Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 29, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 232901 | 7.5 | 危険 | qnecms | - | QnECMS における PHP リモートファイルインクルージョンの脆弱性 | - | CVE-2006-5627 | 2012-12-20 18:02 | 2006-10-31 | Show | GitHub Exploit DB Packet Storm |
| 232902 | 4.3 | 警告 | phpfaber | - | phpFaber CMS の cms_images/js/htmlarea/htmlarea.php におけるクロスサイトスクリプティングの脆弱性 | - | CVE-2006-5626 | 2012-12-20 18:02 | 2006-10-31 | Show | GitHub Exploit DB Packet Storm |
| 232903 | 7.5 | 危険 | thepeak | - | Thepeak File Upload Manager の index.php におけるディレクトリトラバーサルの脆弱性 | - | CVE-2006-5617 | 2012-12-20 18:02 | 2006-10-30 | Show | GitHub Exploit DB Packet Storm |
| 232904 | 7.5 | 危険 | Textpattern | - | Textpattern の publish.php における PHP リモートファイルインクルージョンの脆弱性 | - | CVE-2006-5615 | 2012-12-20 18:02 | 2006-10-30 | Show | GitHub Exploit DB Packet Storm |
| 232905 | 10 | 危険 | 東芝 | - | Toshiba Bluetooth スタックにおける脆弱性 |
CWE-noinfo
情報不足 |
CVE-2006-5611 | 2012-12-20 18:02 | 2006-10-30 | Show | GitHub Exploit DB Packet Storm |
| 232906 | 5 | 警告 | TorrentFlux | - | TorrentFlux の dir.php におけるディレクトリトラバーサルの脆弱性 | - | CVE-2006-5609 | 2012-12-20 18:02 | 2006-10-30 | Show | GitHub Exploit DB Packet Storm |
| 232907 | 6.8 | 警告 | phpcards | - | phpCards の phpcards.footer.php におけるクロスサイトスクリプティングの脆弱性 | - | CVE-2006-5605 | 2012-12-20 18:02 | 2006-10-30 | Show | GitHub Exploit DB Packet Storm |
| 232908 | 7.5 | 危険 | phpcards | - | phpCards の phpcards.header.php におけるディレクトリトラバーサルの脆弱性 | - | CVE-2006-5604 | 2012-12-20 18:02 | 2006-10-30 | Show | GitHub Exploit DB Packet Storm |
| 232909 | 7.5 | 危険 | Snitz | - | Snitz Forums 2000 の pop_mail.asp における SQL インジェクションの脆弱性 | - | CVE-2006-5603 | 2012-12-20 18:02 | 2006-10-30 | Show | GitHub Exploit DB Packet Storm |
| 232910 | 4 | 警告 | xsupplicant | - | xsupplicant におけるサービス運用妨害 (DoS) の脆弱性 | - | CVE-2006-5602 | 2012-12-20 18:02 | 2006-10-27 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 29, 2026, 4:16 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 292781 | 9.8 |
CRITICAL
Network |
cryptocat_project | cryptocat | Cryptocat before 2.0.22 has Arbitrary Code Execution on Firefox Conversation Overview |
CWE-20
Improper Input Validation |
CVE-2013-2259 | 2024-11-21 10:51 | 2019-11-5 | Show | GitHub Exploit DB Packet Storm |
| 292782 | 5.3 |
MEDIUM
Network |
cryptocat_project | cryptocat | Cryptocat before 2.0.22 has Nickname User Impersonation |
NVD-CWE-noinfo
|
CVE-2013-2258 | 2024-11-21 10:51 | 2019-11-5 | Show | GitHub Exploit DB Packet Storm |
| 292783 | 7.5 |
HIGH
Network |
cryptocat_project | cryptocat | Cryptocat before 2.0.42 has Group Chat ECC Private Key Generation Brute Force Weakness |
CWE-307
mproper Restriction of Excessive Authentication Attempts |
CVE-2013-2257 | 2024-11-21 10:51 | 2019-11-5 | Show | GitHub Exploit DB Packet Storm |
| 292784 | 7.5 |
HIGH
Network |
cryptocat_project | cryptocat | Cryptocat strophe.js before 2.0.22 has information disclosure |
CWE-200
Information Exposure |
CVE-2013-2262 | 2024-11-21 10:51 | 2019-11-5 | Show | GitHub Exploit DB Packet Storm |
| 292785 | 7.5 |
HIGH
Network |
cryptocat_project | cryptocat | Cryptocat before 2.0.22 Chrome Extension 'img/keygen.gif' has Information Disclosure |
CWE-200
Information Exposure |
CVE-2013-2261 | 2024-11-21 10:51 | 2019-11-5 | Show | GitHub Exploit DB Packet Storm |
| 292786 | 5.9 |
MEDIUM
Network |
redhat openstack debian |
openstack compute keystone debian_linux |
HTTPSConnections in OpenStack Keystone 2013, OpenStack Compute 2013.1, and possibly other OpenStack components, fail to validate server-side SSL certificates. |
CWE-295
Improper Certificate Validation |
CVE-2013-2255 | 2024-11-21 10:51 | 2019-11-2 | Show | GitHub Exploit DB Packet Storm |
| 292787 | 7.5 |
HIGH
Network |
glpi-project debian |
glpi debian_linux |
GLPI 0.83.7 has Local File Inclusion in common.tabs.php. |
CWE-20
Improper Input Validation |
CVE-2013-2227 | 2024-11-21 10:51 | 2019-11-2 | Show | GitHub Exploit DB Packet Storm |
| 292788 | 5.3 |
MEDIUM
Network |
mambo-foundation | mambo_cms | A vulnerability in Mambo CMS v4.6.5 where the scripts thumbs.php, editorFrame.php, editor.php, images.php, manager.php discloses the root path of the webserver. |
CWE-22
Path Traversal |
CVE-2013-2565 | 2024-11-21 10:51 | 2019-02-16 | Show | GitHub Exploit DB Packet Storm |
| 292789 | 8.8 |
HIGH
Network |
fileutils_project | fileutils | Vulnerability in FileUtils v0.7, Ruby Gem Fileutils <= v0.7 Command Injection vulnerability in user supplied url variable that is passed to the shell. |
CWE-77
Command Injection |
CVE-2013-2516 | 2024-11-21 10:51 | 2019-02-16 | Show | GitHub Exploit DB Packet Storm |
| 292790 | 7.4 |
HIGH
Network |
redhat | ansible | Ansible before 1.2.1 makes it easier for remote attackers to conduct man-in-the-middle attacks by leveraging failure to cache SSH host keys. |
CWE-320
Key Management Errors |
CVE-2013-2233 | 2024-11-21 10:51 | 2018-05-5 | Show | GitHub Exploit DB Packet Storm |