Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 16, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
234021	7.5	危険	ruben boelinger	-	WordPress 用の myflash プラグインにおける PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2485	2012-12-20 18:19	2007-05-3	Show	GitHub Exploit DB Packet Storm

234022	6.8	警告	ruben boelinger	-	WordPress 用の wp-Table プラグインにおける PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2484	2012-12-20 18:19	2007-05-3	Show	GitHub Exploit DB Packet Storm

234023	6.8	警告	ruben boelinger	-	WordPress 用の wp-Table プラグインにおけるディレクトリトラバーサルの脆弱性	-	CVE-2007-2483	2012-12-20 18:19	2007-05-3	Show	GitHub Exploit DB Packet Storm

234024	6.8	警告	ruben boelinger	-	WordPress 用の wordTube プラグインにおけるディレクトリトラバーサルの脆弱性	-	CVE-2007-2482	2012-12-20 18:19	2007-05-3	Show	GitHub Exploit DB Packet Storm

234025	6.8	警告	ruben boelinger	-	WordPress 用の wordTube プラグインの wordtube-button.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2481	2012-12-20 18:19	2007-05-3	Show	GitHub Exploit DB Packet Storm

234026	7.5	危険	turnkey web tools	-	Turnkey Web Tools SunShop Shopping Cart における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2474	2012-12-20 18:19	2007-05-2	Show	GitHub Exploit DB Packet Storm

234027	4.3	警告	sendcard	-	Sendcard の sendcard.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-2472	2012-12-20 18:19	2007-05-2	Show	GitHub Exploit DB Packet Storm

234028	5	警告	sendcard	-	Sendcard の sendcard.php におけるディレクトリトラバーサルの脆弱性	-	CVE-2007-2471	2012-12-20 18:19	2007-05-2	Show	GitHub Exploit DB Packet Storm

234029	4.9	警告	zonelabs	-	ZoneAlarm におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-2467	2012-12-20 18:19	2007-05-2	Show	GitHub Exploit DB Packet Storm

234030	7.8	危険	サン・マイクロシステムズ	-	Sun Java System Directory Server および Sun ONE Directory Server で使用されている C 用の LDAP SDK におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-2466	2012-12-20 18:19	2007-05-1	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
345121	-	dxmsoft	xm_easy_personal_ftp_server	Buffer overflow in XM Easy Personal FTP Server 4.2 and 5.0.1 allows remote authenticated users to cause a denial of service via a long argument to the PORT command.	NVD-CWE-Other	CVE-2006-2226	2017-10-19 10:29	2006-05-6	Show	GitHub Exploit DB Packet Storm

345122	-	acftp	acftp	acFTP 1.4 allows remote attackers to cause a denial of service (application crash) via a long string with "{" (brace) characters to the USER command.	NVD-CWE-Other	CVE-2006-2242	2017-10-19 10:29	2006-05-9	Show	GitHub Exploit DB Packet Storm

345123	-	otterware	statit	PHP remote file inclusion vulnerability in visible_count_inc.php in Statit 4 (060207) allows remote attackers to execute arbitrary PHP code via a URL in the statitpath parameter.	NVD-CWE-Other	CVE-2006-2253	2017-10-19 10:29	2006-05-9	Show	GitHub Exploit DB Packet Storm

345124	-	eqdkp	eqdkp	PHP remote file inclusion vulnerability in includes/dbal.php in EQdkp 1.3.0 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the eqdkp_root_path parameter.	NVD-CWE-Other	CVE-2006-2256	2017-10-19 10:29	2006-05-9	Show	GitHub Exploit DB Packet Storm

345125	-	acal	acal	PHP remote file inclusion vulnerability in day.php in ACal 2.2.6 allows remote attackers to execute arbitrary PHP code via a URL in the path parameter.	NVD-CWE-Other	CVE-2006-2261	2017-10-19 10:29	2006-05-9	Show	GitHub Exploit DB Packet Storm

345126	-	virtual_programming	vp-asp	SQL injection vulnerability in shopcurrency.asp in VP-ASP 6.00 allows remote attackers to execute arbitrary SQL commands via the cid parameter.	NVD-CWE-Other	CVE-2006-2263	2017-10-19 10:29	2006-05-9	Show	GitHub Exploit DB Packet Storm

345127	-	mxbb php_arena	mxbb_portal pafiledb	PHP remote file inclusion vulnerability in pafiledb_constants.php in Download Manager (mxBB pafiledb) integration, as used with phpBB, allows remote attackers to execute arbitrary PHP code via a URL …	NVD-CWE-Other	CVE-2006-2361	2017-10-19 10:29	2006-05-16	Show	GitHub Exploit DB Packet Storm

345128	-	blue_dragon	php_blue_dragon	PHP remote file inclusion vulnerability in public_includes/pub_popup/popup_finduser.php in PHP Blue Dragon Platinum 2.8.0 allows remote attackers to execute arbitrary PHP code via a URL in the vsDrag…	NVD-CWE-Other	CVE-2006-2392	2017-10-19 10:29	2006-05-16	Show	GitHub Exploit DB Packet Storm

345129	-	ezusermanager	ezusermanager	PHP remote file inclusion vulnerability in ezUserManager 1.6 and earlier, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the ezUserManager_Path p…	NVD-CWE-Other	CVE-2006-2424	2017-10-19 10:29	2006-05-17	Show	GitHub Exploit DB Packet Storm

345130	-	ezusermanager	ezusermanager	The vulnerability has been confirmed in version 1.6 and the vendor states that only version 1.6 is affected. Successful exploitation requires that "register_globals" is enabled.	NVD-CWE-Other	CVE-2006-2424	2017-10-19 10:29	2006-05-17	Show	GitHub Exploit DB Packet Storm