Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
239611 4.3 警告 dotProject - dotProject の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-3886 2012-06-26 16:02 2008-09-2 Show GitHub Exploit DB Packet Storm
239612 7.2 危険 caudium - Caudium の configvar における任意のファイルを上書きされる脆弱性 CWE-59
リンク解釈の問題 		CVE-2008-3883 2012-06-26 16:02 2008-09-2 Show GitHub Exploit DB Packet Storm
239613 9.3 危険 acoustica - Acoustica Mixcraft におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-3877 2012-06-26 16:02 2008-09-2 Show GitHub Exploit DB Packet Storm
239614 1.9 注意 アップル - Apple iPhone におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-3876 2012-06-26 16:02 2008-09-2 Show GitHub Exploit DB Packet Storm
239615 6.8 警告 cce-interact - Interact におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2008-3868 2012-06-26 16:02 2008-11-3 Show GitHub Exploit DB Packet Storm
239616 6.8 警告 cce-interact - Interact の spaces/emailuser.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3867 2012-06-26 16:02 2008-11-3 Show GitHub Exploit DB Packet Storm
239617 5 警告 davlin - Davlin Thickbox Gallery における管理者のユーザ名および MD5 パスワードハッシュを取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2008-3859 2012-06-26 16:02 2008-08-29 Show GitHub Exploit DB Packet Storm
239618 4.3 警告 Accellion - Accellion File Transfer におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-3850 2012-06-26 16:02 2008-08-27 Show GitHub Exploit DB Packet Storm
239619 4.3 警告 civic-cms - Civic Website Manager の カレンダコントローラにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-3849 2012-06-26 16:02 2008-08-27 Show GitHub Exploit DB Packet Storm
239620 4.3 警告 aguestbook - ANG におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-3847 2012-06-26 16:02 2008-08-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 18, 2026, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
256671 - phorum phorum PHP remote file inclusion vulnerability in common.php in Phorum 3.2.11 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the db_file parameter. NOTE: CVE disputes this v… NVD-CWE-Other
CVE-2006-6550 2024-08-8 06:15 2006-12-15 Show GitHub Exploit DB Packet Storm
256672 - php animated_smiley_generator PHP remote file inclusion vulnerability in signer/final.php in warez distributions of Animated Smiley Generator allows remote attackers to execute arbitrary PHP code via a URL in the smiley parameter… NVD-CWE-Other
CVE-2006-6541 2024-08-8 06:15 2006-12-14 Show GitHub Exploit DB Packet Storm
256673 - wikyblog wikyblog Directory traversal vulnerability in WBmap.php in WikyBlog 1.3.2 and earlier allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the l parameter.… NVD-CWE-Other
CVE-2006-6465 2024-08-8 06:15 2006-12-12 Show GitHub Exploit DB Packet Storm
256674 - phpadsnew phpadsnew PHP remote file inclusion vulnerability in admin/lib-maintenance.inc.php in phpAdsNew 2.0.4-pr2 allows remote attackers to execute arbitrary PHP code via a URL in the phpAds_path parameter, a differe… NVD-CWE-Other
CVE-2006-6415 2024-08-8 06:15 2006-12-10 Show GitHub Exploit DB Packet Storm
256675 - netbsd
freebsd
openbsd 		netbsd
freebsd
openbsd 		Integer overflow in banner/banner.c in FreeBSD, NetBSD, and OpenBSD might allow local users to modify memory via a long banner. NOTE: CVE and multiple third parties dispute this issue. Since banner … NVD-CWE-Other
CVE-2006-6397 2024-08-8 06:15 2006-12-8 Show GitHub Exploit DB Packet Storm
256676 - symantec livestate_agent_for_windows Symantec LiveState 7.1 Agent for Windows allows local users to gain privileges by stopping the shstart.exe process and open "Web Self-Service" from the system tray icon, which will open a browser win… NVD-CWE-Other
CVE-2006-6308 2024-08-8 06:15 2006-12-7 Show GitHub Exploit DB Packet Storm
256677 - kai_blankenhorn_bitfolge simple_and_nice_index_file PHP remote file inclusion vulnerability in index.php in Kai Blankenhorn Bitfolge simple and nice index file (aka snif) 1.5.2 and earlier allows remote attackers to execute arbitrary PHP code via a UR… NVD-CWE-Other
CVE-2006-6285 2024-08-8 06:15 2006-12-4 Show GitHub Exploit DB Packet Storm
256678 - lynx_internet_solutions evolve_merchant SQL injection vulnerability in products.asp in Evolve shopping cart (aka Evolve Merchant) allows remote attackers to execute arbitrary SQL commands via the partno parameter. NOTE: the vendor dispute… NVD-CWE-Other
CVE-2006-6207 2024-08-8 06:15 2006-12-1 Show GitHub Exploit DB Packet Storm
256679 - proftpd_project proftpd ProFTPD 1.3.0a and earlier does not properly set the buffer size limit when CommandBufferSize is specified in the configuration file, which leads to an off-by-two buffer underflow. NOTE: in November… NVD-CWE-Other
CVE-2006-6171 2024-08-8 06:15 2006-12-1 Show GitHub Exploit DB Packet Storm
256680 - active_php_bookmarks active_php_bookmarks Multiple PHP remote file inclusion vulnerabilities in L. Brandon Stone and Nathanial P. Hendler Active PHP Bookmarks (APB) 1.1.02 allow remote attackers to execute arbitrary PHP code via a URL in the… NVD-CWE-Other
CVE-2006-6167 2024-08-8 06:15 2006-11-29 Show GitHub Exploit DB Packet Storm