Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 17, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
239111	7.5	危険	OneOrZero	-	OneOrZero Helpdesk の "forgot password" 関数におけるアクセス権を取得される脆弱性	-	CVE-2006-5474	2012-09-25 15:36	2006-10-24	Show	GitHub Exploit DB Packet Storm

239112	7.5	危険	hinton design	-	Hinton Design の phpht Topsites における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5458	2012-09-25 15:36	2006-10-23	Show	GitHub Exploit DB Packet Storm

239113	2.6	注意	Mozilla Foundation	-	Bugzilla の editversions.cgi におけるクロスサイトリクエストフォージェリの脆弱性	-	CVE-2006-5455	2012-09-25 15:36	2006-10-15	Show	GitHub Exploit DB Packet Storm

239114	5	警告	Mozilla Foundation	-	Bugzilla における deadline フィールドを取得される脆弱性	-	CVE-2006-5454	2012-09-25 15:36	2006-10-15	Show	GitHub Exploit DB Packet Storm

239115	3.5	注意	Mozilla Foundation	-	Bugzilla におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-5453	2012-09-25 15:36	2006-10-15	Show	GitHub Exploit DB Packet Storm

239116	7.5	危険	kinesis	-	KICS の index.asp における SQL インジェクションの脆弱性	-	CVE-2006-5450	2012-09-25 15:36	2006-10-23	Show	GitHub Exploit DB Packet Storm

239117	6.5	警告	Horde	-	Horde 用の Ingo モジュールの procmail における任意のコマンドを実行される脆弱性	-	CVE-2006-5449	2012-09-25 15:36	2006-10-18	Show	GitHub Exploit DB Packet Storm

239118	7.5	危険	マイクロソフト	-	Microsoft Windows DRM の drmstor.dll ActiveX オブジェクトにおける任意のコードを実行される脆弱性	-	CVE-2006-5448	2012-09-25 15:36	2006-10-23	Show	GitHub Exploit DB Packet Storm

239119	2.6	注意	marc giombetti	-	phpPowerCards の db/txt.inc.php における任意のファイルを上書きされる脆弱性	-	CVE-2006-5432	2012-09-25 15:36	2006-10-20	Show	GitHub Exploit DB Packet Storm

239120	5.1	警告	php amx	-	Php AMX の plugins/main.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5427	2012-09-25 15:36	2006-10-20	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 17, 2026, 4:15 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
346711	-	pwsphp	pwsphp	PwsPHP 1.2.2 allows remote attackers to obtain sensitive information via a direct request to the admin directory, which reveals the path in an error message.	NVD-CWE-Other	CVE-2005-1510	2016-10-18 12:20	2005-05-11	Show	GitHub Exploit DB Packet Storm

346712	-	bakbone	netvault	Heap-based buffer overflow in the demo version of Bakbone Netvault, and possibly other versions, allows remote attackers to execute arbitrary commands via a large packet to port 20031.	NVD-CWE-Other	CVE-2005-1547	2016-10-18 12:20	2005-05-14	Show	GitHub Exploit DB Packet Storm

346713	-	advanced_guestbook	advanced_guestbook	SQL injection vulnerability in index.php in Advanced Guestbook 2.3.1 allows remote attackers to execute arbitrary SQL commands via the entry parameter.	NVD-CWE-Other	CVE-2005-1548	2016-10-18 12:20	2005-05-14	Show	GitHub Exploit DB Packet Storm

346714	-	colored_scripts	easy_message_board	Directory traversal vulnerability in easymsgb.pl in Easy Message Board allows remote attackers to read arbitrary files via a .. (dot dot) in the print parameter.	NVD-CWE-Other	CVE-2005-1549	2016-10-18 12:20	2005-05-14	Show	GitHub Exploit DB Packet Storm

346715	-	colored_scripts	easy_message_board	easymsgb.pl in Easy Message Board allows remote attackers to execute arbitrary commands via shell metacharacters in the print parameter.	NVD-CWE-Other	CVE-2005-1550	2016-10-18 12:20	2005-05-14	Show	GitHub Exploit DB Packet Storm

346716	-	mozilla	bugzilla	Bugzilla 2.10 through 2.18, 2.19.1, and 2.19.2 displays a different error message depending on whether a product exists or not, which allows remote attackers to determine hidden products.	NVD-CWE-Other	CVE-2005-1563	2016-10-18 12:20	2005-05-14	Show	GitHub Exploit DB Packet Storm

346717	-	leif_m._wright	ad.cgi	The ad.cgi script allows remote attackers to read arbitrary files via a full pathname in the argument.	NVD-CWE-Other	CVE-2005-1350	2016-10-18 12:19	2005-05-2	Show	GitHub Exploit DB Packet Storm

346718	-	leif_m._wright	ad.cgi	The ad.cgi script allows remote attackers to execute arbitrary commands via shell metacharacters in the argument.	NVD-CWE-Other	CVE-2005-1351	2016-10-18 12:19	2005-05-2	Show	GitHub Exploit DB Packet Storm

346719	-	leif_m._wright	ad.cgi	Cross-site scripting (XSS) vulnerability in the ad.cgi script allows remote attackers to inject arbitrary web script or HTML via the argument.	NVD-CWE-Other	CVE-2005-1352	2016-10-18 12:19	2005-05-2	Show	GitHub Exploit DB Packet Storm

346720	-	forum.pl	forum.pl	The forum.pl script allows remote attackers to read arbitrary files via a full pathname in the argument.	NVD-CWE-Other	CVE-2005-1353	2016-10-18 12:19	2005-05-2	Show	GitHub Exploit DB Packet Storm