Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
241891	4.3	警告	built2go	-	built2go News Manager Blog におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-1248	2012-06-26 15:46	2007-03-3	Show	GitHub Exploit DB Packet Storm

241892	6.8	警告	aweb labs	-	aWeb Labs aWebNews における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2007-1247	2012-06-26 15:46	2007-03-3	Show	GitHub Exploit DB Packet Storm

241893	7.5	危険	audins audiens	-	Audins Audiens における製品をアンインストールされる脆弱性	-	CVE-2007-1243	2012-06-26 15:46	2007-03-3	Show	GitHub Exploit DB Packet Storm

241894	7.5	危険	audins audiens	-	Audins Audiens の system/index.php における SQL インジェクションの脆弱性	-	CVE-2007-1242	2012-06-26 15:46	2007-03-3	Show	GitHub Exploit DB Packet Storm

241895	5.8	警告	audins audiens	-	Audins Audiens の setup.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-1241	2012-06-26 15:46	2007-03-3	Show	GitHub Exploit DB Packet Storm

241896	4.3	警告	Docebo	-	Docebo CMS におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-1240	2012-06-26 15:46	2007-03-3	Show	GitHub Exploit DB Packet Storm

241897	5	警告	bjsintay	-	sitex における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2007-1237	2012-06-26 15:46	2007-03-3	Show	GitHub Exploit DB Packet Storm

241898	7.5	危険	bjsintay	-	sitex における任意の PHP コードをアップロードされる脆弱性	CWE-20 不適切な入力確認	CVE-2007-1235	2012-06-26 15:46	2007-03-3	Show	GitHub Exploit DB Packet Storm

241899	4.3	警告	bjsintay	-	sitex におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-1234	2012-06-26 15:46	2007-03-3	Show	GitHub Exploit DB Packet Storm

241900	10	危険	grok developments	-	Grok Developments NetProxy の接続ログファイル実装における不正な活動を実行される脆弱性	-	CVE-2007-1225	2012-06-26 15:46	2007-03-2	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 18, 2026, 4:11 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
308011	-	campware.org	campsite	Multiple PHP remote file inclusion vulnerabilities in Campware Campsite before 20061110 allow remote attackers to execute arbitrary PHP code via a URL in the g_documentRoot parameter to (1) bugreport…	NVD-CWE-Other	CVE-2006-5910	2011-03-8 11:44	2006-11-16	Show	GitHub Exploit DB Packet Storm

308012	-	extreme_cms	extreme_cms	Multiple cross-site scripting (XSS) vulnerabilities in admin/options.php in Extreme CMS 0.9, and possibly earlier, allow remote attackers to inject arbitrary web script or HTML via the (1) bg1, (2) b…	NVD-CWE-Other	CVE-2006-5985	2011-03-8 11:44	2006-11-21	Show	GitHub Exploit DB Packet Storm

308013	-	extreme_cms	extreme_cms	admin/options.php in Extreme CMS 0.9, and possibly earlier, does not require authentication, which might allow remote attackers to conduct unauthorized activities. NOTE: this issue can be combined w…	NVD-CWE-Other	CVE-2006-5986	2011-03-8 11:44	2006-11-21	Show	GitHub Exploit DB Packet Storm

308014	-	d-link	dwl-g132	Stack-based buffer overflow in A5AGU.SYS 1.0.1.41 for the D-Link DWL-G132 wireless adapter allows remote attackers to execute arbitrary code via a 802.11 beacon request with a long Rates information …	NVD-CWE-Other	CVE-2006-6055	2011-03-8 11:44	2006-11-22	Show	GitHub Exploit DB Packet Storm

308015	-	bpg-infotech	easy_publisher smart_publisher_pro	SQL injection vulnerability in bpg/publications_list.asp in BPG-InfoTech Easy Publisher and Smart Publisher//Pro 2.7.7 allows remote attackers to execute arbitrary SQL commands via the vjob parameter…	NVD-CWE-Other	CVE-2006-6072	2011-03-8 11:44	2006-11-25	Show	GitHub Exploit DB Packet Storm

308016	-	lou_portail	lou_portail	PHP remote file inclusion vulnerability in admin/admin_module.php in Lou Portail 1.4.1, and possibly earlier, allows remote attackers to execute arbitrary PHP code via a URL in the g_admin_rep parame…	NVD-CWE-Other	CVE-2006-5423	2011-03-8 11:43	2006-10-21	Show	GitHub Exploit DB Packet Storm

308017	-	horde	ingo_h3	procmail in Ingo H3 before 1.1.2 Horde module allows remote authenticated users to execute arbitrary commands via shell metacharacters in the mailbox destination of a filter rule.	NVD-CWE-Other	CVE-2006-5449	2011-03-8 11:43	2006-10-24	Show	GitHub Exploit DB Packet Storm

308018	-	horde	ingo_h3	This vulnerability is addressed in the following product release: Horde, Ingo, 1.1.2	NVD-CWE-Other	CVE-2006-5449	2011-03-8 11:43	2006-10-24	Show	GitHub Exploit DB Packet Storm

308019	-	rpm ubuntu	package_manager ubuntu_linux	Heap-based buffer overflow in the showQueryPackage function in librpm in RPM Package Manager 4.4.8, when the LANG environment variable is set to ru_RU.UTF-8, might allow user-assisted attackers to ex…	NVD-CWE-Other	CVE-2006-5466	2011-03-8 11:43	2006-11-7	Show	GitHub Exploit DB Packet Storm

308020	-	rpm ubuntu	package_manager ubuntu_linux	Successful exploitation may allow the execution of arbitrary code, but requires that certain locales are set (e.g. ru_RU.UTF-8). There are patches available for each affected Ubuntu product.	NVD-CWE-Other	CVE-2006-5466	2011-03-8 11:43	2006-11-7	Show	GitHub Exploit DB Packet Storm