Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 1, 2026, 4:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
233091 7.5 危険 techno dreams - Techno Dreams Articles & Papers Package の ArticlesTableview.asp における SQL インジェクションの脆弱性 - CVE-2006-4891 2012-12-20 18:02 2006-09-19 Show GitHub Exploit DB Packet Storm
233092 7.5 危険 unak - UNAK-CMS における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4890 2012-12-20 18:02 2006-09-19 Show GitHub Exploit DB Packet Storm
233093 5.1 警告 telekorn - Telekorn SL における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4889 2012-12-20 18:02 2006-09-19 Show GitHub Exploit DB Packet Storm
233094 7.5 危険 shadowed portal - Shadowed Portal における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4885 2012-12-20 18:02 2006-09-19 Show GitHub Exploit DB Packet Storm
233095 5 警告 phpquiz - Walter Beschmout PhpQuiz における重要な情報を取得される脆弱性 - CVE-2006-4865 2012-12-20 18:02 2006-09-19 Show GitHub Exploit DB Packet Storm
233096 4.3 警告 roller weblogger - Roller WebLogger におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-4856 2012-12-20 18:02 2006-09-19 Show GitHub Exploit DB Packet Storm
233097 4.9 警告 シマンテック - Symantec Norton Personal Firewall などの \Device\SymEvent ドライバにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2006-4855 2012-12-20 18:02 2006-09-19 Show GitHub Exploit DB Packet Storm
233098 7.5 危険 quadcomm - QuadComm Q-Shop の browse.asp における SQL インジェクションの脆弱性 - CVE-2006-4852 2012-12-20 18:02 2006-09-18 Show GitHub Exploit DB Packet Storm
233099 5 警告 ソフォス - Sophos Anti-Virus におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-4839 2012-12-20 18:02 2006-11-1 Show GitHub Exploit DB Packet Storm
233100 7.5 危険 phpquiz - Jule Slootbeek phpQuiz の index.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4834 2012-12-20 18:02 2006-09-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
292491 7.5 HIGH
Network 		netapp oncommand_system_manager NetApp OnCommand System Manager 2.1 and earlier allows remote attackers to include arbitrary files through specially crafted requests to the "diagnostic" page using the SnapMirror log path parameter. CWE-829
 Inclusion of Functionality from Untrusted Control Sphere 		CVE-2013-3321 2024-11-21 10:53 2020-01-30 Show GitHub Exploit DB Packet Storm
292492 6.1 MEDIUM
Network 		netapp oncommand_system_manager Cross-site Scripting (XSS) vulnerability in NetApp OnCommand System Manager before 2.2 allows remote attackers to inject arbitrary web script or HTML via the 'full-name' and 'comment' fields. CWE-79
Cross-site Scripting 		CVE-2013-3320 2024-11-21 10:53 2020-01-30 Show GitHub Exploit DB Packet Storm
292493 9.8 CRITICAL
Network 		netgear wnr1000_firmware Netgear WNR1000v3 with firmware before 1.0.2.60 contains an Authentication Bypass via the NtgrBak key. CWE-287
Improper Authentication 		CVE-2013-3317 2024-11-21 10:53 2020-01-30 Show GitHub Exploit DB Packet Storm
292494 9.8 CRITICAL
Network 		netgear wnr1000_firmware Netgear WNR1000v3 with firmware before 1.0.2.60 contains an Authentication Bypass due to the server skipping checks for URLs containing a ".jpg". CWE-287
Improper Authentication 		CVE-2013-3316 2024-11-21 10:53 2020-01-30 Show GitHub Exploit DB Packet Storm
292495 9.8 CRITICAL
Network 		vtiger vtiger_crm vtiger CRM 5.4.0 and earlier contain an Authentication Bypass Vulnerability due to improper authentication validation in the validateSession function. CWE-287
Improper Authentication 		CVE-2013-3215 2024-11-21 10:53 2020-01-30 Show GitHub Exploit DB Packet Storm
292496 9.8 CRITICAL
Network 		vtiger vtiger_crm vtiger CRM 5.4.0 and earlier contain a PHP Code Injection Vulnerability in 'vtigerolservice.php'. CWE-74
Injection 		CVE-2013-3214 2024-11-21 10:53 2020-01-29 Show GitHub Exploit DB Packet Storm
292497 8.1 HIGH
Network 		vtiger vtiger_crm vtiger CRM 5.4.0 and earlier contain local file-include vulnerabilities in 'customerportal.php' which allows remote attackers to view files and execute local script code. CWE-74
Injection 		CVE-2013-3212 2024-11-21 10:53 2020-01-29 Show GitHub Exploit DB Packet Storm
292498 9.8 CRITICAL
Network 		xnview xnview XnView 2.03 has an integer overflow vulnerability CWE-190
 Integer Overflow or Wraparound 		CVE-2013-3493 2024-11-21 10:53 2020-01-28 Show GitHub Exploit DB Packet Storm
292499 9.8 CRITICAL
Network 		xnview xnview XnView 2.03 has a stack-based buffer overflow vulnerability CWE-787
 Out-of-bounds Write 		CVE-2013-3492 2024-11-21 10:53 2020-01-28 Show GitHub Exploit DB Packet Storm
292500 9.6 CRITICAL
Network 		irfanview flashpix_plugin IrfanView FlashPix Plugin 4.3.4 0 has an Integer Overflow Vulnerability CWE-190
 Integer Overflow or Wraparound 		CVE-2013-3486 2024-11-21 10:53 2020-01-28 Show GitHub Exploit DB Packet Storm