Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
241511 3.5 注意 BEAシステムズ - BEA WebLogic Portal GA の GroupSpace アプリケーションにおけるクロスサイトスクリプティングの脆弱性 - CVE-2007-2702 2012-06-26 15:46 2007-05-15 Show GitHub Exploit DB Packet Storm
241512 7.5 危険 アップル
アドビシステムズ		 - Adobe CS3 で使用される Adobe Version Cue CS3 Server のインストーラにおけるファイアウォールルールを回避される脆弱性 - CVE-2007-2682 2012-06-26 15:46 2007-05-16 Show GitHub Exploit DB Packet Storm
241513 7.5 危険 b2evolution - b2evolution の blogs/index.php におけるディレクトリトラバーサルの脆弱性 - CVE-2007-2681 2012-06-26 15:46 2007-05-14 Show GitHub Exploit DB Packet Storm
241514 7.5 危険 censura - Censura の includes/funcs_vendors.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-2673 2012-06-26 15:46 2007-05-14 Show GitHub Exploit DB Packet Storm
241515 4.3 警告 globalmegacorp - PHPChain におけるインストールパスを取得される脆弱性 - CVE-2007-2670 2012-06-26 15:46 2007-05-14 Show GitHub Exploit DB Packet Storm
241516 4.3 警告 globalmegacorp - PHPChain におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-2669 2012-06-26 15:46 2007-05-14 Show GitHub Exploit DB Packet Storm
241517 9.3 危険 db soft lab - VImpX.ocx の DB Software Laboratory VImpX ActiveX コントロールにおけるバッファオーバーフローの脆弱性 - CVE-2007-2667 2012-06-26 15:46 2007-05-14 Show GitHub Exploit DB Packet Storm
241518 7.5 危険 beacon - Beacon の language/1/splash.lang.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2663 2012-06-26 15:46 2007-05-14 Show GitHub Exploit DB Packet Storm
241519 7.5 危険 efestech haber - EfesTECH Haber における SQL インジェクションの脆弱性 - CVE-2007-2662 2012-06-26 15:46 2007-05-14 Show GitHub Exploit DB Packet Storm
241520 7.5 危険 drumster - BlogMe の archshow.asp における SQL インジェクションの脆弱性 - CVE-2007-2661 2012-06-26 15:46 2007-05-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 20, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
279831 - phpkit phpkit Cross-site scripting (XSS) vulnerability in PHPKIT 1.6.03 allows remote attackers to inject arbitrary web script or HTML via the error parameter to include.php, possibly due to a problem in login/log… NVD-CWE-Other
CVE-2006-1507 2018-10-19 01:32 2006-03-30 Show GitHub Exploit DB Packet Storm
279832 - m_phorum m_phorum Cross-site scripting vulnerability in index.php in M-Phorum 0.2 allows remote attackers to inject arbitrary web script or HTML via the go parameter. NVD-CWE-Other
CVE-2006-1151 2018-10-19 01:31 2006-03-10 Show GitHub Exploit DB Packet Storm
279833 - adp adp_forum Cross-site scripting (XSS) vulnerability in Vz Scripts ADP Forum 2.0.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the Subject field (possibly messaggio parameter) … NVD-CWE-Other
CVE-2006-1157 2018-10-19 01:31 2006-03-13 Show GitHub Exploit DB Packet Storm
279834 - kerio kerio_mailserver Kerio MailServer before 6.1.3 Patch 1 allows remote attackers to cause a denial of service (application crash) via a crafted IMAP LOGIN command. NVD-CWE-Other
CVE-2006-1158 2018-10-19 01:31 2006-03-13 Show GitHub Exploit DB Packet Storm
279835 - efs_software efs_web_server Format string vulnerability in Easy File Sharing (EFS) Web Server 3.2 allows remote attackers to cause a denial of service (server crash) and possibly execute arbitrary code via format string specifi… NVD-CWE-Other
CVE-2006-1159 2018-10-19 01:31 2006-03-13 Show GitHub Exploit DB Packet Storm
279836 - efs_software efs_web_server Cross-site scripting (XSS) vulnerability in Easy File Sharing (EFS) Web Server 3.2 allows remote attackers to inject arbitrary web script or HTML via the Description field in creating a folder or upl… NVD-CWE-Other
CVE-2006-1160 2018-10-19 01:31 2006-03-13 Show GitHub Exploit DB Packet Storm
279837 - efs_software efs_web_server Absolute path traversal vulnerability in Easy File Sharing (EFS) Web Server 3.2 allows remote registered users to execute arbitrary code by uploading a malicious file to the Windows startup folder. NVD-CWE-Other
CVE-2006-1161 2018-10-19 01:31 2006-03-13 Show GitHub Exploit DB Packet Storm
279838 - tdc cryptomathic_cenroll_activex_control Stack-based buffer overflow in the createPKCS10 function in Cryptomathic Cenroll ActiveX Control 1.1.0.0 allows remote attackers to execute arbitrary code via vectors related to the TDC Digital signa… NVD-CWE-Other
CVE-2006-1172 2018-10-19 01:31 2006-05-9 Show GitHub Exploit DB Packet Storm
279839 - sendmail sendmail Sendmail before 8.13.7 allows remote attackers to cause a denial of service via deeply nested, malformed multipart MIME messages that exhaust the stack during the recursive mime8to7 function for perf… CWE-399
 Resource Management Errors 		CVE-2006-1173 2018-10-19 01:31 2006-06-8 Show GitHub Exploit DB Packet Storm
279840 - adobe document_server
graphics_server 		Adobe Graphics Server 2.0 and 2.1 (formerly AlterCast) and Adobe Document Server (ADS) 5.0 and 6.0 allows local users to read files with certain extensions or overwrite arbitrary files and execute co… NVD-CWE-Other
CVE-2006-1182 2018-10-19 01:31 2006-03-16 Show GitHub Exploit DB Packet Storm