Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 30, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
232921	6.8	警告	XOOPS	-	RMSOFT Gallery System の rmgs/images.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-5532	2012-12-20 18:02	2006-10-26	Show	GitHub Exploit DB Packet Storm

232922	5.1	警告	schoolalumni portal	-	SchoolAlumni Portal の smumdadotcom_ascyb_alumni/mod.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-5529	2012-12-20 18:02	2006-10-26	Show	GitHub Exploit DB Packet Storm

232923	5	警告	schoolalumni portal	-	SchoolAlumni Portal の mod.php におけるディレクトリトラバーサルの脆弱性	-	CVE-2006-5528	2012-12-20 18:02	2006-10-26	Show	GitHub Exploit DB Packet Storm

232924	5.1	警告	PHPNUKE	-	PHP-Nuke の mainfile.php における SQL インジェクション攻撃を実行される脆弱性	-	CVE-2006-5525	2012-12-20 18:02	2006-10-26	Show	GitHub Exploit DB Packet Storm

232925	6.8	警告	phpList	-	phplist の index.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-5524	2012-12-20 18:02	2006-10-26	Show	GitHub Exploit DB Packet Storm

232926	7.5	危険	rhode island secretary of state	-	Rhode Island OMFA における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2006-5517	2012-12-20 18:02	2006-10-26	Show	GitHub Exploit DB Packet Storm

232927	4.3	警告	wikini	-	WikiNi の actions/usersettings.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-5516	2012-12-20 18:02	2006-10-26	Show	GitHub Exploit DB Packet Storm

232928	7.5	危険	web group communication center	-	WGCC の quiz.php における SQL インジェクションの脆弱性	-	CVE-2006-5514	2012-12-20 18:02	2006-10-26	Show	GitHub Exploit DB Packet Storm

232929	4.3	警告	zwahlen informatik	-	Zwahlen Online Shop の article.htm におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-5512	2012-12-20 18:02	2006-10-25	Show	GitHub Exploit DB Packet Storm

232930	7.5	危険	woltlab	-	WoltLab Burning Book の addentry.php における任意の PHP コードを実行される脆弱性	-	CVE-2006-5509	2012-12-20 18:02	2006-10-25	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 30, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
292821	6.1	MEDIUM Network	ibm	infosphere_data_replication_dashboard	Cross-site scripting (XSS) vulnerability in IBM InfoSphere Data Replication Dashboard 9.7 and 10.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. IBM X-Force …	CWE-79 Cross-site Scripting	CVE-2013-2999	2024-11-21 10:52	2018-07-10	Show	GitHub Exploit DB Packet Storm

292822	7.8	HIGH Local	ibm	websphere_application_server	IBM WebSphere Application Server (WAS) 8.5 through 8.5.0.2 on UNIX allows local users to gain privileges by leveraging improper process initialization. IBM X-Force ID: 84362.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-3024	2024-11-21 10:52	2018-05-25	Show	GitHub Exploit DB Packet Storm

292823	8.1	HIGH Network	ibm	tivoli_application_dependency_discovery_manager	IBM Tivoli Application Dependency Discovery Manager (TADDM) 7.1.2 and 7.2.0 through 7.2.1.4 might allow remote attackers to obtain sensitive information about Tomcat credentials by sniffing the netwo…	CWE-200 Information Exposure	CVE-2013-3023	2024-11-21 10:52	2018-05-25	Show	GitHub Exploit DB Packet Storm

292824	5.3	MEDIUM Network	ibm	tivoli_application_dependency_discovery_manager	The AXIS webapp in deploy-tomcat/axis in IBM Tivoli Application Dependency Discovery Manager (TADDM) 7.1.2 and 7.2.0 through 7.2.1.4 allows remote attackers to obtain sensitive configuration informat…	CWE-200 Information Exposure	CVE-2013-3018	2024-11-21 10:52	2018-05-25	Show	GitHub Exploit DB Packet Storm

292825	7.8	HIGH Local	sumatrapdfreader	sumatrapdf	Use-after-free vulnerability in SumatraPDF Reader 2.x before 2.2.1 allows remote attackers to execute arbitrary code via a crafted PDF file.	CWE-416 Use After Free	CVE-2013-2830	2024-11-21 10:52	2018-02-9	Show	GitHub Exploit DB Packet Storm

292826	-		realnetworks	realarcade_installer	RealNetworks GameHouse RealArcade Installer (aka ActiveMARK Game Installer) 2.6.0.481 and 3.0.7 uses weak permissions (Create Files/Write Data) for the GameHouse Games directory tree, which allows lo…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-2604	2024-11-21 10:52	2015-01-13	Show	GitHub Exploit DB Packet Storm

292827	-		realnetworks	realarcade_installer	The RACInstaller.StateCtrl.1 ActiveX control in InstallerDlg.dll in RealNetworks GameHouse RealArcade Installer 2.6.0.481 performs unexpected type conversions for invalid parameter types, which allow…	NVD-CWE-Other	CVE-2013-2603	2024-11-21 10:52	2015-01-13	Show	GitHub Exploit DB Packet Storm

292828	-		emerson	dl_8000_remote_terminal_unit_firmware dl_8000_remote_terminal_unit roc_800l_remote_terminal_unit_firmware roc_800l_remote_terminal_unit roc_800_remote_terminal_unit_firmware roc_800_re…	Emerson Process Management ROC800 RTU with software 3.50 and earlier, DL8000 RTU with software 2.30 and earlier, and ROC800L RTU with software 1.20 and earlier allows remote attackers to execute arbi…	CWE-77 Command Injection	CVE-2013-2810	2024-11-21 10:52	2014-12-8	Show	GitHub Exploit DB Packet Storm

292829	-		tp-link	firmware	Multiple cross-site request forgery (CSRF) vulnerabilities on the TP-LINK WR1043N router with firmware TL-WR1043ND_V1_120405 allow remote attackers to hijack the authentication of administrators for …	CWE-352 Origin Validation Error	CVE-2013-2645	2024-11-21 10:52	2014-10-6	Show	GitHub Exploit DB Packet Storm

292830	-		belkin	n300_firmware n300	The Belkin N300 (F7D7301v1) router allows remote attackers to bypass authentication and gain privileges via vectors related to incorrect validation of the HTTP Authorization header.	CWE-287 Improper Authentication	CVE-2013-3092	2024-11-21 10:52	2014-09-30	Show	GitHub Exploit DB Packet Storm