Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 2, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
233081	5	警告	siteatschool	-	S@S の starnet/editors/htmlarea/popups/images.php における実行可能な拡張子を伴う任意のファイルをアップロードされる脆弱性	-	CVE-2006-4922	2012-12-20 18:02	2006-09-20	Show	GitHub Exploit DB Packet Storm

233082	7.5	危険	siteatschool	-	S@S における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4921	2012-12-20 18:02	2006-09-20	Show	GitHub Exploit DB Packet Storm

233083	7.5	危険	siteatschool	-	S@S における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4920	2012-12-20 18:02	2006-09-20	Show	GitHub Exploit DB Packet Storm

233084	2.6	注意	siteatschool	-	S@S の starnet/editors/htmlarea/popups/images.php におけるディレクトリトラバーサルの脆弱性	-	CVE-2006-4919	2012-12-20 18:02	2006-09-20	Show	GitHub Exploit DB Packet Storm

233085	7.5	危険	simple discussion board	-	Simple Discussion Board における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4918	2012-12-20 18:02	2006-09-20	Show	GitHub Exploit DB Packet Storm

233086	4.3	警告	pt news	-	PT News の search.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-4917	2012-12-20 18:02	2006-09-20	Show	GitHub Exploit DB Packet Storm

233087	7.5	危険	Qualiteam Software Limited	-	Qualiteam X-Cart の cmpi.php における任意のプログラム変数を上書きされる脆弱性	-	CVE-2006-4904	2012-12-20 18:02	2006-09-20	Show	GitHub Exploit DB Packet Storm

233088	10	危険	シマンテック	-	Symantec Veritas NetBackup の NetBackup bpcd デーモンにおける任意のコマンドを実行される脆弱性	-	CVE-2006-4902	2012-12-20 18:02	2006-12-13	Show	GitHub Exploit DB Packet Storm

233089	7.5	危険	phpbb xs	-	phpBB XS の bb_usage_stats/includes/bb_usage_stats.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4893	2012-12-20 18:02	2006-09-19	Show	GitHub Exploit DB Packet Storm

233090	7.5	危険	techno dreams	-	Techno Dreams FAQ Manager Package の faqview.asp における SQL インジェクションの脆弱性	-	CVE-2006-4892	2012-12-20 18:02	2006-09-19	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
292311	-	mediawiki	mediawiki	Cross-site scripting (XSS) vulnerability in the ZeroRatedMobileAccess extension for MediaWiki 1.19.x before 1.19.9, 1.20.x before 1.20.8, and 1.21.x before 1.21.3 allows remote attackers to inject ar…	CWE-79 Cross-site Scripting	CVE-2013-4573	2024-11-21 10:55	2013-11-26	Show	GitHub Exploit DB Packet Storm

292312	-	ibus_project opensuse	ibus opensuse	The default configuration of IBUS 1.5.4, and possibly 1.5.2 and earlier, when IBus.InputPurpose.PASSWORD is not set and used with GNOME 3, does not obscure the entered password characters, which allo…	CWE-255 Credentials Management	CVE-2013-4509	2024-11-21 10:55	2013-11-24	Show	GitHub Exploit DB Packet Storm

292313	-	ruby-lang	ruby	Heap-based buffer overflow in Ruby 1.8, 1.9 before 1.9.3-p484, 2.0 before 2.0.0-p353, 2.1 before 2.1.0 preview2, and trunk before revision 43780 allows context-dependent attackers to cause a denial o…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2013-4164	2024-11-21 10:55	2013-11-24	Show	GitHub Exploit DB Packet Storm

292314	-	f5 opensuse suse	nginx opensuse studio_onsite webyast lifecycle_management_server	nginx 0.8.41 through 1.4.3 and 1.5.x before 1.5.7 allows remote attackers to bypass intended restrictions via an unescaped space character in a URI.	CWE-116 Improper Encoding or Escaping of Output	CVE-2013-4547	2024-11-21 10:55	2013-11-24	Show	GitHub Exploit DB Packet Storm

292315	-	robert_ancell canonical	lightdm ubuntu_linux	LightDM 1.7.5 through 1.8.3 and 1.9.x before 1.9.2 does not apply the AppArmor profile to the Guest account, which allows local users to bypass intended restrictions by leveraging the Guest account.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-4459	2024-11-21 10:55	2013-11-24	Show	GitHub Exploit DB Packet Storm

292316	-	http-body_project	http-body	HTTP::Body::Multipart in the HTTP-Body module for Perl (1.07 through 1.22, before 1.23) uses the part of the uploaded file's name after the first "." character as the suffix of a temporary file, whic…	NVD-CWE-noinfo	CVE-2013-4407	2024-11-21 10:55	2013-11-24	Show	GitHub Exploit DB Packet Storm

292317	-	openstack	image_registry_and_delivery_service_\(glance\)	The API before 2.1 in OpenStack Image Registry and Delivery Service (Glance) makes it easier for local users to inject images into arbitrary tenants by adding the tenant as a member of the image.	CWE-20 Improper Input Validation	CVE-2013-4354	2024-11-21 10:55	2013-11-24	Show	GitHub Exploit DB Packet Storm

292318	-	ffmpeg	ffmpeg	The av_reallocp_array function in libavutil/mem.c in FFmpeg before 2.0.1 has an unspecified impact and remote vectors related to a "wrong return code" and a resultant NULL pointer dereference.	NVD-CWE-Other	CVE-2013-4265	2024-11-21 10:55	2013-11-24	Show	GitHub Exploit DB Packet Storm

292319	-	ffmpeg	ffmpeg	The kempf_decode_tile function in libavcodec/g2meet.c in FFmpeg before 2.0.1 allows remote attackers to cause a denial of service (out-of-bounds heap write) via a G2M4 encoded file.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2013-4264	2024-11-21 10:55	2013-11-24	Show	GitHub Exploit DB Packet Storm

292320	-	ffmpeg	ffmpeg	libavfilter in FFmpeg before 2.0.1 has unspecified impact and remote vectors related to a crafted "plane," which triggers an out-of-bounds heap write.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2013-4263	2024-11-21 10:55	2013-11-24	Show	GitHub Exploit DB Packet Storm