Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 28, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
240481 7.5 危険 iyziforum - iyzi Forum の uye/uye_ayrinti.asp における SQL インジェクションの脆弱性 - CVE-2006-5054 2012-09-25 15:36 2006-09-27 Show GitHub Exploit DB Packet Storm
240482 7.5 危険 Joomla! - Joomla! 用の Classifieds における脆弱性 CWE-noinfo
情報不足 		CVE-2006-5049 2012-09-25 15:36 2006-08-3 Show GitHub Exploit DB Packet Storm
240483 7.5 危険 Joomla! - Joomla! 用の RS Gallery2 コンポーネントにおけるコードを実行される脆弱性 - CVE-2006-5047 2012-09-25 15:36 2006-09-27 Show GitHub Exploit DB Packet Storm
240484 7.5 危険 Joomla! - Joomla! 用の RS Gallery2 における脆弱性 - CVE-2006-5046 2012-09-25 15:36 2006-07-23 Show GitHub Exploit DB Packet Storm
240485 6.8 警告 joomlaxt - Joomla! 用の pollxt コンポーネントにおける脆弱性 CWE-94
コード・インジェクション 		CVE-2006-5045 2012-09-25 15:36 2006-07-23 Show GitHub Exploit DB Packet Storm
240486 7.5 危険 Mambo Foundation
Joomla!		 - Mambo および Joomla! 用の Prince Clan Chess コンポーネントにおける脆弱性 - CVE-2006-5044 2012-09-25 15:36 2006-07-23 Show GitHub Exploit DB Packet Storm
240487 6.8 警告 joomlaboard - Joomla! 用の Joomlaboard Forum Component における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2006-5043 2012-09-25 15:36 2006-07-23 Show GitHub Exploit DB Packet Storm
240488 7.5 危険 Joomla! - Joomla! 用の mosMedia における脆弱性 CWE-noinfo
情報不足 		CVE-2006-5042 2012-09-25 15:36 2006-07-20 Show GitHub Exploit DB Packet Storm
240489 7.5 危険 Joomla! - Jooml! 用の Hot Properties における脆弱性 CWE-noinfo
情報不足 		CVE-2006-5041 2012-09-25 15:36 2006-07-23 Show GitHub Exploit DB Packet Storm
240490 7.5 危険 Joomla! - Joomla! 用の SEF404x における脆弱性 CWE-noinfo
情報不足 		CVE-2006-5040 2012-09-25 15:36 2006-07-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
285091 - webtitan webtitan Directory traversal vulnerability in logs-x.php in WebTitan before 4.04 allows remote attackers to read arbitrary files via a .. (dot dot) in the logfile parameter in a download action. CWE-22
Path Traversal 		CVE-2014-4306 2024-11-21 11:09 2014-06-18 Show GitHub Exploit DB Packet Storm
285092 - openfiler openfiler Multiple cross-site scripting (XSS) vulnerabilities in Openfiler 2.99 allow remote attackers to inject arbitrary web script or HTML via the (1) TinkerAjax parameter to uptime.html, or remote authenti… CWE-79
Cross-site Scripting 		CVE-2014-4309 2024-11-21 11:09 2014-06-18 Show GitHub Exploit DB Packet Storm
285093 - nice recording_express Multiple SQL injection vulnerabilities in NICE Recording eXpress (aka Cybertech eXpress) 6.5.7 and earlier allow remote attackers to execute arbitrary SQL commands via unspecified vectors. CWE-89
SQL Injection 		CVE-2014-4305 2024-11-21 11:09 2014-06-18 Show GitHub Exploit DB Packet Storm
285094 - sqlbuddy sql_buddy Cross-site scripting (XSS) vulnerability in browse.php in SQL Buddy 1.3.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the table parameter. CWE-79
Cross-site Scripting 		CVE-2014-4304 2024-11-21 11:09 2014-06-18 Show GitHub Exploit DB Packet Storm
285095 - drupac touch Multiple cross-site scripting (XSS) vulnerabilities in the Touch theme 7.x-1.x before 7.x-1.9 for Drupal allow remote authenticated users with the Administer themes permission to inject arbitrary web… CWE-79
Cross-site Scripting 		CVE-2014-4303 2024-11-21 11:09 2014-06-18 Show GitHub Exploit DB Packet Storm
285096 - ham3d ham3d_shop_engine Cross-site scripting (XSS) vulnerability in rating/rating.php in HAM3D Shop Engine allows remote attackers to inject arbitrary web script or HTML via the ID parameter. CWE-79
Cross-site Scripting 		CVE-2014-4302 2024-11-21 11:09 2014-06-18 Show GitHub Exploit DB Packet Storm
285097 - ajenti ajenti Multiple cross-site scripting (XSS) vulnerabilities in the respond_error function in routing.py in Eugene Pankov Ajenti before 1.2.21.7 allow remote attackers to inject arbitrary web script or HTML v… CWE-79
Cross-site Scripting 		CVE-2014-4301 2024-11-21 11:09 2014-06-18 Show GitHub Exploit DB Packet Storm
285098 - ulli_horlacher fex Incomplete blacklist vulnerability in Frams' Fast File EXchange (F*EX, aka fex) before fex-20140530 allows remote attackers to conduct cross-site scripting (XSS) attacks via the addto parameter to fu… NVD-CWE-Other
CVE-2014-3877 2024-11-21 11:09 2014-06-18 Show GitHub Exploit DB Packet Storm
285099 - ulli_horlacher fex Multiple cross-site scripting (XSS) vulnerabilities in Frams' Fast File EXchange (F*EX, aka fex) before fex-20140530 allow remote attackers to inject arbitrary web script or HTML via the (1) akey par… CWE-79
Cross-site Scripting 		CVE-2014-3876 2024-11-21 11:09 2014-06-18 Show GitHub Exploit DB Packet Storm
285100 - dell bsafe_share The TLS implementation in EMC RSA BSAFE-Java Toolkits (aka Share for Java) supports the Extended Random extension during use of the Dual_EC_DRBG algorithm, which makes it easier for remote attackers … CWE-310
Cryptographic Issues 		CVE-2014-4193 2024-11-21 11:09 2014-06-18 Show GitHub Exploit DB Packet Storm