Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
241751 4.3 警告 drake team - Drake CMS の admin/classes/ui.dta.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-1848 2012-06-26 15:46 2007-04-3 Show GitHub Exploit DB Packet Storm
241752 7.5 危険 avatic - Aardvark Topsites PHP における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-1844 2012-06-26 15:46 2007-04-3 Show GitHub Exploit DB Packet Storm
241753 7.5 危険 codebb - CodeBB における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-1839 2012-06-26 15:46 2007-04-2 Show GitHub Exploit DB Packet Storm
241754 9 危険 data domain - Data Domain OS のコマンドライン管理インターフェースにおける任意のコマンドを実行される脆弱性 - CVE-2007-1836 2012-06-26 15:46 2007-04-2 Show GitHub Exploit DB Packet Storm
241755 7.8 危険 シスコシステムズ - CUCM におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-1834 2012-06-26 15:46 2007-03-28 Show GitHub Exploit DB Packet Storm
241756 5 警告 シスコシステムズ - CUCM の SCCP 実装におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-1833 2012-06-26 15:46 2007-03-28 Show GitHub Exploit DB Packet Storm
241757 7.8 危険 シスコシステムズ - CUCM の IPSec Manager Service におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-1826 2012-06-26 15:46 2007-03-28 Show GitHub Exploit DB Packet Storm
241758 10 危険 Alcatel-Lucent - Alcatel-Lucent Lucent Technologies ボイスメールシステムにおけるメールボックスを再設定される脆弱性 - CVE-2007-1822 2012-06-26 15:46 2007-04-2 Show GitHub Exploit DB Packet Storm
241759 10 危険 dproxy - dproxy-nexgen の dns_decode_reverse_name 関数におけるスタックベースのバッファオーバーフローの脆弱性 - CVE-2007-1866 2012-06-26 15:46 2004-06-24 Show GitHub Exploit DB Packet Storm
241760 7.5 危険 forum picture and meta tags - phpBB の Forum ピクチャなどの MOD_forum_fields_parse.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-1818 2012-06-26 15:46 2007-04-2 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 24, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
280141 - ncipher dse200_document_sealing_engine
ncore
nforce
securedb
time_source_master_clock
nethsm
nshield
payshield 		nCipher firmware before V10, as used by (1) nShield, (2) nForce, (3) netHSM, (4) payShield, (5) SecureDB, (6) DSE200 Document Sealing Engine, (7) Time Source Master Clock (TSMC), and possibly other p… NVD-CWE-Other
CVE-2006-1117 2018-10-19 01:30 2006-03-9 Show GitHub Exploit DB Packet Storm
280142 - netenberg fantastico_de_luxe fantastico in Cpanel does not properly handle when it has insufficient permissions to perform certain file operations, which allows remote authenticated users to obtain the full pathname, which is le… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2006-1119 2018-10-19 01:30 2006-03-10 Show GitHub Exploit DB Packet Storm
280143 - codeworx_technologies dcp-portal Multiple cross-site scripting (XSS) vulnerabilities in DCP-Portal 6.1.1 and earlier, with register_globals enabled, allow remote attackers to inject arbitrary web script or HTML via the (1) its_url p… NVD-CWE-Other
CVE-2006-1120 2018-10-19 01:30 2006-03-10 Show GitHub Exploit DB Packet Storm
280144 - cutephp cutenews Cross-site scripting (XSS) vulnerability in CuteNews 1.4.1 allows remote attackers to inject arbitrary web script or HTML via the query string to index.php. NVD-CWE-Other
CVE-2006-1121 2018-10-19 01:30 2006-03-10 Show GitHub Exploit DB Packet Storm
280145 - d2ksoft d2kblog Cross-site scripting (XSS) vulnerability in Default.asp in D2KBlog 1.0.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the msg parameter. NVD-CWE-Other
CVE-2006-1122 2018-10-19 01:30 2006-03-10 Show GitHub Exploit DB Packet Storm
280146 - d2ksoft d2kblog SQL injection vulnerability in D2KBlog 1.0.3 and earlier allows remote attackers to execute arbitrary SQL commands via the memName parameter in a cookie. NVD-CWE-Other
CVE-2006-1123 2018-10-19 01:30 2006-03-10 Show GitHub Exploit DB Packet Storm
280147 - revilloc_solutions revilloc_mailserver Buffer overflow in RevilloC MailServer and Proxy 1.21 allows remote attackers to execute arbitrary code via a long USER command. NVD-CWE-Other
CVE-2006-1124 2018-10-19 01:30 2006-03-10 Show GitHub Exploit DB Packet Storm
280148 - ekinboard ekinboard SQL injection vulnerability in config.php in EKINboard 1.0.3 allows remote attackers to execute arbitrary SQL commands and bypass authentication via the username cookie. NVD-CWE-Other
CVE-2006-1129 2018-10-19 01:30 2006-03-10 Show GitHub Exploit DB Packet Storm
280149 - ekinboard ekinboard Cross-site scripting (XSS) vulnerability in EKINboard 1.0.3 allows remote attackers to inject arbitrary web script or HTML via a Javascript URI in a BBCode img tag. NVD-CWE-Other
CVE-2006-1130 2018-10-19 01:30 2006-03-10 Show GitHub Exploit DB Packet Storm
280150 - vbzoom vbzoom SQL injection vulnerability in show.php in vbzoom 1.11 allow remote attackers to execute arbitrary SQL commands via the MainID parameter. NOTE: the SubjectID vector is already covered by CVE-2005-472… NVD-CWE-Other
CVE-2006-1132 2018-10-19 01:30 2006-03-10 Show GitHub Exploit DB Packet Storm