errors	CVE-2013-4292	2024-11-21 10:55	2013-10-1	Show	GitHub Exploit DB Packet Storm

291765	-	redhat	libvirt	The virSecurityManagerSetProcessLabel function in libvirt 0.10.2.7, 1.0.5.5, and 1.1.1, when the domain has read an uid:gid label, does not properly set group memberships, which allows local users to…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-4291	2024-11-21 10:55	2013-10-1	Show	GitHub Exploit DB Packet Storm

291766	-	redhat	libvirt	The xenDaemonListDefinedDomains function in xen/xend_internal.c in libvirt 1.1.1 allows remote authenticated users to cause a denial of service (memory corruption and crash) via vectors involving the…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2013-4239	2024-11-21 10:55	2013-10-1	Show	GitHub Exploit DB Packet Storm

291767	-	redhat	jboss_a-mq jboss_fuse	Multiple cross-site scripting (XSS) vulnerabilities in Fuse Management Console in Red Hat JBoss Fuse 6.0.0 before patch 3 and JBoss A-MQ 6.0.0 before patch 3 allow remote attackers to inject arbitrar…	CWE-79 Cross-site Scripting	CVE-2013-4372	2024-11-21 10:55	2013-10-1	Show	GitHub Exploit DB Packet Storm

291768	-	proftpd	proftpd	Integer overflow in kbdint.c in mod_sftp in ProFTPD 1.3.4d and 1.3.5r3 allows remote attackers to cause a denial of service (memory consumption) via a large response count value in an authentication …	CWE-189 Numeric Errors	CVE-2013-4359	2024-11-21 10:55	2013-10-1	Show	GitHub Exploit DB Packet Storm

291769	-	littlecms	little_cms_color_engine	Multiple stack-based buffer overflows in LittleCMS (aka lcms or liblcms) 1.19 and earlier allow remote attackers to cause a denial of service (crash) via a crafted (1) ICC color profile to the icctra…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2013-4276	2024-11-21 10:55	2013-09-29	Show	GitHub Exploit DB Packet Storm

291770	-	libtiff	libtiff	The LZW decompressor in the gif2tiff tool in libtiff 4.0.3 and earlier allows context-dependent attackers to cause a denial of service (out-of-bounds write and crash) or possibly execute arbitrary co…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2013-4244	2024-11-21 10:55	2013-09-29	Show	GitHub Exploit DB Packet Storm