Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
232861	7.5	危険	php blue dragon	-	phpBlueDragon における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2006-6958	2012-12-20 18:18	2007-01-29	Show	GitHub Exploit DB Packet Storm

232862	7.5	危険	VirtueMart	-	Virtuemart における SQL インジェクションの脆弱性	-	CVE-2006-6945	2012-12-20 18:18	2007-01-19	Show	GitHub Exploit DB Packet Storm

232863	7.5	危険	The phpMyAdmin Project	-	phpMyAdmin におけるアクセスルールを回避される脆弱性	-	CVE-2006-6944	2012-12-20 18:18	2007-01-17	Show	GitHub Exploit DB Packet Storm

232864	5	警告	The phpMyAdmin Project	-	PhpMyAdmin におけるサーバのフルパスを取得される脆弱性	-	CVE-2006-6943	2012-12-20 18:18	2007-01-17	Show	GitHub Exploit DB Packet Storm

232865	6.8	警告	The phpMyAdmin Project	-	PhpMyAdmin におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-6942	2012-12-20 18:18	2007-01-17	Show	GitHub Exploit DB Packet Storm

232866	7.5	危険	portix-php	-	Portix-PHP の login コンポーネントにおける SQL インジェクションの脆弱性	-	CVE-2006-6935	2012-12-20 18:18	2007-01-16	Show	GitHub Exploit DB Packet Storm

232867	6.8	警告	portix-php	-	Portix-PHP におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-6934	2012-12-20 18:18	2007-01-16	Show	GitHub Exploit DB Packet Storm

232868	5	警告	Snort.org	-	Snort におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-6931	2012-12-20 18:18	2007-01-16	Show	GitHub Exploit DB Packet Storm

232869	6.8	警告	sage-mozdev	-	Firefox Sage エクステンションにおけるローカルコンテキストの任意の Javascript を実行される脆弱性	-	CVE-2006-6919	2012-12-20 18:18	2007-01-11	Show	GitHub Exploit DB Packet Storm

232870	7.5	危険	phpMyFAQ	-	phpMyFAQ における任意の PHP スクリプトをアップロードされる脆弱性	-	CVE-2006-6913	2012-12-20 18:18	2006-12-15	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
291791	-	cisco	adaptive_security_appliance_software	The IPsec implementation in Cisco Adaptive Security Appliance (ASA) Software 9.1 before 9.1(1.7), when an IPsec VPN tunnel is enabled, allows remote attackers to cause a denial of service (device rel…	CWE-310 Cryptographic Issues	CVE-2013-5507	2024-11-21 10:57	2013-10-13	Show	GitHub Exploit DB Packet Storm

291792	-	cisco	firewall_services_module_software	The authorization functionality in Cisco Firewall Services Module (FWSM) 3.1.x and 3.2.x before 3.2(25) and 4.x before 4.1(13), when multiple-context mode is enabled, allows local users to read or mo…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-5506	2024-11-21 10:57	2013-10-13	Show	GitHub Exploit DB Packet Storm

291793	-	cisco	unified_ip_phones_9900_series_firmware unified_ip_phone_9951 unified_ip_phone_9971	The image-upgrade functionality on Cisco 9900 Unified IP phones allows local users to gain privileges by placing shell commands in an unspecified parameter, aka Bug ID CSCuh10334.	CWE-20 Improper Input Validation	CVE-2013-5533	2024-11-21 10:57	2013-10-11	Show	GitHub Exploit DB Packet Storm

291794	-	cisco	unified_ip_phones_9900_series_firmware unified_ip_phone_9951 unified_ip_phone_9971	Buffer overflow in the web-application interface on Cisco 9900 IP phones allows remote attackers to cause a denial of service (webapp interface outage) via long values in unspecified fields, aka Bug …	CWE-20 Improper Input Validation	CVE-2013-5532	2024-11-21 10:57	2013-10-11	Show	GitHub Exploit DB Packet Storm

291795	-	cisco	unified_communications_manager	Directory traversal vulnerability in the Tomcat administrative web interface in Cisco Unified Communications Manager allows remote authenticated users to read arbitrary files via directory traversal …	CWE-22 Path Traversal	CVE-2013-5528	2024-11-21 10:57	2013-10-11	Show	GitHub Exploit DB Packet Storm

291796	-	cisco	ios ios_xe	The OSPF functionality in Cisco IOS and IOS XE allows remote attackers to cause a denial of service (device reload) via crafted options in an LSA type 11 packet, aka Bug ID CSCui21030.	CWE-20 Improper Input Validation	CVE-2013-5527	2024-11-21 10:57	2013-10-10	Show	GitHub Exploit DB Packet Storm

291797	-	cisco	unified_ip_phone_9951 unified_ip_phone_9971	Cisco 9900 fourth-generation IP phones do not properly perform SDP negotiation, which allows remote attackers to cause a denial of service (device reboot) via crafted SDP packets, aka Bug ID CSCuf066…	CWE-20 Improper Input Validation	CVE-2013-5526	2024-11-21 10:57	2013-10-10	Show	GitHub Exploit DB Packet Storm

291798	-	cisco	identity_services_engine_software	SQL injection vulnerability in the web framework in Cisco Identity Services Engine (ISE) 1.2 and earlier allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors, a…	CWE-89 SQL Injection	CVE-2013-5525	2024-11-21 10:57	2013-10-10	Show	GitHub Exploit DB Packet Storm

291799	-	cisco	identity_services_engine_software	Cross-site scripting (XSS) vulnerability in the troubleshooting page in Cisco Identity Services Engine (ISE) 1.2 and earlier allows remote attackers to inject arbitrary web script or HTML via an unsp…	CWE-79 Cross-site Scripting	CVE-2013-5524	2024-11-21 10:57	2013-10-10	Show	GitHub Exploit DB Packet Storm

291800	-	cisco	identity_services_engine_software	The Sponsor Portal in Cisco Identity Services Engine (ISE) 1.2 and earlier does not properly restrict use of IFRAME elements, which makes it easier for remote attackers to conduct clickjacking attack…	CWE-20 Improper Input Validation	CVE-2013-5523	2024-11-21 10:57	2013-10-10	Show	GitHub Exploit DB Packet Storm