Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 3, 2026, 2:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
233071	7.5	危険	walter beschmout	-	Walter Beschmout PhpQuiz における SQL インジェクションの脆弱性	-	CVE-2006-4978	2012-12-20 18:02	2006-09-24	Show	GitHub Exploit DB Packet Storm

233072	5	警告	walter beschmout	-	Walter Beschmout PhpQuiz の back/upload_img.php などにおける任意の PHP コードをアップロードされる脆弱性	-	CVE-2006-4977	2012-12-20 18:02	2006-09-24	Show	GitHub Exploit DB Packet Storm

233073	2.6	注意	Yahoo!	-	WAP 用の Yahoo! Messenger における任意の Web スクリプトまたは HTML を挿入される脆弱性	-	CVE-2006-4975	2012-12-20 18:02	2006-09-24	Show	GitHub Exploit DB Packet Storm

233074	7.5	危険	wahm e-commerce	-	WAHM E-Commerce Pie Cart Pro の enc/content.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4970	2012-12-20 18:02	2006-09-24	Show	GitHub Exploit DB Packet Storm

233075	7.5	危険	wahm e-commerce	-	WAHM E-Commerce Pie Cart Pro における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4969	2012-12-20 18:02	2006-09-24	Show	GitHub Exploit DB Packet Storm

233076	7.5	危険	postnuke software foundation	-	PNphpBB の includes/functions_admin.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4968	2012-12-20 18:02	2006-09-24	Show	GitHub Exploit DB Packet Storm

233077	5	警告	サン・マイクロシステムズ	-	SSGD におけるホスト名などを含む重要な情報を取得される脆弱性	-	CVE-2006-4959	2012-12-20 18:02	2006-09-23	Show	GitHub Exploit DB Packet Storm

233078	6.8	警告	サン・マイクロシステムズ	-	SSGD におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-4958	2012-12-20 18:02	2006-09-23	Show	GitHub Exploit DB Packet Storm

233079	7.5	危険	the myreview system	-	MyReview の functions.php における SQL インジェクションの脆弱性	-	CVE-2006-4957	2012-12-20 18:02	2006-09-23	Show	GitHub Exploit DB Packet Storm

233080	7.5	危険	prosysinfo	-	ProSysInfo TFTP Server TFTPDWIN の tftpd.exe におけるスタックベースのバッファオーバーフローの脆弱性	-	CVE-2006-4948	2012-12-20 18:02	2006-09-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
292691	-	microsoft	internet_explorer	Microsoft Internet Explorer 6 through 9 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corrup…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2013-3910	2024-11-21 10:54	2013-11-13	Show	GitHub Exploit DB Packet Storm

292692	-	microsoft	internet_explorer	Microsoft Internet Explorer 6 through 8 allows remote attackers to read content from a different (1) domain or (2) zone via crafted characters in Cascading Style Sheets (CSS) token sequences, aka "In…	CWE-200 Information Exposure	CVE-2013-3909	2024-11-21 10:54	2013-11-13	Show	GitHub Exploit DB Packet Storm

292693	-	microsoft	internet_explorer	Microsoft Internet Explorer 6 through 10 allows user-assisted remote attackers to bypass the Same Origin Policy and obtain sensitive information from any visited document via a crafted web page that …	CWE-200 Information Exposure	CVE-2013-3908	2024-11-21 10:54	2013-11-13	Show	GitHub Exploit DB Packet Storm

292694	-	microsoft	outlook	Microsoft Outlook 2007 SP3, 2010 SP1 and SP2, 2013, and 2013 RT does not properly expand metadata contained in S/MIME certificates, which allows remote attackers to obtain sensitive network configura…	CWE-200 Information Exposure	CVE-2013-3905	2024-11-21 10:54	2013-11-13	Show	GitHub Exploit DB Packet Storm

292695	-	microsoft	windows_server_2012 windows_8	Microsoft Windows 8 and Windows Server 2012, when Hyper-V is used, does not ensure memory-address validity, which allows guest OS users to execute arbitrary code in all guest OS instances, and allows…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-3898	2024-11-21 10:54	2013-11-13	Show	GitHub Exploit DB Packet Storm

292696	-	microsoft	windows_server_2008 windows_xp windows_server_2003 windows_vista windows_7 windows_8 windows_server_2012	The Ancillary Function Driver (AFD) in afd.sys in the kernel-mode drivers in Microsoft Windows XP SP2, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, W…	CWE-200 Information Exposure	CVE-2013-3887	2024-11-21 10:54	2013-11-13	Show	GitHub Exploit DB Packet Storm

292697	-	microsoft	windows_xp windows_server_2008 windows_server_2012 windows_rt windows_8.1 windows_7 windows_rt_8.1 windows_vista windows_8 windows_server_2003	Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows R…	CWE-20 Improper Input Validation	CVE-2013-3869	2024-11-21 10:54	2013-11-13	Show	GitHub Exploit DB Packet Storm

292698	-	ibm	lotus_sametime	The Enterprise Meeting Server in IBM Lotus Sametime 8.5.2 and 8.5.2.1 does not properly restrict application cookies, which allows remote attackers to read session variables by leveraging a weak sett…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-3985	2024-11-21 10:54	2013-11-9	Show	GitHub Exploit DB Packet Storm

292699	-	ibm	lotus_sametime	IBM Lotus Sametime 8.5.2 and 8.5.2.1 allows remote attackers to cause a denial of service (WebPlayer Firefox extension crash) via a crafted Audio Visual (AV) session.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2013-3986	2024-11-21 10:54	2013-11-9	Show	GitHub Exploit DB Packet Storm

292700	-	ibm	lotus_domino	Cross-site scripting (XSS) vulnerability in webadmin.nsf in Domino Web Administrator in IBM Domino 8.5 and 9.0 allows remote authenticated users to inject arbitrary web script or HTML via unspecified…	CWE-79 Cross-site Scripting	CVE-2013-4055	2024-11-21 10:54	2013-11-8	Show	GitHub Exploit DB Packet Storm