Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
241631 7.8 危険 Digium - Asterisk のSIP チャネルドライバにおけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-2297 2012-06-26 15:46 2007-04-26 Show GitHub Exploit DB Packet Storm
241632 7.8 危険 Digium - Asterisk の Manager Interface におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-2294 2012-06-26 15:46 2007-04-26 Show GitHub Exploit DB Packet Storm
241633 7.6 危険 Digium - Asterisk の SIP チャネル T.38 SDP パーサの chan_sip.c の process_sdp 関数におけるスタックベースのバッファオーバーフローの脆弱性 - CVE-2007-2293 2012-06-26 15:46 2007-04-26 Show GitHub Exploit DB Packet Storm
241634 7.5 危険 cafelog - B2 Weblog および News Publishing Tool における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2290 2012-06-26 15:46 2007-04-26 Show GitHub Exploit DB Packet Storm
241635 7.5 危険 alexscriptengine - Download-Engine の admin/includes/spaw/dialogs/insert_link.php における任意の PHP コードが実行される脆弱性 - CVE-2007-2289 2012-06-26 15:46 2007-04-26 Show GitHub Exploit DB Packet Storm
241636 7.5 危険 doruk100.net - Doruk100.net doruk100net の info.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2288 2012-06-26 15:46 2007-04-26 Show GitHub Exploit DB Packet Storm
241637 7.5 危険 comus - comus の accept.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2287 2012-06-26 15:46 2007-04-26 Show GitHub Exploit DB Packet Storm
241638 7.5 危険 built2go - Built2Go PHP Link Portal の config.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2286 2012-06-26 15:46 2007-04-26 Show GitHub Exploit DB Packet Storm
241639 9.3 危険 abc-view - ABC-View Manager におけるバッファオーバーフローの脆弱性 - CVE-2007-2284 2012-06-26 15:46 2007-04-26 Show GitHub Exploit DB Packet Storm
241640 9.3 危険 freshdevices - Fresh View におけるバッファオーバーフローの脆弱性 - CVE-2007-2283 2012-06-26 15:46 2007-04-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 23, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
279451 - swsoft confixx Cross-site scripting (XSS) vulnerability in ftplogin/index.php in Confixx 3.1.2 allows remote attackers to inject arbitrary web script or HTML via the login parameter. NVD-CWE-Other
CVE-2006-2423 2018-10-19 01:39 2006-05-17 Show GitHub Exploit DB Packet Storm
279452 - phpremoteview phpremoteview Multiple cross-site scripting (XSS) vulnerabilities in PRV.php in PhpRemoteView, possibly 2003-10-23 and earlier, allow remote attackers to inject arbitrary web script or HTML via the (1) f, (2) d, a… NVD-CWE-Other
CVE-2006-2425 2018-10-19 01:39 2006-05-17 Show GitHub Exploit DB Packet Storm
279453 - sun jdk
jre
sdk 		Sun Java Runtime Environment (JRE) 1.5.0_6 and earlier, JDK 1.5.0_6 and earlier, and SDK 1.5.0_6 and earlier allows remote attackers to cause a denial of service (disk consumption) by using the Font.… NVD-CWE-Other
CVE-2006-2426 2018-10-19 01:39 2006-05-17 Show GitHub Exploit DB Packet Storm
279454 - ibm websphere_application_server Cross-site scripting (XSS) vulnerability in the 500 Internal Server Error page on the SOAP port (8880/tcp) in IBM WebSphere Application Server 5.0.2 and earlier, 5.1.x before 5.1.1.12, and 6.0.2 up t… CWE-79
Cross-site Scripting 		CVE-2006-2431 2018-10-19 01:39 2006-05-17 Show GitHub Exploit DB Packet Storm
279455 - verosky_media instant_photo_gallery Cross-site scripting (XSS) vulnerability in portfolio.php in Verosky Media Instant Photo Gallery, possibly before 1.0.2, allows remote attackers to inject arbitrary web script or HTML via the cat_id … NVD-CWE-Other
CVE-2006-2079 2018-10-19 01:38 2006-04-28 Show GitHub Exploit DB Packet Storm
279456 - verosky_media instant_photo_gallery SQL injection vulnerability in portfolio_photo_popup.php in Verosky Media Instant Photo Gallery 1.0.2 allows remote attackers to execute arbitrary SQL commands via the id parameter, which is not clea… NVD-CWE-Other
CVE-2006-2080 2018-10-19 01:38 2006-04-28 Show GitHub Exploit DB Packet Storm
279457 - oracle database_server Oracle Database Server 10g Release 2 allows local users to execute arbitrary SQL queries via the GET_DOMAIN_INDEX_METADATA function in the DBMS_EXPORT_EXTENSION package. NOTE: this issue was original… NVD-CWE-Other
CVE-2006-2081 2018-10-19 01:38 2006-04-28 Show GitHub Exploit DB Packet Storm
279458 - id_software quake_3_engine Directory traversal vulnerability in Quake 3 engine, as used in products including Quake3 Arena, Return to Castle Wolfenstein, Wolfenstein: Enemy Territory, and Star Trek Voyager: Elite Force, when t… NVD-CWE-Other
CVE-2006-2082 2018-10-19 01:38 2006-05-10 Show GitHub Exploit DB Packet Storm
279459 - id_software quake_3_engine id Software has released patches to address this and other issues. NVD-CWE-Other
CVE-2006-2082 2018-10-19 01:38 2006-05-10 Show GitHub Exploit DB Packet Storm
279460 - farsinews farsinews Multiple cross-site scripting (XSS) vulnerabilities in FarsiNews 2.5.3 Pro and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) month and (2) year parameters in (a) i… CWE-79
Cross-site Scripting 		CVE-2006-2084 2018-10-19 01:38 2006-04-29 Show GitHub Exploit DB Packet Storm