Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 31, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
232811	7.5	危険	web inhabit	-	A+ Store E-Commerce の browse.asp における SQL インジェクションの脆弱性	-	CVE-2006-5959	2012-12-20 18:02	2006-11-16	Show	GitHub Exploit DB Packet Storm

232812	2.1	注意	xlinesoft	-	XLineSoft PHPRunner における重要な情報を取得される脆弱性	-	CVE-2006-5956	2012-12-20 18:02	2006-11-16	Show	GitHub Exploit DB Packet Storm

232813	7.5	危険	ringsworld	-	phpPeanuts の pntUnit/Inspect.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5948	2012-12-20 18:02	2006-11-16	Show	GitHub Exploit DB Packet Storm

232814	7.5	危険	website designs for less	-	Website Designs for Less Inventory Manager の inventory/display/imager.asp における SQL インジェクションの脆弱性	-	CVE-2006-5943	2012-12-20 18:02	2006-11-16	Show	GitHub Exploit DB Packet Storm

232815	6.8	警告	website designs for less	-	Website Designs For Less Inventory Manager の inventory/display/display_results.asp におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-5942	2012-12-20 18:02	2006-11-16	Show	GitHub Exploit DB Packet Storm

232816	7.5	危険	sitexpress	-	SiteXpress E-Commerce System の dept.asp における SQL インジェクションの脆弱性	-	CVE-2006-5936	2012-12-20 18:02	2006-11-15	Show	GitHub Exploit DB Packet Storm

232817	7.5	危険	shopsystems	-	ShopSystems の index.php における SQL インジェクションの脆弱性	-	CVE-2006-5935	2012-12-20 18:02	2006-11-15	Show	GitHub Exploit DB Packet Storm

232818	7.5	危険	ultrasite	-	UltraSite の update.asp における SQL インジェクションの脆弱性	-	CVE-2006-5933	2012-12-20 18:02	2006-11-15	Show	GitHub Exploit DB Packet Storm

232819	7.5	危険	phpjobscheduler	-	Phpjobscheduler の firepjs.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5929	2012-12-20 18:02	2006-11-15	Show	GitHub Exploit DB Packet Storm

232820	7.5	危険	phpjobscheduler	-	Phpjobscheduler における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5928	2012-12-20 18:02	2006-11-15	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
292051	6.1	MEDIUM Network	cryptocat_project	cryptocat	An unspecified cross-site scripting (XSS) vulnerability exists in Cryptocat Message Handling 1.1.165.	CWE-79 Cross-site Scripting	CVE-2013-4109	2024-11-21 10:54	2019-11-15	Show	GitHub Exploit DB Packet Storm

292052	5.3	MEDIUM Network	cryptocat_project	cryptocat	Cryptocat has an Unspecified Chat Participant User List Disclosure	CWE-200 Information Exposure	CVE-2013-4110	2024-11-21 10:54	2019-11-5	Show	GitHub Exploit DB Packet Storm

292053	6.1	MEDIUM Network	cryptocat_project	cryptocat	Cryptocat before 2.0.22: cryptocat.js handlePresence() has cross site scripting	CWE-79 Cross-site Scripting	CVE-2013-4107	2024-11-21 10:54	2019-11-5	Show	GitHub Exploit DB Packet Storm

292054	7.5	HIGH Network	cryptocat_project	cryptocat	Cryptocat before 2.0.22 has Multiparty Encryption Scheme Information Disclosure	CWE-200 Information Exposure	CVE-2013-4105	2024-11-21 10:54	2019-11-5	Show	GitHub Exploit DB Packet Storm

292055	7.5	HIGH Network	cryptocat_project	cryptocat	Cryptocat before 2.0.22 has weak encryption in the Socialist Millionnaire Protocol	CWE-326 Inadequate Encryption Strength	CVE-2013-4104	2024-11-21 10:54	2019-11-5	Show	GitHub Exploit DB Packet Storm

292056	9.8	CRITICAL Network	cryptocat_project	cryptocat	Cryptocat before 2.0.22 has Remote Script Injection due to improperly sanitizing user input	CWE-20 Improper Input Validation	CVE-2013-4103	2024-11-21 10:54	2019-11-5	Show	GitHub Exploit DB Packet Storm

292057	9.1	CRITICAL Network	cryptocat_project	cryptocat	Cryptocat before 2.0.22 strophe.js Math.random() Random Number Generator Weakness	CWE-330 Use of Insufficiently Random Values	CVE-2013-4102	2024-11-21 10:54	2019-11-5	Show	GitHub Exploit DB Packet Storm

292058	5.3	MEDIUM Network	cryptocat_project	cryptocat	Cryptocat before 2.0.22 Link Markup Decorator HTML Handling Weakness	CWE-20 Improper Input Validation	CVE-2013-4101	2024-11-21 10:54	2019-11-5	Show	GitHub Exploit DB Packet Storm

292059	7.5	HIGH Network	cryptocat_project	cryptocat	Cryptocat before 2.0.22 has Remote Denial of Service via username	CWE-20 Improper Input Validation	CVE-2013-4100	2024-11-21 10:54	2019-11-5	Show	GitHub Exploit DB Packet Storm

292060	5.5	MEDIUM Local	gnome debian redhat opensuse	evince debian_linux enterprise_linux opensuse	evince is missing a check on number of pages which can lead to a segmentation fault	CWE-20 Improper Input Validation	CVE-2013-3718	2024-11-21 10:54	2019-11-1	Show	GitHub Exploit DB Packet Storm