Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 27, 2026, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
248151	7.5	危険	annuaire	-	Annuaire 1Two の index.php における SQL インジェクションの脆弱性	-	CVE-2006-4601	2012-06-26 15:37	2006-09-6	Show	GitHub Exploit DB Packet Storm

248152	7.5	危険	autentificator	-	Autentificator の aut_verifica.inc.php における SQL インジェクションの脆弱性	-	CVE-2006-4599	2012-06-26 15:37	2006-09-6	Show	GitHub Exploit DB Packet Storm

248153	7.5	危険	bugada andrea	-	phpAtm における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4594	2012-06-26 15:37	2006-09-6	Show	GitHub Exploit DB Packet Storm

248154	7.5	危険	8pixel	-	8pixel.net Simple Blog の default.asp における SQL インジェクション攻撃を実行される脆弱性	-	CVE-2006-4592	2012-06-26 15:37	2006-09-6	Show	GitHub Exploit DB Packet Storm

248155	7.5	危険	AlstraSoft	-	AlstraSoft Template Seller における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4591	2012-06-26 15:37	2006-09-6	Show	GitHub Exploit DB Packet Storm

248156	7.5	危険	dyncms	-	DynCMS の 0_admin/modules/Wochenkarte/frontend/index.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4589	2012-06-26 15:37	2006-09-6	Show	GitHub Exploit DB Packet Storm

248157	7.5	危険	darrens 5-dollar script archive	-	FlashChat における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2006-4583	2012-06-26 15:37	2006-09-6	Show	GitHub Exploit DB Packet Storm

248158	2.6	注意	GNU Project	-	screen の encoding.c の utf8_handle_comb 関数におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-4573	2012-06-26 15:37	2006-10-24	Show	GitHub Exploit DB Packet Storm

248159	7.5	危険	bernard pacques	-	YACS CMS における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4559	2012-06-26 15:37	2006-09-5	Show	GitHub Exploit DB Packet Storm

248160	7.5	危険	deluxebb	-	DeluxeBB における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4558	2012-06-26 15:37	2006-09-5	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
346531	-	freenet6	freenet6	The tspc.conf configuration file in freenet6 before 0.9.6 and before 1.0 on Debian Linux has world readable permissions, which could allow local users to gain sensitive information, such as a usernam…	NVD-CWE-Other	CVE-2004-0563	2017-07-11 10:30	2004-12-23	Show	GitHub Exploit DB Packet Storm

346532	-	roaring_penguin debian	pppoe debian_linux	Roaring Penguin pppoe (rp-ppoe), if installed or configured to run setuid root contrary to its design, allows local users to overwrite arbitrary files. NOTE: the developer has publicly disputed the …	NVD-CWE-Other	CVE-2004-0564	2017-07-11 10:30	2004-12-23	Show	GitHub Exploit DB Packet Storm

346533	-	gnu	radius	The radius daemon (radiusd) for GNU Radius 1.1, when compiled with the -enable-snmp option, allows remote attackers to cause a denial of service (server crash) via malformed SNMP messages containing …	NVD-CWE-Other	CVE-2004-0576	2017-07-11 10:30	2004-12-6	Show	GitHub Exploit DB Packet Storm

346534	-	qbik	wingate	WinGate 5.2.3 build 901 and 6.0 beta 2 build 942, and other versions such as 5.0.5, allows remote attackers to read arbitrary files from the root directory via a URL request to the wingate-internal d…	NVD-CWE-Other	CVE-2004-0577	2017-07-11 10:30	2004-12-6	Show	GitHub Exploit DB Packet Storm

346535	-	qbik	wingate	WinGate 5.2.3 build 901 and 6.0 beta 2 build 942, and other versions such as 5.0.5, allows remote attackers to read arbitrary files via leading slash (//) characters in a URL request to the wingate-i…	NVD-CWE-Other	CVE-2004-0578	2017-07-11 10:30	2004-12-6	Show	GitHub Exploit DB Packet Storm

346536	-	william_deich debian	super debian_linux	Format string vulnerability in super before 3.23 allows local users to execute arbitrary code as root.	NVD-CWE-Other	CVE-2004-0579	2017-07-11 10:30	2004-08-6	Show	GitHub Exploit DB Packet Storm

346537	-	gnu mandrakesoft	ksymoops mandrake_linux mandrake_linux_corporate_server	ksymoops-gznm script in Mandrake Linux 9.1 through 10.0, and Corporate Server 2.1, allows local users to delete arbitrary files via a symlink attack on files in /tmp.	NVD-CWE-Other	CVE-2004-0581	2017-07-11 10:30	2004-08-6	Show	GitHub Exploit DB Packet Storm

346538	-	webmin	webmin	Unknown vulnerability in Webmin 1.140 allows remote attackers to bypass access control rules and gain read access to configuration information for a module.	NVD-CWE-Other	CVE-2004-0582	2017-07-11 10:30	2004-08-6	Show	GitHub Exploit DB Packet Storm

346539	-	usermin webmin debian	usermin webmin debian_linux	The account lockout functionality in (1) Webmin 1.140 and (2) Usermin 1.070 does not parse certain character strings, which allows remote attackers to conduct a brute force attack to guess user IDs a…	NVD-CWE-Other	CVE-2004-0583	2017-07-11 10:30	2004-08-6	Show	GitHub Exploit DB Packet Storm

346540	-	horde	imp	Unknown vulnerability in Horde IMP 3.2.3 and earlier, before a "security fix," does not properly validate input, which allows remote attackers to execute arbitrary script as other users via script or…	NVD-CWE-Other	CVE-2004-0584	2017-07-11 10:30	2004-08-6	Show	GitHub Exploit DB Packet Storm