Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
245021 7.5 危険 joshua muheim - Joshua Muheim phpMyWebmin における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5124 2012-09-25 15:36 2006-10-3 Show GitHub Exploit DB Packet Storm
245022 4.9 警告 ヒューレット・パッカード - Mercury SiteScope におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-5122 2012-09-25 15:36 2006-10-3 Show GitHub Exploit DB Packet Storm
245023 5.1 警告 KGB - KGB の kgcall.php におけるディレクトリトラバーサルの脆弱性 - CVE-2006-5115 2012-09-25 15:36 2006-10-3 Show GitHub Exploit DB Packet Storm
245024 7.5 危険 intervations - InterVations NaviCOPA Web Server におけるバッファオーバーフローの脆弱性 - CVE-2006-5112 2012-09-25 15:36 2006-10-3 Show GitHub Exploit DB Packet Storm
245025 5 警告 Libksba project - SUSE LINUX 上の newpg パッケージの gpgsm におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-5111 2012-09-25 15:36 2006-10-3 Show GitHub Exploit DB Packet Storm
245026 6.8 警告 php invoice - PHP Invoice の home.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-5110 2012-09-25 15:36 2006-10-3 Show GitHub Exploit DB Packet Storm
245027 7.5 危険 vBulletin Solutions, Inc. - Jelsoft vBulletin の global.php における SQL インジェクションの脆弱性 - CVE-2006-5104 2012-09-25 15:36 2006-10-3 Show GitHub Exploit DB Packet Storm
245028 7.5 危険 Netwin Ltd - WEB//NEWS の parse/parser.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5100 2012-09-25 15:36 2006-10-3 Show GitHub Exploit DB Packet Storm
245029 7.5 危険 paul schudar - TagIt! Tagboard の Tagmin Control Center における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション
CVE-2006-5093 2012-09-25 15:36 2006-09-29 Show GitHub Exploit DB Packet Storm
245030 6.8 警告 phoenix evolution - PECMS におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-5090 2012-09-25 15:36 2006-09-29 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
251971 7.5 HIGH
Network
t-swap-token_project t-swap-token The mintToken function of a smart contract implementation for T-Swap-Token (T-S-T), an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary… CWE-190
 Integer Overflow or Wraparound
CVE-2018-13463 2024-11-21 12:47 2018-07-9 Show GitHub Exploit DB Packet Storm
251972 7.5 HIGH
Network
moontoken_project moontoken The mintToken function of a smart contract implementation for MoonToken, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to an… CWE-190
 Integer Overflow or Wraparound
CVE-2018-13462 2024-11-21 12:47 2018-07-9 Show GitHub Exploit DB Packet Storm
251973 9.8 CRITICAL
Network
dolibarr dolibarr_erp\/crm SQL injection vulnerability in product/card.php in Dolibarr ERP/CRM version 7.0.3 allows remote attackers to execute arbitrary SQL commands via the status_batch parameter. CWE-89
SQL Injection
CVE-2018-13450 2024-11-21 12:47 2018-07-9 Show GitHub Exploit DB Packet Storm
251974 9.8 CRITICAL
Network
dolibarr dolibarr_erp\/crm SQL injection vulnerability in product/card.php in Dolibarr ERP/CRM version 7.0.3 allows remote attackers to execute arbitrary SQL commands via the statut_buy parameter. CWE-89
SQL Injection
CVE-2018-13449 2024-11-21 12:47 2018-07-9 Show GitHub Exploit DB Packet Storm
251975 9.8 CRITICAL
Network
dolibarr dolibarr_erp\/crm SQL injection vulnerability in product/card.php in Dolibarr ERP/CRM version 7.0.3 allows remote attackers to execute arbitrary SQL commands via the country_id parameter. CWE-89
SQL Injection
CVE-2018-13448 2024-11-21 12:47 2018-07-9 Show GitHub Exploit DB Packet Storm
251976 9.8 CRITICAL
Network
dolibarr dolibarr_erp\/crm SQL injection vulnerability in product/card.php in Dolibarr ERP/CRM version 7.0.3 allows remote attackers to execute arbitrary SQL commands via the statut parameter. CWE-89
SQL Injection
CVE-2018-13447 2024-11-21 12:47 2018-07-9 Show GitHub Exploit DB Packet Storm
251977 8.8 HIGH
Network
seacms seacms An issue was discovered in SeaCMS 6.61. There is a CSRF vulnerability that can add a user account via adm1n/admin_manager.php?action=add. CWE-352
 Origin Validation Error
CVE-2018-13445 2024-11-21 12:47 2018-07-9 Show GitHub Exploit DB Packet Storm
251978 8.8 HIGH
Network
seacms seacms An issue was discovered in SeaCMS 6.61. There is a CSRF vulnerability that can add an admin account via adm1n/admin_manager.php?action=save&id=2. CWE-352
 Origin Validation Error
CVE-2018-13444 2024-11-21 12:47 2018-07-9 Show GitHub Exploit DB Packet Storm
251979 6.5 MEDIUM
Network
audio_file_library_project
canonical
audio_file_library
ubuntu_linux
The audiofile Audio File Library 0.3.6 has a NULL pointer dereference bug in ModuleState::setup in modules/ModuleState.cpp, which allows an attacker to cause a denial of service via a crafted caf fil… CWE-476
 NULL Pointer Dereference
CVE-2018-13440 2024-11-21 12:47 2018-07-9 Show GitHub Exploit DB Packet Storm
251980 7.5 HIGH
Network
tencent wechat_pay WXPayUtil in WeChat Pay Java SDK allows XXE attacks involving a merchant notification URL. CWE-611
XXE
CVE-2018-13439 2024-11-21 12:47 2018-07-9 Show GitHub Exploit DB Packet Storm