Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 28, 2026, 4:09 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
232901 5.1 警告 phpBB - phpBB 用の Nivisec Static Topics モジュールにおける PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2006-5191 2012-12-20 18:02 2006-10-10 Show GitHub Exploit DB Packet Storm
232902 5 警告 webgeneius - webGENEius GOOP Gallery の download.php におけるディレクトリトラバーサルの脆弱性 - CVE-2006-5188 2012-12-20 18:02 2006-10-10 Show GitHub Exploit DB Packet Storm
232903 5.1 警告 phpmyprofiler - phpMyProfiler の functions.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5186 2012-12-20 18:02 2006-10-10 Show GitHub Exploit DB Packet Storm
232904 7.5 危険 pkr internet - PKR Internet Taskjitsu における SQL インジェクションの脆弱性 - CVE-2006-5184 2012-12-20 18:02 2006-09-27 Show GitHub Exploit DB Packet Storm
232905 5.1 警告 powerportal - John Himmelman PowerPortal におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-5169 2012-12-20 18:02 2006-10-10 Show GitHub Exploit DB Packet Storm
232906 4.3 警告 Pebble - Simon Brown Pebble の検索機能におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2006-5168 2012-12-20 18:02 2006-10-10 Show GitHub Exploit DB Packet Storm
232907 5.1 警告 skrypty - Skrypty PPA Gallery の inc/functions.inc.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5165 2012-12-20 18:02 2006-10-5 Show GitHub Exploit DB Packet Storm
232908 6.8 警告 sum effect software - Sum Effect Software digiSHOP の cart.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-5164 2012-12-20 18:02 2006-10-5 Show GitHub Exploit DB Packet Storm
232909 5.1 警告 トレンドマイクロ - TrendMicro OSCE の ActiveX コントロールにおけるフォーマットストリングの脆弱性 - CVE-2006-5157 2012-12-20 18:02 2006-10-5 Show GitHub Exploit DB Packet Storm
232910 7.5 危険 videodb - VideoDB の core/pdf.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5155 2012-12-20 18:02 2006-10-5 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
293371 - microsoft word_viewer
word 		Microsoft Word 2003 SP3 and Word Viewer allow remote attackers to execute arbitrary code via crafted shape data in a Word document, aka "Word Shape Corruption Vulnerability." CWE-94
Code Injection 		CVE-2013-1335 2024-11-21 10:49 2013-05-15 Show GitHub Exploit DB Packet Storm
293372 - microsoft windows_server_2008
windows_rt
windows_xp
windows_8
windows_7
windows_server_2003
windows_vista
windows_server_2012 		win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows Server 201… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-1334 2024-11-21 10:49 2013-05-15 Show GitHub Exploit DB Packet Storm
293373 - microsoft windows_7 Buffer overflow in win32k.sys in the kernel-mode drivers in Microsoft Windows 7 SP1 allows local users to gain privileges via a crafted application that leverages improper handling of objects in memo… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-1333 2024-11-21 10:49 2013-05-15 Show GitHub Exploit DB Packet Storm
293374 - microsoft windows_server_2008
windows_rt
windows_7
windows_8
windows_vista
windows_server_2012 		dxgkrnl.sys (aka the DirectX graphics kernel subsystem) in the kernel-mode drivers in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows Server 2012, a… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-1332 2024-11-21 10:49 2013-05-15 Show GitHub Exploit DB Packet Storm
293375 - microsoft publisher Integer signedness error in Microsoft Publisher 2003 SP3 allows remote attackers to execute arbitrary code via a crafted Publisher file that triggers a buffer underflow, aka "Publisher Buffer Underfl… CWE-189
Numeric Errors 		CVE-2013-1329 2024-11-21 10:49 2013-05-15 Show GitHub Exploit DB Packet Storm
293376 - microsoft publisher Microsoft Publisher 2003 SP3, 2007 SP3, and 2010 SP1 allows remote attackers to execute arbitrary code via a crafted Publisher file that triggers incorrect pointer handling, aka "Publisher Pointer Ha… NVD-CWE-Other
CVE-2013-1328 2024-11-21 10:49 2013-05-15 Show GitHub Exploit DB Packet Storm
293377 - microsoft publisher Integer signedness error in Microsoft Publisher 2003 SP3 allows remote attackers to execute arbitrary code via a crafted Publisher file that triggers an improper memory allocation, aka "Publisher Sig… CWE-189
Numeric Errors 		CVE-2013-1327 2024-11-21 10:49 2013-05-15 Show GitHub Exploit DB Packet Storm
293378 - microsoft publisher Microsoft Publisher 2003 SP3 does not properly handle NULL values for unspecified data items, which allows remote attackers to execute arbitrary code via a crafted Publisher file, aka "Publisher Inco… CWE-94
Code Injection 		CVE-2013-1323 2024-11-21 10:49 2013-05-15 Show GitHub Exploit DB Packet Storm
293379 - microsoft publisher Microsoft Publisher 2003 SP3 does not properly check table range data, which allows remote attackers to execute arbitrary code via a crafted Publisher file, aka "Publisher Invalid Range Check Vulnera… NVD-CWE-Other
CVE-2013-1322 2024-11-21 10:49 2013-05-15 Show GitHub Exploit DB Packet Storm
293380 - microsoft publisher Microsoft Publisher 2003 SP3 does not properly check the data type of an unspecified return value, which allows remote attackers to execute arbitrary code via a crafted Publisher file, aka "Publisher… CWE-20
 Improper Input Validation  		CVE-2013-1321 2024-11-21 10:49 2013-05-15 Show GitHub Exploit DB Packet Storm