Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 3, 2026, 6:08 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
232841	7.8	危険	サン・マイクロシステムズ	-	Netra など Solaris が稼動しているシングル CPU Sun システムにおけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-7028	2012-12-20 18:18	2007-02-22	Show	GitHub Exploit DB Packet Storm

232842	7.5	危険	sangwan kim	-	Bookmark4U の admin/config.php における SQL インジェクションの脆弱性	-	CVE-2006-7025	2012-12-20 18:18	2007-02-22	Show	GitHub Exploit DB Packet Storm

232843	7.5	危険	Plume CMS	-	Plume CMS の manager/tools/link/dbinstall.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2006-7021	2012-12-20 18:18	2007-02-14	Show	GitHub Exploit DB Packet Storm

232844	7.5	危険	phpwcms	-	phpwcms における任意のコードを実行される脆弱性	-	CVE-2006-7019	2012-12-20 18:18	2007-02-14	Show	GitHub Exploit DB Packet Storm

232845	7.5	危険	phpjobboard	-	phpjobboard における認証を回避される脆弱性	-	CVE-2006-7016	2012-12-20 18:18	2007-02-14	Show	GitHub Exploit DB Packet Storm

232846	10	危険	scart	-	SCart の scart.cgi における任意のコマンドを実行される脆弱性	-	CVE-2006-7012	2012-12-20 18:18	2007-02-14	Show	GitHub Exploit DB Packet Storm

232847	4.3	警告	wheatblog	-	wB の add_comment.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-7002	2012-12-20 18:18	2007-02-12	Show	GitHub Exploit DB Packet Storm

232848	7.1	危険	phpmychat plus	-	PhpMyChat Plus の avatar.php におけるディレクトリトラバーサルの脆弱性	-	CVE-2006-7001	2012-12-20 18:18	2007-02-12	Show	GitHub Exploit DB Packet Storm

232849	4.3	警告	the war forge	-	warforge.NEWS におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-6996	2012-12-20 18:18	2007-02-12	Show	GitHub Exploit DB Packet Storm

232850	6	警告	v3chat	-	V3 Chat の mycontacts.php における他のユーザとして権限を取得される脆弱性	-	CVE-2006-6995	2012-12-20 18:18	2007-02-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
291861	-	hot	hotbox_router_firmware hotbox_router	The HOT HOTBOX router with software 2.1.11 has a default WPS PIN of 12345670, which makes it easier for remote attackers to obtain the WPA or WPA2 pre-shared key via EAP messages.	CWE-255 Credentials Management	CVE-2013-5037	2024-11-21 10:56	2013-12-30	Show	GitHub Exploit DB Packet Storm

291862	-	microsoft	windows_movie_maker	Microsoft Windows Movie Maker 2.1.4026.0 on Windows XP SP3 allows remote attackers to cause a denial of service (application crash) via a crafted .wav file, as demonstrated by movieMaker.wav.	CWE-20 Improper Input Validation	CVE-2013-4858	2024-11-21 10:56	2013-12-30	Show	GitHub Exploit DB Packet Storm

291863	-	netgear	prosafe_firmware prosafe_gs748t prosafe_gs510tp prosafe_gs724t prosafe_s716t	NETGEAR ProSafe GS724Tv3 and GS716Tv2 with firmware 5.4.1.13 and earlier, GS748Tv4 5.4.1.14, and GS510TP 5.0.4.4 allows remote attackers to cause a denial of service (reboot or crash) via a crafted H…	NVD-CWE-noinfo	CVE-2013-4776	2024-11-21 10:56	2013-12-19	Show	GitHub Exploit DB Packet Storm

291864	-	netgear	prosafe_firmware prosafe_gs725ts prosafe_gs728tps prosafe_gs728ts prosafe_gs752tps prosafe_gs724t prosafe_s716t prosafe_gs728txs prosafe_gs752txs prosafe_gs748t prosafe_…	NETGEAR ProSafe GS724Tv3 and GS716Tv2 with firmware 5.4.1.13 and earlier; GS748Tv4 with firmware 5.4.1.14; GS510TP with firmware 5.4.0.6; GS752TPS, GS728TPS, GS728TS, and GS725TS with firmware 5.3.0.…	CWE-200 Information Exposure	CVE-2013-4775	2024-11-21 10:56	2013-12-19	Show	GitHub Exploit DB Packet Storm

291865	-	hp	officejet_pro_8500_firmware officejet_pro_8500	Cross-site scripting (XSS) vulnerability on HP Officejet Pro 8500 (aka A909) All-in-One printers allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.	CWE-79 Cross-site Scripting	CVE-2013-4845	2024-11-21 10:56	2013-12-15	Show	GitHub Exploit DB Packet Storm

291866	-	icofx	icofx	Stack-based buffer overflow in IcoFX 2.5 and earlier allows remote attackers to execute arbitrary code via a long idCount value in an ICONDIR structure in an ICO file. NOTE: some of these details ar…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2013-4988	2024-11-21 10:56	2013-12-14	Show	GitHub Exploit DB Packet Storm

291867	-	microsoft	exchange_server	Cross-site scripting (XSS) vulnerability in Outlook Web Access in Microsoft Exchange Server 2010 SP2 and SP3 and 2013 Cumulative Update 2 and 3 allows remote attackers to inject arbitrary web script …	CWE-79 Cross-site Scripting	CVE-2013-5072	2024-11-21 10:56	2013-12-11	Show	GitHub Exploit DB Packet Storm

291868	-	microsoft	sharepoint_server office_web_apps	Microsoft SharePoint Server 2010 SP1 and SP2 and 2013, and Office Web Apps 2013, allows remote attackers to execute arbitrary code via crafted page content, aka "SharePoint Page Content Vulnerabiliti…	CWE-94 Code Injection	CVE-2013-5059	2024-11-21 10:56	2013-12-11	Show	GitHub Exploit DB Packet Storm

291869	-	microsoft	windows_xp windows_server_2008 windows_server_2012 windows_rt windows_8.1 windows_7 windows_rt_8.1 windows_vista windows_8 windows_server_2003	Integer overflow in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1,…	CWE-190 Integer Overflow or Wraparound	CVE-2013-5058	2024-11-21 10:56	2013-12-11	Show	GitHub Exploit DB Packet Storm

291870	-	microsoft	office	hxds.dll in Microsoft Office 2007 SP3 and 2010 SP1 and SP2 does not implement the ASLR protection mechanism, which makes it easier for remote attackers to execute arbitrary code via a crafted COM com…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-5057	2024-11-21 10:56	2013-12-11	Show	GitHub Exploit DB Packet Storm