Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
239511	4.3	警告	availscript	-	Availscript Photo Album におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-4370	2012-06-26 16:02	2008-10-1	Show	GitHub Exploit DB Packet Storm

239512	7.5	危険	availscript	-	Availscript Photo Album の pics.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4369	2012-06-26 16:02	2008-10-1	Show	GitHub Exploit DB Packet Storm

239513	6.5	警告	camera life	-	Camera Life の画像アップロードコンポーネントにおける任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2008-4366	2012-06-26 16:02	2008-09-30	Show	GitHub Exploit DB Packet Storm

239514	7.2	危険	deslock	-	DESlock+ の DLMFENC.sys における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2008-4363	2012-06-26 16:02	2008-09-30	Show	GitHub Exploit DB Packet Storm

239515	9.3	危険	filestream	-	HP OpenView Performance Agent の DynaZip Max Secure におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-4420	2012-06-26 16:02	2009-04-8	Show	GitHub Exploit DB Packet Storm

239516	6.4	警告	Daniel J. Bernstein	-	Daniel J. Bernstein djbdns の dnscache における DNS レスポンスを偽装される脆弱性	CWE-362 競合状態	CVE-2008-4392	2012-06-26 16:02	2009-02-19	Show	GitHub Exploit DB Packet Storm

239517	7.2	危険	ESET	-	ESET System Analyzer Tool の esiasdrv.sys における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2008-4451	2012-06-26 16:02	2008-10-6	Show	GitHub Exploit DB Packet Storm

239518	4.3	警告	Apache Friends	-	XAMPP の adodb.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-4450	2012-06-26 16:02	2008-10-6	Show	GitHub Exploit DB Packet Storm

239519	7.2	危険	Debian	-	feta の to-upgrade プラグインにおける任意のファイルを上書きされる脆弱性	CWE-59 リンク解釈の問題	CVE-2008-4440	2012-06-26 16:02	2008-08-24	Show	GitHub Exploit DB Packet Storm

239520	4.3	警告	datafeed studio	-	Datafeed Studio の search.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-4438	2012-06-26 16:02	2008-10-3	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 18, 2026, 4:11 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
256671	-	phorum	phorum	PHP remote file inclusion vulnerability in common.php in Phorum 3.2.11 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the db_file parameter. NOTE: CVE disputes this v…	NVD-CWE-Other	CVE-2006-6550	2024-08-8 06:15	2006-12-15	Show	GitHub Exploit DB Packet Storm

256672	-	php	animated_smiley_generator	PHP remote file inclusion vulnerability in signer/final.php in warez distributions of Animated Smiley Generator allows remote attackers to execute arbitrary PHP code via a URL in the smiley parameter…	NVD-CWE-Other	CVE-2006-6541	2024-08-8 06:15	2006-12-14	Show	GitHub Exploit DB Packet Storm

256673	-	wikyblog	wikyblog	Directory traversal vulnerability in WBmap.php in WikyBlog 1.3.2 and earlier allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the l parameter.…	NVD-CWE-Other	CVE-2006-6465	2024-08-8 06:15	2006-12-12	Show	GitHub Exploit DB Packet Storm

256674	-	phpadsnew	phpadsnew	PHP remote file inclusion vulnerability in admin/lib-maintenance.inc.php in phpAdsNew 2.0.4-pr2 allows remote attackers to execute arbitrary PHP code via a URL in the phpAds_path parameter, a differe…	NVD-CWE-Other	CVE-2006-6415	2024-08-8 06:15	2006-12-10	Show	GitHub Exploit DB Packet Storm

256675	-	netbsd freebsd openbsd	netbsd freebsd openbsd	Integer overflow in banner/banner.c in FreeBSD, NetBSD, and OpenBSD might allow local users to modify memory via a long banner. NOTE: CVE and multiple third parties dispute this issue. Since banner …	NVD-CWE-Other	CVE-2006-6397	2024-08-8 06:15	2006-12-8	Show	GitHub Exploit DB Packet Storm

256676	-	symantec	livestate_agent_for_windows	Symantec LiveState 7.1 Agent for Windows allows local users to gain privileges by stopping the shstart.exe process and open "Web Self-Service" from the system tray icon, which will open a browser win…	NVD-CWE-Other	CVE-2006-6308	2024-08-8 06:15	2006-12-7	Show	GitHub Exploit DB Packet Storm

256677	-	kai_blankenhorn_bitfolge	simple_and_nice_index_file	PHP remote file inclusion vulnerability in index.php in Kai Blankenhorn Bitfolge simple and nice index file (aka snif) 1.5.2 and earlier allows remote attackers to execute arbitrary PHP code via a UR…	NVD-CWE-Other	CVE-2006-6285	2024-08-8 06:15	2006-12-4	Show	GitHub Exploit DB Packet Storm

256678	-	lynx_internet_solutions	evolve_merchant	SQL injection vulnerability in products.asp in Evolve shopping cart (aka Evolve Merchant) allows remote attackers to execute arbitrary SQL commands via the partno parameter. NOTE: the vendor dispute…	NVD-CWE-Other	CVE-2006-6207	2024-08-8 06:15	2006-12-1	Show	GitHub Exploit DB Packet Storm

256679	-	proftpd_project	proftpd	ProFTPD 1.3.0a and earlier does not properly set the buffer size limit when CommandBufferSize is specified in the configuration file, which leads to an off-by-two buffer underflow. NOTE: in November…	NVD-CWE-Other	CVE-2006-6171	2024-08-8 06:15	2006-12-1	Show	GitHub Exploit DB Packet Storm

256680	-	active_php_bookmarks	active_php_bookmarks	Multiple PHP remote file inclusion vulnerabilities in L. Brandon Stone and Nathanial P. Hendler Active PHP Bookmarks (APB) 1.1.02 allow remote attackers to execute arbitrary PHP code via a URL in the…	NVD-CWE-Other	CVE-2006-6167	2024-08-8 06:15	2006-11-29	Show	GitHub Exploit DB Packet Storm