Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 23, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
232771	7.5	危険	xennobb	-	XennoBB の profile.php における SQL インジェクションの脆弱性	-	CVE-2006-4025	2012-12-20 18:02	2006-08-8	Show	GitHub Exploit DB Packet Storm

232772	2.6	注意	scatterchat	-	ScatterChat の cryptographic モジュールにおける大量のメッセージのパターンを特定される脆弱性	-	CVE-2006-4021	2012-12-20 18:02	2006-08-17	Show	GitHub Exploit DB Packet Storm

232773	4.3	警告	toenda software development	-	toendaCMS stable および unstable の /toendaCMS におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-4016	2012-12-20 18:02	2006-08-7	Show	GitHub Exploit DB Packet Storm

232774	5	警告	シマンテック	-	SBAS におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-4014	2012-12-20 18:02	2006-07-27	Show	GitHub Exploit DB Packet Storm

232775	7.6	危険	シマンテック	-	SBAS におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2006-4013	2012-12-20 18:02	2006-07-27	Show	GitHub Exploit DB Packet Storm

232776	5.1	警告	savewebportal	-	circeOS SaveWeb Portal における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4012	2012-12-20 18:02	2006-08-7	Show	GitHub Exploit DB Packet Storm

232777	7.5	危険	VWar	-	Vwar の war.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2006-4010	2012-12-20 18:02	2006-08-7	Show	GitHub Exploit DB Packet Storm

232778	4.3	警告	VWar	-	Vwar の war.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-4009	2012-12-20 18:02	2006-08-7	Show	GitHub Exploit DB Packet Storm

232779	6.4	警告	vbportal	-	vbPortal の index.php におけるディレクトリトラバーサルの脆弱性	-	CVE-2006-4004	2012-12-20 18:02	2006-08-7	Show	GitHub Exploit DB Packet Storm

232780	7.5	危険	wowroster	-	WoWRoster の conf.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-3998	2012-12-20 18:02	2006-07-17	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
292911	-	ibm	websphere_message_broker websphere_application_server	IBM WebSphere Application Server (WAS) 7.0 before 7.0.0.29, 8.0 before 8.0.0.6, and 8.5 through 8.5.0.2 and WebSphere Message Broker 6.1, 7.0 through 7.0.0.5, and 8.0 through 8.0.0.2, when WS-Securit…	NVD-CWE-Other	CVE-2013-0482	2024-11-21 10:47	2013-05-29	Show	GitHub Exploit DB Packet Storm

292912	-	ibm	rational_directory_server	IBM Eclipse Help System (IEHS), as used in IBM Rational Directory Server 5.1.1 through 5.1.1.2 and 5.2 through 5.2.1 and other products, allows remote attackers to obtain sensitive information by pro…	CWE-200 Information Exposure	CVE-2013-0599	2024-11-21 10:47	2013-05-29	Show	GitHub Exploit DB Packet Storm

292913	-	ibm	websphere_datapower_xc10_appliance_firmware websphere_datapower_xc10_appliance websphere_datapower_service_gateway_xg45_virtual_edition_firmware websphere_datapower_service_gateway_xg45_virt…	Cross-site scripting (XSS) vulnerability in the echo functionality on IBM WebSphere DataPower SOA appliances with firmware 3.8.2, 4.0, 4.0.1, 4.0.2, and 5.0.0 allows remote attackers to inject arbitr…	CWE-79 Cross-site Scripting	CVE-2013-0499	2024-11-21 10:47	2013-05-29	Show	GitHub Exploit DB Packet Storm

292914	-	ibm	tivoli_monitoring	Cross-site scripting (XSS) vulnerability in the Tivoli Enterprise Portal browser client in IBM Tivoli Monitoring 6.2.0 through FP03, 6.2.1 through FP04, 6.2.2 through FP09, and 6.2.3 through FP02 all…	CWE-79 Cross-site Scripting	CVE-2013-0576	2024-11-21 10:47	2013-05-29	Show	GitHub Exploit DB Packet Storm

292915	-	ibm	sterling_selling_and_fulfillment_foundation sterling_multi-channel_fulfillment_solution	The Sterling Order Management APIs in IBM Sterling Multi-Channel Fulfillment Solution 8.0 before HF128 and IBM Sterling Selling and Fulfillment Foundation 8.5 before HF93, 9.0 before HF73, 9.1.0 befo…	CWE-287 Improper Authentication	CVE-2013-0578	2024-11-21 10:47	2013-05-10	Show	GitHub Exploit DB Packet Storm

292916	-	ibm	sterling_secure_proxy	IBM Sterling Secure Proxy 3.2.0 and 3.3.01 before 3.3.01.23 Interim Fix 1, 3.4.0 before 3.4.0.6 Interim Fix 1, and 3.4.1 before 3.4.1.7 allows remote authenticated users to obtain sensitive Java stac…	CWE-20 Improper Input Validation	CVE-2013-0520	2024-11-21 10:47	2013-05-10	Show	GitHub Exploit DB Packet Storm

292917	-	ibm	sterling_secure_proxy	IBM Sterling Secure Proxy 3.2.0 and 3.3.01 before 3.3.01.23 Interim Fix 1, 3.4.0 before 3.4.0.6 Interim Fix 1, and 3.4.1 before 3.4.1.7 provides web-server version data in (1) an unspecified page tit…	CWE-200 Information Exposure	CVE-2013-0519	2024-11-21 10:47	2013-05-10	Show	GitHub Exploit DB Packet Storm

292918	-	ibm	sterling_secure_proxy	IBM Sterling Secure Proxy 3.2.0 and 3.3.01 before 3.3.01.23 Interim Fix 1, 3.4.0 before 3.4.0.6 Interim Fix 1, and 3.4.1 before 3.4.1.7 does not refuse to be rendered in different-origin frames, whic…	CWE-20 Improper Input Validation	CVE-2013-0518	2024-11-21 10:47	2013-05-10	Show	GitHub Exploit DB Packet Storm

292919	-	ibm	websphere_datapower_xc10_appliance_firmware websphere_datapower_xc10_appliance	Unspecified vulnerability on IBM WebSphere DataPower XC10 Appliance devices 2.0 and 2.1 through 2.1 FP3 allows remote attackers to bypass authentication and perform administrative actions via unknown…	NVD-CWE-noinfo	CVE-2013-0600	2024-11-21 10:47	2013-05-9	Show	GitHub Exploit DB Packet Storm

292920	-	ibm	tivoli_federated_identity_manager tivoli_federated_identity_manager_business_gateway	Cross-site scripting (XSS) vulnerability in IBM Tivoli Federated Identity Manager (TFIM) 6.2.0 before 6.2.0.12, 6.2.1 before 6.2.1.5, and 6.2.2 before 6.2.2.4 and Tivoli Federated Identity Manager Bu…	CWE-79 Cross-site Scripting	CVE-2013-0582	2024-11-21 10:47	2013-05-3	Show	GitHub Exploit DB Packet Storm