Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
232891	7.5	危険	webinsta	-	WEBInsta CMS の modules/usersonline/users.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4217	2012-12-20 18:02	2006-08-17	Show	GitHub Exploit DB Packet Storm

232892	5.1	警告	Zen Cart	-	Zen Cart の index.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2006-4215	2012-12-20 18:02	2006-08-17	Show	GitHub Exploit DB Packet Storm

232893	7.5	危険	Zen Cart	-	Zen Cart における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2006-4214	2012-12-20 18:02	2006-08-17	Show	GitHub Exploit DB Packet Storm

232894	7.5	危険	webinsta	-	WEBInsta Mailing List Manager の install3.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4209	2012-12-20 18:02	2006-08-17	Show	GitHub Exploit DB Packet Storm

232895	5	警告	skippy.net	-	WordPress 用の Skippy WP-DB-Backup プラグインにおけるディレクトリトラバーサルの脆弱性	-	CVE-2006-4208	2012-12-20 18:02	2006-08-17	Show	GitHub Exploit DB Packet Storm

232896	7.5	危険	webdynamite	-	WebDynamite ProjectButler における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4205	2012-12-20 18:02	2006-08-17	Show	GitHub Exploit DB Packet Storm

232897	7.5	危険	phprojekt	-	PHProjekt における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2006-4204	2012-12-20 18:02	2006-08-17	Show	GitHub Exploit DB Packet Storm

232898	7.5	危険	spidey blog	-	Spidey Blog Script の proje_goster.php における SQL インジェクションの脆弱性	-	CVE-2006-4202	2012-12-20 18:02	2006-08-17	Show	GitHub Exploit DB Packet Storm

232899	5.1	警告	wheatblog	-	wB の includes/session.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4198	2012-12-20 18:02	2006-08-17	Show	GitHub Exploit DB Packet Storm

232900	7.5	危険	webinsta	-	WEBInsta CMS の index.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4196	2012-12-20 18:02	2006-08-17	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
292431	-	apple todd_miller	mac_os_x sudo	sudo 1.3.5 through 1.7.10 and 1.8.0 through 1.8.5, when the tty_tickets option is enabled, does not properly validate the controlling terminal device, which allows local users with sudo permissions t…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-1776	2024-11-21 10:50	2013-04-9	Show	GitHub Exploit DB Packet Storm

292432	-	linux	linux_kernel	The clone system-call implementation in the Linux kernel before 3.8.3 does not properly handle a combination of the CLONE_NEWUSER and CLONE_FS flags, which allows local users to gain privileges by ca…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-1858	2024-11-21 10:50	2013-04-6	Show	GitHub Exploit DB Packet Storm

292433	-	postgresql	postgresql	PostgreSQL, possibly 9.2.x before 9.2.4, 9.1.x before 9.1.9, 9.0.x before 9.0.13, 8.4.x before 8.4.17, and 8.3.x before 8.3.23 incorrectly provides the superuser password to scripts related to "graph…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-1903	2024-11-21 10:50	2013-04-5	Show	GitHub Exploit DB Packet Storm

292434	-	postgresql	postgresql	PostgreSQL, 9.2.x before 9.2.4, 9.1.x before 9.1.9, 9.0.x before 9.0.13, 8.4.x before 8.4.17, and 8.3.x before 8.3.23 generates insecure temporary files with predictable filenames, which has unspecif…	NVD-CWE-Other	CVE-2013-1902	2024-11-21 10:50	2013-04-5	Show	GitHub Exploit DB Packet Storm

292435	-	postgresql canonical	postgresql ubuntu_linux	PostgreSQL 9.2.x before 9.2.4 and 9.1.x before 9.1.9 does not properly check REPLICATION privileges, which allows remote authenticated users to bypass intended backup restrictions by calling the (1) …	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-1901	2024-11-21 10:50	2013-04-5	Show	GitHub Exploit DB Packet Storm

292436	-	postgresql canonical	postgresql ubuntu_linux	PostgreSQL 9.2.x before 9.2.4, 9.1.x before 9.1.9, 9.0.x before 9.0.13, and 8.4.x before 8.4.17, when using OpenSSL, generates insufficiently random numbers, which might allow remote authenticated us…	CWE-189 Numeric Errors	CVE-2013-1900	2024-11-21 10:50	2013-04-5	Show	GitHub Exploit DB Packet Storm

292437	-	postgresql canonical	postgresql ubuntu_linux	Argument injection vulnerability in PostgreSQL 9.2.x before 9.2.4, 9.1.x before 9.1.9, and 9.0.x before 9.0.13 allows remote attackers to cause a denial of service (file corruption), and allows remot…	CWE-94 Code Injection	CVE-2013-1899	2024-11-21 10:50	2013-04-5	Show	GitHub Exploit DB Packet Storm

292438	-	mark_burns	ldoce	lib/ldoce/word.rb in the ldoce 0.0.2 gem for Ruby allows remote attackers to execute arbitrary commands via shell metacharacters in (1) an mp3 URL or (2) file name.	CWE-20 Improper Input Validation	CVE-2013-1911	2024-11-21 10:50	2013-04-3	Show	GitHub Exploit DB Packet Storm

292439	-	openstack	keystone_essex folsom	The XML libraries for Python 3.4, 3.3, 3.2, 3.1, 2.7, and 2.6, as used in OpenStack Keystone Essex and Folsom, Django, and possibly other products allow remote attackers to read arbitrary files via a…	CWE-200 Information Exposure	CVE-2013-1665	2024-11-21 10:50	2013-04-3	Show	GitHub Exploit DB Packet Storm

292440	-	openstack	cinder_folsom keystone_essex grizzly folsom compute_\(nova\)_essex compute_\(nova\)_folsom	The XML libraries for Python 3.4, 3.3, 3.2, 3.1, 2.7, and 2.6, as used in OpenStack Keystone Essex, Folsom, and Grizzly; Compute (Nova) Essex and Folsom; Cinder Folsom; Django; and possibly other pro…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2013-1664	2024-11-21 10:50	2013-04-3	Show	GitHub Exploit DB Packet Storm