Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 29, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
244151 7.5 危険 Joomla! - BSQ Sitestats の external/rssfeeds.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-7124 2012-09-25 15:36 2007-03-5 Show GitHub Exploit DB Packet Storm
244152 7.5 危険 Joomla! - BSQ Sitestats における SQL インジェクションの脆弱性 - CVE-2006-7123 2012-09-25 15:36 2007-03-5 Show GitHub Exploit DB Packet Storm
244153 6.8 警告 Joomla! - BSQ Sitestats の IP Address Lookup 機能におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-7122 2012-09-25 15:36 2007-03-5 Show GitHub Exploit DB Packet Storm
244154 7.8 危険 シスコシステムズ (Linksys) - Linksys SPA-921 VoIP Desktop Phone の HTTP サーバにおけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-7121 2012-09-25 15:36 2007-03-5 Show GitHub Exploit DB Packet Storm
244155 6.8 警告 kubix - Kubix におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2006-7117 2012-09-25 15:36 2007-03-5 Show GitHub Exploit DB Packet Storm
244156 7.5 危険 kubix - Kubix の includes/functions.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2006-7116 2012-09-25 15:36 2007-03-5 Show GitHub Exploit DB Packet Storm
244157 6 警告 MAXDev - MD-Pro の error.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2006-7112 2012-09-25 15:36 2007-03-5 Show GitHub Exploit DB Packet Storm
244158 7.5 危険 Mambo Foundation - Mambo 用の MOStlyCE コンポーネントの htmltemplate.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2006-7104 2012-09-25 15:36 2007-03-3 Show GitHub Exploit DB Packet Storm
244159 7.5 危険 matthias dietrich - phpBurningPortal quiz-modul における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2006-7102 2012-09-25 15:36 2007-03-3 Show GitHub Exploit DB Packet Storm
244160 10 危険 klink - dim3 の host.c におけるバッファオーバーフローの脆弱性 - CVE-2006-7096 2012-09-25 15:36 2007-03-2 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 29, 2026, 4:19 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
346021 - simplog simplog Cross-site scripting (XSS) vulnerability in archive.php in Simplog 0.9.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the keyw parameter when performing a search. N… NVD-CWE-Other
CVE-2006-4058 2018-10-18 06:33 2006-08-10 Show GitHub Exploit DB Packet Storm
346022 - usolved newsolved_lite Multiple PHP remote file inclusion vulnerabilities in USOLVED NEWSolved Lite 1.9.2, and possibly earlier, allow remote attackers to execute arbitrary PHP code via a URL in the abs_path parameter to (… NVD-CWE-Other
CVE-2006-4059 2018-10-18 06:33 2006-08-10 Show GitHub Exploit DB Packet Storm
346023 - web-scripts visual_events_calendar PHP remote file inclusion vulnerability in calendar.php in Visual Events Calendar 1.1 allows remote attackers to execute arbitrary PHP code via a URL in the cfg_dir parameter. NVD-CWE-Other
CVE-2006-4060 2018-10-18 06:33 2006-08-10 Show GitHub Exploit DB Packet Storm
346024 - yenerturk yenerturk_haber_script SQL injection vulnerability in default.asp in YenerTurk Haber Script 1.0 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter. NOTE: it was later reported repor… CWE-89
SQL Injection 		CVE-2006-4064 2018-10-18 06:33 2006-08-10 Show GitHub Exploit DB Packet Storm
346025 - microsoft windows_xp The Graphical Device Interface Plus library (gdiplus.dll) in Microsoft Windows XP SP2 allows context-dependent attackers to cause a denial of service (application crash) via certain images that trigg… NVD-CWE-Other
CVE-2006-4066 2018-10-18 06:33 2006-08-10 Show GitHub Exploit DB Packet Storm
346026 - ozjournals ozjournals Multiple cross-site scripting (XSS) vulnerabilities in Elaine Aquino Online Zone Journals (OZJournals) 1.5 allow remote attackers to inject arbitrary web script or HTML via the (1) m and (2) c parame… NVD-CWE-Other
CVE-2006-4069 2018-10-18 06:33 2006-08-10 Show GitHub Exploit DB Packet Storm
346027 - imendio_planner imendio_planner Format string vulnerability in Imendio Planner 0.13 allows user-assisted attackers to execute arbitrary code via format string specifiers in a filename. NVD-CWE-Other
CVE-2006-4070 2018-10-18 06:33 2006-08-10 Show GitHub Exploit DB Packet Storm
346028 - microsoft windows_2003_server
windows_xp 		Sign extension vulnerability in the createBrushIndirect function in the GDI library (gdi32.dll) in Microsoft Windows XP, Server 2003, and possibly other versions, allows user-assisted attackers to ca… NVD-CWE-Other
CVE-2006-4071 2018-10-18 06:33 2006-08-10 Show GitHub Exploit DB Packet Storm
346029 - phpcc phpcc Multiple PHP remote file inclusion vulnerabilities in Fabian Hainz phpCC Beta 4.2 allow remote attackers to execute arbitrary PHP code via a URL in the base_dir parameter to (1) login.php, (2) reacti… NVD-CWE-Other
CVE-2006-4073 2018-10-18 06:33 2006-08-11 Show GitHub Exploit DB Packet Storm
346030 - wim_fleischhauer docpile_we Multiple PHP remote file inclusion vulnerabilities in Wim Fleischhauer docpile: wim's edition (docpile:we) 0.2.2 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the INIT… NVD-CWE-Other
CVE-2006-4075 2018-10-18 06:33 2006-08-11 Show GitHub Exploit DB Packet Storm