Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 23, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
232791 7.5 危険 x-scripts - X-Scripts X-Protection の protect.php における SQL インジェクションの脆弱性 - CVE-2006-3959 2012-12-20 18:02 2006-08-1 Show GitHub Exploit DB Packet Storm
232792 4.3 警告 pkr internet - Taskjitsu におけるクロスサイトスクリプティングの脆弱性 CWE-noinfo
情報不足 		CVE-2006-3958 2012-12-20 18:02 2006-07-6 Show GitHub Exploit DB Packet Storm
232793 4.3 警告 total online solutions - AWBS の contact.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-3956 2012-12-20 18:02 2006-08-1 Show GitHub Exploit DB Packet Storm
232794 7.5 危険 x-scripts - X-Scripts X-Statistics の x-statistics.php における SQL インジェクションの脆弱性 - CVE-2006-3950 2012-12-20 18:02 2006-08-1 Show GitHub Exploit DB Packet Storm
232795 4.3 警告 PHPNUKE - PHP-Nuke INP の modules.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-3948 2012-12-20 18:02 2006-08-1 Show GitHub Exploit DB Packet Storm
232796 5 警告 Opera Software ASA - Windows 上で稼動する Opera の CSS 機能におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-3945 2012-12-20 18:02 2006-07-31 Show GitHub Exploit DB Packet Storm
232797 5 警告 マイクロソフト - Windows 上で稼動する Microsoft Internet Explorer 6 におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-3944 2012-12-20 18:02 2006-07-31 Show GitHub Exploit DB Packet Storm
232798 2.6 注意 マイクロソフト - Windows 上で稼動する Microsoft Internet Explorer 6 の NDFXArtEffects におけるスタックベースのバッファオーバーフローの脆弱性 - CVE-2006-3943 2012-12-20 18:02 2006-07-31 Show GitHub Exploit DB Packet Storm
232799 7.5 危険 サン・マイクロシステムズ - Sun N1 Grid Engine のデーモンにおけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2006-3941 2012-12-20 18:02 2006-07-28 Show GitHub Exploit DB Packet Storm
232800 7.5 危険 phpBB - phpbb-Auction における SQL インジェクションの脆弱性 - CVE-2006-3940 2012-12-20 18:02 2006-07-31 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
292991 - thomas_seidl search_api Cross-site scripting (XSS) vulnerability in Views in the Search API (search_api) module 7.x-1.x before 7.x-1.4 for Drupal, when using certain backends and facets, allows remote attackers to inject ar… CWE-79
Cross-site Scripting 		CVE-2013-0181 2024-11-21 10:47 2013-03-28 Show GitHub Exploit DB Packet Storm
292992 - ibm lotus_domino Cross-site request forgery (CSRF) vulnerability in webadmin.nsf (aka the Web Administrator client) in IBM Domino 8.5.x allows remote authenticated users to hijack the authentication of administrators. CWE-352
 Origin Validation Error 		CVE-2013-0489 2024-11-21 10:47 2013-03-27 Show GitHub Exploit DB Packet Storm
292993 - ibm lotus_domino Cross-site scripting (XSS) vulnerability in webadmin.nsf (aka the Web Administrator client) in IBM Domino 8.5.x allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. CWE-79
Cross-site Scripting 		CVE-2013-0488 2024-11-21 10:47 2013-03-27 Show GitHub Exploit DB Packet Storm
292994 - ibm lotus_domino The Java Console in IBM Domino 8.5.x allows remote authenticated users to hijack temporary credentials by leveraging knowledge of configuration details, aka SPR KLYH8TNNDN. CWE-287
Improper Authentication 		CVE-2013-0487 2024-11-21 10:47 2013-03-27 Show GitHub Exploit DB Packet Storm
292995 - ibm lotus_domino Memory leak in the HTTP server in IBM Domino 8.5.x allows remote attackers to cause a denial of service (memory consumption and daemon crash) via GET requests, aka SPR KLYH92NKZY. CWE-399
 Resource Management Errors 		CVE-2013-0486 2024-11-21 10:47 2013-03-27 Show GitHub Exploit DB Packet Storm
292996 - ibm lotus_inotes Multiple cross-site scripting (XSS) vulnerabilities in IBM iNotes 8.5.x allow local users to inject arbitrary web script or HTML via a shared mail file, aka SPR DKEN8PDNTX. CWE-79
Cross-site Scripting 		CVE-2013-0525 2024-11-21 10:47 2013-03-27 Show GitHub Exploit DB Packet Storm
292997 - canonical
samba
ibm 		ubuntu_linux
samba
storwize 		The SMB2 implementation in Samba 3.6.x before 3.6.6, as used on the IBM Storwize V7000 Unified 1.3 before 1.3.2.3 and 1.4 before 1.4.0.1 and possibly other products, does not properly enforce CIFS sh… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-0454 2024-11-21 10:47 2013-03-27 Show GitHub Exploit DB Packet Storm
292998 - openstack
canonical 		essex
folsom
grizzly
ubuntu_linux 		OpenStack Compute (Nova) Grizzly, Folsom (2012.2), and Essex (2012.1) allows remote authenticated users to gain access to a VM in opportunistic circumstances by using the VNC token for a deleted VM t… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-0335 2024-11-21 10:47 2013-03-23 Show GitHub Exploit DB Packet Storm
292999 - ibm tivoli_endpoint_manager Cross-site scripting (XSS) vulnerability in Web Reports in IBM Tivoli Endpoint Manager (TEM) before 8.2.1372 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL. CWE-79
Cross-site Scripting 		CVE-2013-0453 2024-11-21 10:47 2013-03-22 Show GitHub Exploit DB Packet Storm
293000 - fedoraproject sssd The Simple Access Provider in System Security Services Daemon (SSSD) 1.9.0 through 1.9.4, when the Active Directory provider is used, does not properly enforce the simple_deny_groups option, which al… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-0287 2024-11-21 10:47 2013-03-22 Show GitHub Exploit DB Packet Storm