Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 19, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
239991 5.1 警告 knusperleicht - Knusperleicht FileManager の index.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-3987 2012-09-25 15:35 2006-08-4 Show GitHub Exploit DB Packet Storm
239992 7.5 危険 knusperleicht - Knusperleicht Newsletter の index.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-3986 2012-09-25 15:35 2006-08-4 Show GitHub Exploit DB Packet Storm
239993 7.5 危険 knusperleicht - Knusperleicht Quickie の quickie.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-3982 2012-09-25 15:35 2006-08-4 Show GitHub Exploit DB Packet Storm
239994 7.5 危険 Mambo Foundation - Mambo 用の MGM における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-3981 2012-09-25 15:35 2006-08-4 Show GitHub Exploit DB Packet Storm
239995 6.8 警告 Mambo Foundation - Mambo 用の MGM における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2006-3980 2012-09-25 15:35 2006-08-4 Show GitHub Exploit DB Packet Storm
239996 7.2 危険 macromedia - ColdFusion の AdminAPI における認証を回避される脆弱性 - CVE-2006-3979 2012-09-25 15:35 2006-08-8 Show GitHub Exploit DB Packet Storm
239997 7.2 危険 my firewall plus - My Firewall Plus における SYSTEM の権限を取得される脆弱性 - CVE-2006-3973 2012-09-25 15:35 2006-11-22 Show GitHub Exploit DB Packet Storm
239998 7.5 危険 Joomla! - Joomla! 用の LMO Component における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-3970 2012-09-25 15:35 2006-07-31 Show GitHub Exploit DB Packet Storm
239999 7.5 危険 Joomla! - Joomla! 用の Colophon における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-3969 2012-09-25 15:35 2006-08-1 Show GitHub Exploit DB Packet Storm
240000 7.5 危険 moskool - MamboXChange Moskool における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-3967 2012-09-25 15:35 2006-08-1 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 20, 2026, 4:14 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
286241 - phpmyfaq phpmyfaq Cross-site scripting (XSS) vulnerability in phpMyFAQ before 2.8.6 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. CWE-79
Cross-site Scripting 		CVE-2014-0814 2024-11-21 11:02 2014-02-15 Show GitHub Exploit DB Packet Storm
286242 - phpmyfaq phpmyfaq Cross-site request forgery (CSRF) vulnerability in phpMyFAQ before 2.8.6 allows remote attackers to hijack the authentication of arbitrary users for requests that modify settings. CWE-352
 Origin Validation Error 		CVE-2014-0813 2024-11-21 11:02 2014-02-15 Show GitHub Exploit DB Packet Storm
286243 - ibm connections_portlets Multiple cross-site scripting (XSS) vulnerabilities in IBM Connections Portlets 4.x before 4.5.1 FP1 for IBM WebSphere Portal 7.0.0.2 and 8.0.0.1 allow remote attackers to inject arbitrary web script… CWE-79
Cross-site Scripting 		CVE-2014-0855 2024-11-21 11:02 2014-02-14 Show GitHub Exploit DB Packet Storm
286244 - cisco unified_communications_manager SQL injection vulnerability in the Enterprise Mobility Application (EMApp) interface in Cisco Unified Communications Manager (UCM) allows remote attackers to execute arbitrary SQL commands via a craf… CWE-89
SQL Injection 		CVE-2014-0729 2024-11-21 11:02 2014-02-13 Show GitHub Exploit DB Packet Storm
286245 - cisco unified_communications_manager SQL injection vulnerability in the Java database interface in Cisco Unified Communications Manager (UCM) 10.0(1) and earlier allows remote attackers to execute arbitrary SQL commands via a crafted UR… CWE-89
SQL Injection 		CVE-2014-0728 2024-11-21 11:02 2014-02-13 Show GitHub Exploit DB Packet Storm
286246 - cisco unified_communications_manager SQL injection vulnerability in the CallManager Interactive Voice Response (CMIVR) interface in Cisco Unified Communications Manager (UCM) allows remote attackers to execute arbitrary SQL commands via… CWE-89
SQL Injection 		CVE-2014-0727 2024-11-21 11:02 2014-02-13 Show GitHub Exploit DB Packet Storm
286247 - cisco unified_communications_manager SQL injection vulnerability in the IP Manager Assistant (IPMA) interface in Cisco Unified Communications Manager (UCM) 10.0(1) and earlier allows remote attackers to execute arbitrary SQL commands vi… CWE-89
SQL Injection 		CVE-2014-0726 2024-11-21 11:02 2014-02-13 Show GitHub Exploit DB Packet Storm
286248 - cisco unified_communications_manager Cisco Unified Communications Manager (UCM) does not require authentication for reading WAR files, which allows remote attackers to obtain sensitive information via unspecified access to a "file stora… CWE-287
Improper Authentication 		CVE-2014-0725 2024-11-21 11:02 2014-02-13 Show GitHub Exploit DB Packet Storm
286249 - cisco unified_communications_manager The bulk administration interface in Cisco Unified Communications Manager (UCM) 10.0(1) and earlier allows remote attackers to bypass authentication and read arbitrary files by using an unspecified p… CWE-20
 Improper Input Validation  		CVE-2014-0724 2024-11-21 11:02 2014-02-13 Show GitHub Exploit DB Packet Storm
286250 - cisco unified_communications_manager Cross-site scripting (XSS) vulnerability in the IP Manager Assistant (IPMA) interface in Cisco Unified Communications Manager (UCM) allows remote attackers to inject arbitrary web script or HTML via … CWE-79
Cross-site Scripting 		CVE-2014-0723 2024-11-21 11:02 2014-02-13 Show GitHub Exploit DB Packet Storm