Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
242451 7.5 危険 ezhrs - EzHRS HR Assist の vdateUsr.asp における SQL インジェクションの脆弱性 - CVE-2006-6524 2012-06-26 15:38 2006-12-13 Show GitHub Exploit DB Packet Storm
242452 6.8 警告 cPanel - cPanel の BoxTrapper の mail/manage.html におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-6523 2012-06-26 15:38 2006-12-13 Show GitHub Exploit DB Packet Storm
242453 3.5 注意 flippet.org - Wawi における特定のディレクトリにアクセスされる脆弱性 - CVE-2006-6514 2012-06-26 15:38 2006-12-13 Show GitHub Exploit DB Packet Storm
242454 3.5 注意 flippet.org - Wawi の CControl::Download 関数におけるルート配下のファイルタイプをダウンロードされる脆弱性 - CVE-2006-6513 2012-06-26 15:38 2006-12-13 Show GitHub Exploit DB Packet Storm
242455 3.5 注意 flippet.org - Wawi の Browse 関数におけるディレクトリトラバーサルの脆弱性 - CVE-2006-6512 2012-06-26 15:38 2006-12-13 Show GitHub Exploit DB Packet Storm
242456 6.8 警告 dadaimc - dadaIMC における任意の PHP コードを実行される脆弱性 - CVE-2006-6511 2012-06-26 15:38 2006-12-13 Show GitHub Exploit DB Packet Storm
242457 6.6 警告 CA Technologies - CA Anti-Virus および CA Internet Security Suite の VetMONNT.sys ドライバにおけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-6496 2012-06-26 15:38 2006-12-13 Show GitHub Exploit DB Packet Storm
242458 7.5 危険 easypage - EasyPage における SQL インジェクションの脆弱性 - CVE-2006-6486 2012-06-26 15:38 2006-12-12 Show GitHub Exploit DB Packet Storm
242459 2.6 注意 アドビシステムズ - Adobe ColdFusion MX における任意の Web スクリプトまたは HTML を挿入される脆弱性 - CVE-2006-6483 2012-06-26 15:38 2006-12-12 Show GitHub Exploit DB Packet Storm
242460 5 警告 アドビシステムズ - Adobe ColdFusion MX における重要な情報を取得される脆弱性 - CVE-2006-6482 2012-06-26 15:38 2006-12-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 26, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
288021 - mozilla firefox
seamonkey 		Use-after-free vulnerability in the HTML parser in Mozilla Firefox 3.0.x before 3.0.18 and 3.5.x before 3.5.8, Thunderbird before 3.0.2, and SeaMonkey before 2.0.3 allows remote attackers to execute … CWE-94
Code Injection 		CVE-2009-1571 2018-10-11 04:37 2010-02-22 Show GitHub Exploit DB Packet Storm
288022 - r020 tematres Multiple cross-site scripting (XSS) vulnerabilities in TemaTres 1.0.3 and 1.031 allow remote attackers to inject arbitrary web script or HTML via the (1) search form; (2) _expresion_de_busqueda, (3) … CWE-79
Cross-site Scripting 		CVE-2009-1583 2018-10-11 04:37 2009-05-8 Show GitHub Exploit DB Packet Storm
288023 - r020 tematres Multiple SQL injection vulnerabilities in TemaTres 1.0.3 and 1.031, when magic_quotes_gpc is disabled, allow remote attackers or remote authenticated users to execute arbitrary SQL commands via the (… CWE-89
SQL Injection 		CVE-2009-1584 2018-10-11 04:37 2009-05-8 Show GitHub Exploit DB Packet Storm
288024 - shemes grabit Stack-based buffer overflow in the NZB importer feature in GrabIt 1.7.2 Beta 3 and earlier allows remote attackers to execute arbitrary code via a crafted DTD reference in a DOCTYPE element in an NZB… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2009-1586 2018-10-11 04:37 2009-05-8 Show GitHub Exploit DB Packet Storm
288025 - armorlogic profense_web_application_firewall Armorlogic Profense Web Application Firewall before 2.2.22, and 2.4.x before 2.4.4, does not properly implement the "negative model," which allows remote attackers to conduct cross-site scripting (XS… CWE-79
Cross-site Scripting 		CVE-2009-1593 2018-10-11 04:37 2009-05-21 Show GitHub Exploit DB Packet Storm
288026 - armorlogic profense_web_application_firewall Armorlogic Profense Web Application Firewall before 2.2.22, and 2.4.x before 2.4.4, does not properly implement the "positive model," which allows remote attackers to bypass certain protection mechan… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2009-1594 2018-10-11 04:37 2009-05-21 Show GitHub Exploit DB Packet Storm
288027 - microchip mplab_ide Multiple buffer overflows in Microchip MPLAB IDE 8.30 and possibly earlier versions allow user-assisted remote attackers to execute arbitrary code via a .MCP project file with long (1) FILE_INFO, (2)… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2009-1608 2018-10-11 04:37 2009-05-12 Show GitHub Exploit DB Packet Storm
288028 - mata matachat Multiple cross-site scripting (XSS) vulnerabilities in input.php in MataChat allow remote attackers to inject arbitrary web script or HTML via the (1) nickname and (2) color parameters. CWE-79
Cross-site Scripting 		CVE-2009-1620 2018-10-11 04:37 2009-05-13 Show GitHub Exploit DB Packet Storm
288029 - opencart opencart Directory traversal vulnerability in index.php in OpenCart 1.1.8 allows remote attackers to read arbitrary files via a .. (dot dot) in the route parameter. CWE-22
Path Traversal 		CVE-2009-1621 2018-10-11 04:37 2009-05-13 Show GitHub Exploit DB Packet Storm
288030 - antony_lesuisse ajaxterm ajaxterm.js in AjaxTerm 0.10 and earlier generates session IDs with predictable random numbers based on certain JavaScript functions, which makes it easier for remote attackers to (1) hijack a sessio… CWE-287
Improper Authentication 		CVE-2009-1629 2018-10-11 04:37 2009-05-15 Show GitHub Exploit DB Packet Storm