Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
242251 7.5 危険 call-center-software - Call Center Software における SQL インジェクションの脆弱性 - CVE-2006-7144 2012-06-26 15:38 2007-03-7 Show GitHub Exploit DB Packet Storm
242252 5.8 警告 call-center-software - Call Center Software におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-7143 2012-06-26 15:38 2007-03-7 Show GitHub Exploit DB Packet Storm
242253 10 危険 cynux softwares - PHPMyDesk の pmd-config.php におけるディレクトリトラバーサルの脆弱性 - CVE-2006-7132 2012-06-26 15:38 2007-03-5 Show GitHub Exploit DB Packet Storm
242254 7.5 危険 DMXReady - DMXReady Site Engine Manager の index.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2006-7118 2012-06-26 15:38 2007-03-5 Show GitHub Exploit DB Packet Storm
242255 7.5 危険 coalescent systems - Coalescent Systems freePBX の upgrade.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-7107 2012-06-26 15:38 2007-03-3 Show GitHub Exploit DB Packet Storm
242256 6.4 警告 ezonlinegallery - EZOnlineGallery におけるディレクトリトラバーサルの脆弱性 - CVE-2006-7103 2012-06-26 15:38 2007-03-3 Show GitHub Exploit DB Packet Storm
242257 7.5 危険 ban - Ban の connexion.php における SQL インジェクションの脆弱性 - CVE-2006-7089 2012-06-26 15:38 2007-03-2 Show GitHub Exploit DB Packet Storm
242258 5 警告 dotdeb - Dotdeb PHP の mail 関数における CRLF インジェクションの脆弱性 - CVE-2006-7087 2012-06-26 15:38 2007-03-2 Show GitHub Exploit DB Packet Storm
242259 4.3 警告 exv2 - exV2 のアバターアップロード機能におけるディレクトリトラバーサルの脆弱性 - CVE-2006-7080 2012-06-26 15:38 2007-03-2 Show GitHub Exploit DB Packet Storm
242260 6.8 警告 exv2 - exV2 の include/common.php における任意のコードを実行される脆弱性 - CVE-2006-7079 2012-06-26 15:38 2007-03-2 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 23, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
288611 - atomix_productions atomixmp3 Stack-based buffer overflow in AtomixMP3 2.3 and earlier allows remote attackers to execute arbitrary code via a long pathname in an M3U file. NVD-CWE-Other
CVE-2006-6287 2017-10-19 10:29 2006-12-4 Show GitHub Exploit DB Packet Storm
288612 - mxbb mx_tinies PHP remote file inclusion vulnerability in includes/mx_common.php in the mx_tinies 1.3.0 Module for MxBB Portal 1.06 allows remote attackers to execute arbitrary PHP code via a URL in the module_root… NVD-CWE-Other
CVE-2006-6295 2017-10-19 10:29 2006-12-5 Show GitHub Exploit DB Packet Storm
288613 - torrentflux torrentflux Directory traversal vulnerability in index.php for TorrentFlux 2.2 allows remote attackers to create or overwrite arbitrary files via sequences in the alias_file parameter. NVD-CWE-Other
CVE-2006-6328 2017-10-19 10:29 2006-12-7 Show GitHub Exploit DB Packet Storm
288614 - torrentflux torrentflux index.php for TorrentFlux 2.2 allows remote attackers to delete files by specifying the target filename in the delfile parameter. NVD-CWE-Other
CVE-2006-6329 2017-10-19 10:29 2006-12-7 Show GitHub Exploit DB Packet Storm
288615 - torrentflux torrentflux index.php for TorrentFlux 2.2 allows remote registered users to execute arbitrary commands via shell metacharacters in the kill parameter. NVD-CWE-Other
CVE-2006-6330 2017-10-19 10:29 2006-12-7 Show GitHub Exploit DB Packet Storm
288616 - sergey_korostel php_upload_center PHP remote file inclusion vulnerability in activate.php in PHP Upload Center 2.0 allows remote attackers to execute arbitrary PHP code via a URL in the footerpage parameter. NVD-CWE-Other
CVE-2006-6360 2017-10-19 10:29 2006-12-7 Show GitHub Exploit DB Packet Storm
288617 - awrate awrate PHP remote file inclusion vulnerability in login.php.inc in awrate 1.0 allows remote attackers to execute arbitrary PHP code via a URL in the toroot parameter to search.php. NVD-CWE-Other
CVE-2006-6368 2017-10-19 10:29 2006-12-7 Show GitHub Exploit DB Packet Storm
288618 - onedotoh simple_file_manager Multiple directory traversal vulnerabilities in fm.php in Simple File Manager (SFM) 0.24a allow remote attackers to use ".." sequences to (1) read arbitrary files via the filename parameter in a down… NVD-CWE-Other
CVE-2006-6376 2017-10-19 10:29 2006-12-8 Show GitHub Exploit DB Packet Storm
288619 - ultimate_helpdesk ultimate_helpdesk Cross-site scripting (XSS) vulnerability in index.asp in Ultimate HelpDesk allows remote attackers to inject arbitrary web script or HTML via the keyword parameter. NVD-CWE-Other
CVE-2006-6380 2017-10-19 10:29 2006-12-8 Show GitHub Exploit DB Packet Storm
288620 - ultimate_helpdesk ultimate_helpdesk Directory traversal vulnerability in getfile.asp in Ultimate HelpDesk allows remote attackers to read arbitrary files via a .. (dot dot) in the filename parameter. NVD-CWE-Other
CVE-2006-6381 2017-10-19 10:29 2006-12-8 Show GitHub Exploit DB Packet Storm