Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
242611 10 危険 E-Xoopport - E-Xoopport における詳細不明な脆弱性 - CVE-2006-5978 2012-06-26 15:37 2006-11-20 Show GitHub Exploit DB Packet Storm
242612 7.5 危険 Expinion.net - MultiCalendars における SQL インジェクションの脆弱性 - CVE-2006-5977 2012-06-26 15:37 2006-11-20 Show GitHub Exploit DB Packet Storm
242613 7.5 危険 drumster - BlogMe の admin_login.asp における SQL インジェクションの脆弱性 - CVE-2006-5976 2012-06-26 15:37 2006-11-20 Show GitHub Exploit DB Packet Storm
242614 6.8 警告 drumster - BlogMe の comments.asp におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-5975 2012-06-26 15:37 2006-11-20 Show GitHub Exploit DB Packet Storm
242615 7.8 危険 Fetchmail Project - fetchmail におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2006-5974 2012-06-26 15:37 2006-12-31 Show GitHub Exploit DB Packet Storm
242616 4.6 警告 fvwm - fvwm の evalFolderLine 関数における CRLF インジェクションの脆弱性 - CVE-2006-5969 2012-06-26 15:37 2006-11-17 Show GitHub Exploit DB Packet Storm
242617 4.6 警告 Alt-N - MDaemon における任意のコードを実行される脆弱性 - CVE-2006-5968 2012-06-26 15:37 2006-11-17 Show GitHub Exploit DB Packet Storm
242618 7.5 危険 20 20 applications - 20/20 DataShed の listings.asp における SQL インジェクションの脆弱性 - CVE-2006-5955 2012-06-26 15:37 2006-11-16 Show GitHub Exploit DB Packet Storm
242619 7.5 危険 asp smiley - ASP Smiley の admin/default.asp における SQL インジェクションの脆弱性 - CVE-2006-5952 2012-06-26 15:37 2006-11-16 Show GitHub Exploit DB Packet Storm
242620 7.5 危険 exophpdesk - Exophpdesk の pipe.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5951 2012-06-26 15:37 2006-11-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 24, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
307161 - fr.simon_rundell pd_resources SQL injection vulnerability in the Diocese of Portsmouth Resources Database (pd_resources) extension 0.1.1 and earlier for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecif… CWE-89
SQL Injection 		CVE-2009-4396 2013-01-4 14:00 2009-12-23 Show GitHub Exploit DB Packet Storm
307162 - vocera wireless_handset Vocera Communications wireless handsets, when using Protected Extensible Authentication Protocol (PEAP), do not validate server certificates, which allows remote wireless access points to steal hashe… CWE-20
 Improper Input Validation  		CVE-2008-1114 2013-01-3 14:00 2008-03-4 Show GitHub Exploit DB Packet Storm
307163 - oracle secure_backup Unspecified vulnerability in the Oracle Secure Backup component in Oracle Secure Backup 10.1.0.1 allows remote attackers to affect confidentiality via unknown vectors. NVD-CWE-noinfo
CVE-2008-3981 2013-01-3 14:00 2009-01-14 Show GitHub Exploit DB Packet Storm
307164 - nec mobile_handset Unspecified vulnerability in the NEC mobile handset allows remote attackers to cause a denial of service (reboot) via crafted packets. NOTE: as of 20071016, the only disclosure is a vague pre-advisor… CWE-20
 Improper Input Validation  		CVE-2007-5557 2013-01-3 14:00 2007-10-19 Show GitHub Exploit DB Packet Storm
307165 - mybb mybb Multiple unspecified vulnerabilities in MyBulletinBoard (MyBB) before 1.0.2 have unspecified impact and attack vectors, related to (1) admin/moderate.php, (2) admin/themes.php, (3) inc/functions.php,… NVD-CWE-noinfo
CVE-2006-0218 2013-01-3 14:00 2006-01-17 Show GitHub Exploit DB Packet Storm
307166 - invisionpower invision_power_board The make_password function in ipsclass.php in Invision Power Board (IPB) 2.1.4 uses random data generated from partially predictable seeds to create the authentication code that is sent by e-mail to … CWE-287
Improper Authentication 		CVE-2006-0633 2013-01-3 14:00 2006-02-10 Show GitHub Exploit DB Packet Storm
307167 - zen-cart zen_cart Zen Cart before 1.2.7 does not protect the admin/includes directory, which allows remote attackers to cause unknown impact via unspecified vectors, probably direct requests. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2006-0697 2013-01-3 14:00 2006-02-15 Show GitHub Exploit DB Packet Storm
307168 - e107 e107 Incomplete blacklist vulnerability in usersettings.php in e107 0.7.20 and earlier allows remote attackers to conduct SQL injection attacks via the loginname parameter. NVD-CWE-Other
CVE-2010-2098 2012-12-13 13:00 2010-05-28 Show GitHub Exploit DB Packet Storm
307169 - e107 e107 Per: http://cwe.mitre.org/data/definitions/184.html 'CWE-184: Incomplete Blacklist' NVD-CWE-Other
CVE-2010-2098 2012-12-13 13:00 2010-05-28 Show GitHub Exploit DB Packet Storm
307170 - kerio personal_firewall
serverfirewall 		The FWDRV driver in Kerio Personal Firewall 4.2 and Server Firewall 1.1.1 allows local users to cause a denial of service (crash) by setting the PAGE_NOACCESS or PAGE_GUARD protection on the Page Env… NVD-CWE-Other
CVE-2005-3286 2012-12-13 11:43 2005-10-23 Show GitHub Exploit DB Packet Storm