Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 7, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
233311 7.5 危険 phpadventure - PHPAdventure の ad_main.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5839 2012-12-20 18:02 2006-11-9 Show GitHub Exploit DB Packet Storm
233312 7.5 危険 simplechat - iWare Professional CMS 用の SimpleChat モジュールにおける chat_log.php へ任意の PHP コードを挿入される脆弱性 - CVE-2006-5837 2012-12-20 18:02 2006-11-9 Show GitHub Exploit DB Packet Storm
233313 6.8 警告 phpComasy - phpComasy CMS の index.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-5827 2012-12-20 18:02 2006-11-9 Show GitHub Exploit DB Packet Storm
233314 5.8 警告 texas imperial software - Texas Imperial Software WFTPD Pro Server におけるバッファオーバーフローの脆弱性 - CVE-2006-5826 2012-12-20 18:02 2006-11-9 Show GitHub Exploit DB Packet Storm
233315 10 危険 シマンテック - Symantec Veritas NetBackup の NetBackup bpcd デーモンにおけるスタックベースのバッファオーバーフローの脆弱性 - CVE-2006-5822 2012-12-20 18:02 2006-12-13 Show GitHub Exploit DB Packet Storm
233316 10 危険 verity - Verity Ultraseek における Web 攻撃などに対するプロキシとしてサーバを使用される脆弱性 - CVE-2006-5819 2012-12-20 18:02 2006-11-17 Show GitHub Exploit DB Packet Storm
233317 6.8 警告 XOOPS - XOOPS の modules/wfdownloads/newlist.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-5810 2012-12-20 18:02 2006-11-8 Show GitHub Exploit DB Packet Storm
233318 7.5 危険 the web drivers - The Web Drivers Simple Forum の message_details.php における SQL インジェクションの脆弱性 - CVE-2006-5802 2012-12-20 18:02 2006-11-8 Show GitHub Exploit DB Packet Storm
233319 2.6 注意 xenis - xenis.creator CMS の default.asp におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-5800 2012-12-20 18:02 2006-11-8 Show GitHub Exploit DB Packet Storm
233320 6.8 警告 xenis - xenis.creator CMS の default.asp におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-5799 2012-12-20 18:02 2006-11-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 7, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
292851 5.3 MEDIUM
Network 		karotz api Karotz API 12.07.19.00: Session Token Information Disclosure CWE-200
Information Exposure 		CVE-2013-4868 2024-11-21 10:56 2019-12-28 Show GitHub Exploit DB Packet Storm
292852 6.3 MEDIUM
Physics 		ea karotz_smart_rabbit_firmware Electronic Arts Karotz Smart Rabbit 12.07.19.00 allows Python module hijacking CWE-269
 Improper Privilege Management 		CVE-2013-4867 2024-11-21 10:56 2019-12-28 Show GitHub Exploit DB Packet Storm
292853 8.1 HIGH
Network 		insteon hub_firmware INSTEON Hub 2242-222 lacks Web and API authentication CWE-276
Incorrect Default Permissions  		CVE-2013-4859 2024-11-21 10:56 2019-12-28 Show GitHub Exploit DB Packet Storm
292854 8.8 HIGH
Network 		reviewboard reviewboard ReviewBoard 1.6.17 allows code execution by attaching PHP scripts to review request CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2013-4796 2024-11-21 10:56 2019-12-28 Show GitHub Exploit DB Packet Storm
292855 4.3 MEDIUM
Physics 		samsung galaxy_s3_firmware
galaxy_s4_firmware 		Samsung Galaxy S3/S4 exposes an unprotected component allowing an unprivileged app to send arbitrary SMS texts to arbitrary destinations without permission. CWE-276
Incorrect Default Permissions  		CVE-2013-4764 2024-11-21 10:56 2019-12-28 Show GitHub Exploit DB Packet Storm
292856 4.6 MEDIUM
Physics 		samsung galaxy_s3_firmware
galaxy_s4_firmware 		Samsung Galaxy S3/S4 exposes an unprotected component allowing arbitrary SMS text messages without requesting permission. CWE-276
Incorrect Default Permissions  		CVE-2013-4763 2024-11-21 10:56 2019-12-28 Show GitHub Exploit DB Packet Storm
292857 9.8 CRITICAL
Network 		static_http_server_project static_http_server Static HTTP Server 1.0 has a Local Overflow CWE-120
Classic Buffer Overflow 		CVE-2013-4743 2024-11-21 10:56 2019-12-28 Show GitHub Exploit DB Packet Storm
292858 6.1 MEDIUM
Network 		xorbin analog_flash_clock Xorbin Analog Flash Clock 1.0 extension for Joomia has XSS CWE-79
Cross-site Scripting 		CVE-2013-4692 2024-11-21 10:56 2019-12-28 Show GitHub Exploit DB Packet Storm
292859 7.8 HIGH
Local 		winamp winamp Winamp 5.63: Invalid Pointer Dereference leading to Arbitrary Code Execution CWE-763
 Release of Invalid Pointer or Reference 		CVE-2013-4695 2024-11-21 10:56 2019-12-28 Show GitHub Exploit DB Packet Storm
292860 6.1 MEDIUM
Network 		xorbin digital_flash_clock WordPress Xorbin Digital Flash Clock 1.0 has XSS CWE-79
Cross-site Scripting 		CVE-2013-4693 2024-11-21 10:56 2019-12-28 Show GitHub Exploit DB Packet Storm