Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 31, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
233011 5.1 警告 phpBB - phpBB 用の Nivisec Static Topics モジュールにおける PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2006-5191 2012-12-20 18:02 2006-10-10 Show GitHub Exploit DB Packet Storm
233012 5 警告 webgeneius - webGENEius GOOP Gallery の download.php におけるディレクトリトラバーサルの脆弱性 - CVE-2006-5188 2012-12-20 18:02 2006-10-10 Show GitHub Exploit DB Packet Storm
233013 5.1 警告 phpmyprofiler - phpMyProfiler の functions.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5186 2012-12-20 18:02 2006-10-10 Show GitHub Exploit DB Packet Storm
233014 7.5 危険 pkr internet - PKR Internet Taskjitsu における SQL インジェクションの脆弱性 - CVE-2006-5184 2012-12-20 18:02 2006-09-27 Show GitHub Exploit DB Packet Storm
233015 5.1 警告 powerportal - John Himmelman PowerPortal におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-5169 2012-12-20 18:02 2006-10-10 Show GitHub Exploit DB Packet Storm
233016 4.3 警告 Pebble - Simon Brown Pebble の検索機能におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2006-5168 2012-12-20 18:02 2006-10-10 Show GitHub Exploit DB Packet Storm
233017 5.1 警告 skrypty - Skrypty PPA Gallery の inc/functions.inc.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5165 2012-12-20 18:02 2006-10-5 Show GitHub Exploit DB Packet Storm
233018 6.8 警告 sum effect software - Sum Effect Software digiSHOP の cart.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-5164 2012-12-20 18:02 2006-10-5 Show GitHub Exploit DB Packet Storm
233019 5.1 警告 トレンドマイクロ - TrendMicro OSCE の ActiveX コントロールにおけるフォーマットストリングの脆弱性 - CVE-2006-5157 2012-12-20 18:02 2006-10-5 Show GitHub Exploit DB Packet Storm
233020 7.5 危険 videodb - VideoDB の core/pdf.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5155 2012-12-20 18:02 2006-10-5 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
292361 - oracle oracle_and_sun_systems_product_suite Unspecified vulnerability in the Solaris Cluster component in Oracle and Sun Systems Products Suite 3.2, 3.3, and 4 prior to 4.1 SRU 3 allows local users to affect confidentiality, integrity, and ava… NVD-CWE-noinfo
CVE-2013-3746 2024-11-21 10:54 2013-07-17 Show GitHub Exploit DB Packet Storm
292362 - sun sunos Unspecified vulnerability in Oracle Solaris 8, 9, 10, and 11 allows local users to affect availability via unknown vectors related to Libraries/Libc. NVD-CWE-noinfo
CVE-2013-3745 2024-11-21 10:54 2013-07-17 Show GitHub Exploit DB Packet Storm
292363 - anshul_sharma category-grid-view-gallery Cross-site scripting (XSS) vulnerability in includes/CatGridPost.php in the Category Grid View Gallery plugin 2.3.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via th… CWE-79
Cross-site Scripting 		CVE-2013-4117 2024-11-21 10:54 2013-07-16 Show GitHub Exploit DB Packet Storm
292364 - linux linux_kernel The fib6_add_rt2node function in net/ipv6/ip6_fib.c in the IPv6 stack in the Linux kernel through 3.10.1 does not properly handle Router Advertisement (RA) messages in certain circumstances involving… CWE-399
 Resource Management Errors 		CVE-2013-4125 2024-11-21 10:54 2013-07-16 Show GitHub Exploit DB Packet Storm
292365 - php php ext/xml/xml.c in PHP before 5.3.27 does not properly consider parsing depth, which allows remote attackers to cause a denial of service (heap memory corruption) or possibly have unspecified other imp… CWE-787
 Out-of-bounds Write 		CVE-2013-4113 2024-11-21 10:54 2013-07-13 Show GitHub Exploit DB Packet Storm
292366 - blackberry blackberry_os
z10 		BlackBerry 10 OS before 10.0.10.648 on BlackBerry Z10 smartphones uses weak permissions for a BlackBerry Protect object, which allows physically proximate attackers to bypass intended access restrict… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-3692 2024-11-21 10:54 2013-07-13 Show GitHub Exploit DB Packet Storm
292367 - sharp aquos_hn-pp150_firmware
aquos_hn-pp150 		The Sharp AQUOS PhotoPlayer HN-PP150 with firmware before 1.04.00.04 allows remote attackers to cause a denial of service (networking outage) via crafted packet data. NVD-CWE-noinfo
CVE-2013-3655 2024-11-21 10:54 2013-07-13 Show GitHub Exploit DB Packet Storm
292368 - phpmyadmin phpmyadmin Cross-site scripting (XSS) vulnerability in view_create.php (aka the Create View page) in phpMyAdmin 4.x before 4.0.3 allows remote authenticated users to inject arbitrary web script or HTML via an i… CWE-79
Cross-site Scripting 		CVE-2013-3742 2024-11-21 10:54 2013-07-4 Show GitHub Exploit DB Packet Storm
292369 - atlassian crowd Atlassian Crowd 2.6.3 allows remote attackers to execute arbitrary commands via unspecified vectors related to a "symmetric backdoor." NOTE: as of 20130704, the vendor could not reproduce the issue,… NVD-CWE-Other
CVE-2013-3926 2024-11-21 10:54 2013-07-2 Show GitHub Exploit DB Packet Storm
292370 - atlassian crowd Atlassian Crowd 2.5.x before 2.5.4, 2.6.x before 2.6.3, 2.3.8, and 2.4.9 allows remote attackers to read arbitrary files and send HTTP requests to intranet servers via a request to (1) /services/2 or… CWE-20
 Improper Input Validation  		CVE-2013-3925 2024-11-21 10:54 2013-07-2 Show GitHub Exploit DB Packet Storm