Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
242621	5	警告	altools	-	ALTools ALFTP FTP Server におけるインストールパスを取得される脆弱性	-	CVE-2006-5950	2012-06-26 15:37	2006-11-16	Show	GitHub Exploit DB Packet Storm

242622	5	警告	altools	-	ALTools ALFTP FTP Server におけるディレクトリトラバーサルの脆弱性	-	CVE-2006-5949	2012-06-26 15:37	2006-11-16	Show	GitHub Exploit DB Packet Storm

242623	5	警告	conxint	-	Conxint FTP Server におけるディレクトリトラバーサルの脆弱性	-	CVE-2006-5947	2012-06-26 15:37	2006-11-16	Show	GitHub Exploit DB Packet Storm

242624	7.5	危険	funkyasp	-	FunkyASP Glossary の demo/glossary/glossary.asp における SQL インジェクションの脆弱性	-	CVE-2006-5946	2012-06-26 15:37	2006-11-16	Show	GitHub Exploit DB Packet Storm

242625	10	危険	grisoft	-	Grisoft AVG Anti-Virus における詳細不明の脆弱性	-	CVE-2006-5940	2012-06-26 15:37	2006-11-15	Show	GitHub Exploit DB Packet Storm

242626	7.8	危険	grisoft	-	Grisoft AVG Anti-Virus におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-5939	2012-06-26 15:37	2006-11-15	Show	GitHub Exploit DB Packet Storm

242627	10	危険	grisoft	-	Grisoft AVG Anti-Virus における詳細不明の脆弱性	-	CVE-2006-5938	2012-06-26 15:37	2006-11-15	Show	GitHub Exploit DB Packet Storm

242628	7.5	危険	grisoft	-	Grisoft AVG Anti-Virus における整数バッファオーバーフローの脆弱性	-	CVE-2006-5937	2012-06-26 15:37	2006-11-15	Show	GitHub Exploit DB Packet Storm

242629	5.1	警告	aigaion	-	Aigaion Web ベースのバイオグラフィ管理システムにおける PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5931	2012-06-26 15:37	2006-11-15	Show	GitHub Exploit DB Packet Storm

242630	7.5	危険	aigaion	-	Aigaion Web ベースバイオグラフィ管理システムにおける PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5930	2012-06-26 15:37	2006-11-15	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 26, 2026, 4:08 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
306871	-	phpnews	phpnews	SQL injection vulnerability in auth.php in PHPNews 1.2.5 allows remote attackers to execute arbitrary SQL commands via the user parameter in an HTTP POST request.	NVD-CWE-Other	CVE-2005-2383	2016-10-18 12:26	2005-07-26	Show	GitHub Exploit DB Packet Storm

306872	-	proftpd_project	proftpd	Multiple format string vulnerabilities in ProFTPD before 1.3.0rc2 allow attackers to cause a denial of service or obtain sensitive information via (1) certain inputs to the shutdown message from ftps…	NVD-CWE-Other	CVE-2005-2390	2016-10-18 12:26	2005-07-27	Show	GitHub Exploit DB Packet Storm

306873	-	php_surveyor	php_surveyor	PHP Surveyor 0.98 allows remote attackers to trigger SQL errors via missing parameters to (1) browse.php, (2) export.php, (3) conditions.php, or (4) spss.php.	NVD-CWE-Other	CVE-2005-2399	2016-10-18 12:26	2005-07-27	Show	GitHub Exploit DB Packet Storm

306874	-	beehive_forum	beehive_forum	Cross-site scripting (XSS) vulnerability in index.php in Beehive Forum allows remote attackers to inject arbitrary web script or HTML via the webtag parameter.	NVD-CWE-Other	CVE-2005-2422	2016-10-18 12:26	2005-08-3	Show	GitHub Exploit DB Packet Storm

306875	-	wordpress	wordpress	Multiple cross-site scripting (XSS) vulnerabilities in post.php in WordPress 1.5.1.2 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) p or (2) comment parameter.	NVD-CWE-Other	CVE-2005-2107	2016-10-18 12:25	2005-07-5	Show	GitHub Exploit DB Packet Storm

306876	-	wordpress	wordpress	SQL injection vulnerability in XMLRPC server in WordPress 1.5.1.2 and earlier allows remote attackers to execute arbitrary SQL commands via input that is not filtered in the HTTP_RAW_POST_DATA variab…	NVD-CWE-Other	CVE-2005-2108	2016-10-18 12:25	2005-07-5	Show	GitHub Exploit DB Packet Storm

306877	-	wordpress	wordpress	wp-login.php in WordPress 1.5.1.2 and earlier allows remote attackers to change the content of the forgotten password e-mail message via the message variable, which is not initialized before use.	NVD-CWE-Other	CVE-2005-2109	2016-10-18 12:25	2005-07-5	Show	GitHub Exploit DB Packet Storm

306878	-	community_link_pro_web_editor	community_link_pro_web_editor	login.cgi in Community Link Pro Web Editor allows remote attackers to execute arbitrary commands via the file parameter.	NVD-CWE-Other	CVE-2005-2111	2016-10-18 12:25	2005-07-5	Show	GitHub Exploit DB Packet Storm

306879	-	xoops	xoops	Multiple cross-site scripting (XSS) vulnerabilities in XOOPS 2.0.11 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) order parameter to edit.php or (2) cid parame…	NVD-CWE-Other	CVE-2005-2112	2016-10-18 12:25	2005-07-5	Show	GitHub Exploit DB Packet Storm

306880	-	xoops	xoops	SQL injection vulnerability in the loginUser function in the XMLRPC server in XOOPS 2.0.11 and earlier allows remote attackers to execute arbitrary SQL commands and bypass authentication via crafted …	NVD-CWE-Other	CVE-2005-2113	2016-10-18 12:25	2005-07-5	Show	GitHub Exploit DB Packet Storm