Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 7, 2026, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
241491	7.5	危険	mamboxchange	-	Mambo 用の mambowiki コンポーネントにおける PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4282	2012-09-25 15:35	2006-08-22	Show	GitHub Exploit DB Packet Storm

241492	7.5	危険	Mambo Foundation	-	Mambo の catalogshop コンポーネントにおける PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4275	2012-09-25 15:35	2006-08-21	Show	GitHub Exploit DB Packet Storm

241493	6.8	警告	vBulletin Solutions, Inc.	-	Jelsoft vBulletin におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-4273	2012-09-25 15:35	2006-08-3	Show	GitHub Exploit DB Packet Storm

241494	6.8	警告	Mambo Foundation	-	Mambo 用の mambelfish コンポーネントにおける PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2006-4270	2012-09-25 15:35	2006-08-21	Show	GitHub Exploit DB Packet Storm

241495	5	警告	カスペルスキー	-	Kaspersky Anti-Hacker における ICMP へのレスポンスを取得される脆弱性	-	CVE-2006-4265	2012-09-25 15:35	2006-08-21	Show	GitHub Exploit DB Packet Storm

241496	5	警告	jake olefsky	-	Fotopholder の index.php におけるディレクトリトラバーサルの脆弱性	-	CVE-2006-4260	2012-09-25 15:35	2006-08-21	Show	GitHub Exploit DB Packet Storm

241497	6.8	警告	マイクロソフト	-	Microsoft DirectX SDK におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2006-4183	2012-09-25 15:35	2007-07-18	Show	GitHub Exploit DB Packet Storm

241498	2.6	注意	jake olefsky	-	Fotopholder の index.php におけるディレクトリトラバーサルの脆弱性	-	CVE-2006-4259	2012-09-25 15:35	2006-08-21	Show	GitHub Exploit DB Packet Storm

241499	4	警告	john hanna	-	ASSP の get 機能における絶対パストラバーサルの脆弱性	-	CVE-2006-4258	2012-09-25 15:35	2006-08-21	Show	GitHub Exploit DB Packet Storm

241500	4	警告	IBM	-	IBM DB2 UDB におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2006-4257	2012-09-25 15:35	2006-08-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 7, 2026, 4:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
265791	9.8	CRITICAL Network	mybb	merge_system mybb	SQL injection vulnerability in the users data handler in MyBB (aka MyBulletinBoard) before 1.8.8 and MyBB Merge System before 1.8.8 allows remote attackers to execute arbitrary SQL commands via unspe…	CWE-89 SQL Injection	CVE-2016-9416	2024-11-21 12:01	2017-02-1	Show	GitHub Exploit DB Packet Storm

265792	7.5	HIGH Network	mybb	merge_system mybb	MyBB (aka MyBulletinBoard) before 1.8.8 on Windows and MyBB Merge System before 1.8.8 on Windows allow remote attackers to overwrite arbitrary CSS files via vectors related to "style import."	CWE-284 Improper Access Control	CVE-2016-9415	2024-11-21 12:01	2017-02-1	Show	GitHub Exploit DB Packet Storm

265793	7.5	HIGH Network	mybb	mybb merge_system	MyBB (aka MyBulletinBoard) before 1.8.7 and MyBB Merge System before 1.8.7 allow remote attackers to obtain sensitive information by leveraging missing directory listing protection in upload director…	CWE-200 Information Exposure	CVE-2016-9414	2024-11-21 12:01	2017-02-1	Show	GitHub Exploit DB Packet Storm

265794	6.5	MEDIUM Network	mybb	mybb merge_system	The Admin control panel in MyBB (aka MyBulletinBoard) before 1.8.7 and MyBB Merge System before 1.8.7 allows remote attackers to conduct clickjacking attacks via unspecified vectors.	CWE-284 Improper Access Control	CVE-2016-9413	2024-11-21 12:01	2017-02-1	Show	GitHub Exploit DB Packet Storm

265795	9.8	CRITICAL Network	mybb	mybb merge_system	MyBB (aka MyBulletinBoard) before 1.8.7 and MyBB Merge System before 1.8.7 allow attackers to have unspecified impact via vectors related to low adminsid and sid entropy.	CWE-284 Improper Access Control	CVE-2016-9412	2024-11-21 12:01	2017-02-1	Show	GitHub Exploit DB Packet Storm

265796	5.3	MEDIUM Network	mybb	mybb merge_system	The Admin control panel in MyBB (aka MyBulletinBoard) before 1.8.7 and MyBB Merge System before 1.8.7 allows remote attackers to obtain the installation path via vectors involving sending mails.	CWE-200 Information Exposure	CVE-2016-9411	2024-11-21 12:01	2017-02-1	Show	GitHub Exploit DB Packet Storm

265797	7.5	HIGH Network	mybb	mybb merge_system	MyBB (aka MyBulletinBoard) before 1.8.7 and MyBB Merge System before 1.8.7 might allow remote attackers to obtain sensitive database information via vectors involving templates.	CWE-200 Information Exposure	CVE-2016-9410	2024-11-21 12:01	2017-02-1	Show	GitHub Exploit DB Packet Storm

265798	6.1	MEDIUM Network	mybb	mybb merge_system	Cross-site scripting (XSS) vulnerability in the Admin control panel in MyBB (aka MyBulletinBoard) before 1.8.7 and MyBB Merge System before 1.8.7 might allow remote attackers to inject arbitrary web …	CWE-79 Cross-site Scripting	CVE-2016-9409	2024-11-21 12:01	2017-02-1	Show	GitHub Exploit DB Packet Storm

265799	6.1	MEDIUM Network	mybb	mybb merge_system	Cross-site scripting (XSS) vulnerability in the Mod control panel in MyBB (aka MyBulletinBoard) before 1.8.7 and MyBB Merge System before 1.8.7 might allow remote attackers to inject arbitrary web sc…	CWE-79 Cross-site Scripting	CVE-2016-9408	2024-11-21 12:01	2017-02-1	Show	GitHub Exploit DB Packet Storm

265800	6.1	MEDIUM Network	mybb	mybb merge_system	Cross-site scripting (XSS) vulnerability in MyBB (aka MyBulletinBoard) before 1.8.7 and MyBB Merge System before 1.8.7 might allow remote attackers to inject arbitrary web script or HTML via vectors …	CWE-79 Cross-site Scripting	CVE-2016-9407	2024-11-21 12:01	2017-02-1	Show	GitHub Exploit DB Packet Storm