Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 8, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
233011 7.8 危険 super link exchange script - Super Link Exchange Script の make_thumbnail.php におけるディレクトリトラバーサルの脆弱性 - CVE-2006-7035 2012-12-20 18:18 2007-02-22 Show GitHub Exploit DB Packet Storm
233012 7.5 危険 super link exchange script - Super Link Exchange Script の directory.php における SQL インジェクションの脆弱性 - CVE-2006-7034 2012-12-20 18:18 2007-02-22 Show GitHub Exploit DB Packet Storm
233013 6.8 警告 super link exchange script - Super Link Exchange Script におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-7033 2012-12-20 18:18 2007-02-22 Show GitHub Exploit DB Packet Storm
233014 10 危険 tufat - FlashBB の phpbb/getmsg.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-7032 2012-12-20 18:18 2007-02-22 Show GitHub Exploit DB Packet Storm
233015 7.8 危険 サン・マイクロシステムズ - Netra など Solaris が稼動しているシングル CPU Sun システムにおけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-7028 2012-12-20 18:18 2007-02-22 Show GitHub Exploit DB Packet Storm
233016 7.5 危険 sangwan kim - Bookmark4U の admin/config.php における SQL インジェクションの脆弱性 - CVE-2006-7025 2012-12-20 18:18 2007-02-22 Show GitHub Exploit DB Packet Storm
233017 7.5 危険 Plume CMS - Plume CMS の manager/tools/link/dbinstall.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2006-7021 2012-12-20 18:18 2007-02-14 Show GitHub Exploit DB Packet Storm
233018 7.5 危険 phpwcms - phpwcms における任意のコードを実行される脆弱性 - CVE-2006-7019 2012-12-20 18:18 2007-02-14 Show GitHub Exploit DB Packet Storm
233019 7.5 危険 phpjobboard - phpjobboard における認証を回避される脆弱性 - CVE-2006-7016 2012-12-20 18:18 2007-02-14 Show GitHub Exploit DB Packet Storm
233020 10 危険 scart - SCart の scart.cgi における任意のコマンドを実行される脆弱性 - CVE-2006-7012 2012-12-20 18:18 2007-02-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 8, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
292001 8.0 HIGH
Network 		eng spagobi Unrestricted file upload vulnerability in the Worksheet designer in SpagoBI before 4.1 allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension, th… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2013-6234 2024-11-21 10:58 2019-11-23 Show GitHub Exploit DB Packet Storm
292002 6.5 MEDIUM
Network 		horde
debian 		groupware
debian_linux 		Multiple CSRF issues in Horde Groupware Webmail Edition 5.1.2 and earlier in basic.php. CWE-352
 Origin Validation Error 		CVE-2013-6275 2024-11-21 10:58 2019-11-6 Show GitHub Exploit DB Packet Storm
292003 7.8 HIGH
Local 		google android The NotificationBroadcastReceiver class in the com.android.phone process in Google Android 4.1.1 through 4.4.2 allows attackers to bypass intended access restrictions and consequently make phone call… CWE-284
Improper Access Control 		CVE-2013-6272 2024-11-21 10:58 2018-05-3 Show GitHub Exploit DB Packet Storm
292004 7.8 HIGH
Local 		apt-listbugs_project
debian 		apt-listbugs
debian_linux 		apt-listbugs before 0.1.10 creates temporary files insecurely, which allows attackers to have unspecified impact via unknown vectors. CWE-20
 Improper Input Validation  		CVE-2013-6049 2024-11-21 10:58 2017-10-21 Show GitHub Exploit DB Packet Storm
292005 - open-xchange open-xchange_appsuite The Birthday widget in the backend in Open-Xchange (OX) AppSuite 7.2.x before 7.2.2-rev25 and 7.4.x before 7.4.0-rev14, in certain user-id sharing scenarios, does not properly construct a SQL stateme… CWE-200
Information Exposure 		CVE-2013-6241 2024-11-21 10:58 2014-12-28 Show GitHub Exploit DB Packet Storm
292006 - pydio
ajaxplorer 		pydio
ajaxplorer 		Unrestricted file upload vulnerability in plugins/editor.zoho/agent/save_zoho.php in the Zoho plugin in Pydio (formerly AjaXplorer) before 5.0.4 allows remote attackers to execute arbitrary code by u… NVD-CWE-Other
CVE-2013-6227 2024-11-21 10:58 2014-12-28 Show GitHub Exploit DB Packet Storm
292007 - softaculous webuzo The login function in Softaculous Webuzo before 2.1.4 provides different error messages for invalid authentication attempts depending on whether the user account exists, which allows remote attackers… CWE-200
Information Exposure 		CVE-2013-6043 2024-11-21 10:58 2014-12-28 Show GitHub Exploit DB Packet Storm
292008 - softaculous webuzo index.php in Softaculous Webuzo before 2.1.4 allows remote attackers to execute arbitrary commands via shell metacharacters in a SOFTCookies sid cookie within a login action. CWE-78
OS Command  		CVE-2013-6041 2024-11-21 10:58 2014-12-28 Show GitHub Exploit DB Packet Storm
292009 - sensiolabs symfony The Security component in Symfony 2.0.x before 2.0.25, 2.1.x before 2.1.13, 2.2.x before 2.2.9, and 2.3.x before 2.3.6 allows remote attackers to cause a denial of service (CPU consumption) via a lon… CWE-399
 Resource Management Errors 		CVE-2013-5958 2024-11-21 10:58 2014-12-28 Show GitHub Exploit DB Packet Storm
292010 - codeaurora android-msm The Qualcomm Innovation Center (QuIC) init scripts in Code Aurora Forum (CAF) releases of Android 4.1.x through 4.4.x allow local users to modify file metadata via a symlink attack on a file accessed… CWE-59
Link Following 		CVE-2013-6124 2024-11-21 10:58 2014-08-31 Show GitHub Exploit DB Packet Storm