Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 19, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
250651 7.5 危険 alex - Download-Engine における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5459 2012-06-26 15:37 2006-10-23 Show GitHub Exploit DB Packet Storm
250652 4.3 警告 casinosoft - Casinosoft Casino Script の登録フォームにおけるクロスサイトスクリプティングの脆弱性 - CVE-2006-5457 2012-06-26 15:37 2006-10-23 Show GitHub Exploit DB Packet Storm
250653 4.3 警告 dev - DEV WMS の index.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-5447 2012-06-26 15:37 2006-10-23 Show GitHub Exploit DB Packet Storm
250654 5.1 警告 casinosoft - Casinosoft Casino Script の lobby/config.php における SQL インジェクションの脆弱性 - CVE-2006-5446 2012-06-26 15:37 2006-10-23 Show GitHub Exploit DB Packet Storm
250655 7.8 危険 Digium - Asterisk の SIP チャネルドライバ (channels/chan_sip.c) におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-5445 2012-06-26 15:37 2006-10-23 Show GitHub Exploit DB Packet Storm
250656 7.5 危険 Digium - Cisco SCCP 電話機で使用される Asterisk の Skinny チャネルドライバにおける整数オーバーフローの脆弱性 - CVE-2006-5444 2012-06-26 15:37 2006-10-23 Show GitHub Exploit DB Packet Storm
250657 7.5 危険 comdev - Comdev Web Blogger の adminfoot.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5441 2012-06-26 15:37 2006-10-20 Show GitHub Exploit DB Packet Storm
250658 7.5 危険 comdev - Comdev Form Designer の adminfoot.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5440 2012-06-26 15:37 2006-10-20 Show GitHub Exploit DB Packet Storm
250659 7.5 危険 comdev - Comdev Misc Tools の adminfoot.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2006-5439 2012-06-26 15:37 2006-10-20 Show GitHub Exploit DB Packet Storm
250660 7.5 危険 comdev - Comdev Forum の adminfoot.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5438 2012-06-26 15:37 2006-10-20 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 19, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
247311 6.1 MEDIUM
Network 		phpscriptsmall olx_clone PHP Scripts Mall Olx Clone 3.4.2 has XSS. CWE-79
Cross-site Scripting 		CVE-2018-16326 2024-11-21 12:52 2018-10-5 Show GitHub Exploit DB Packet Storm
247312 6.5 MEDIUM
Network 		gitlab gitlab An issue was discovered in GitLab Community and Enterprise Edition before 11.0.6, 11.1.x before 11.1.5, and 11.2.x before 11.2.2. There is Orphaned Upload Files Exposure. CWE-200
Information Exposure 		CVE-2018-16051 2024-11-21 12:52 2018-10-4 Show GitHub Exploit DB Packet Storm
247313 6.1 MEDIUM
Network 		gitlab gitlab An issue was discovered in GitLab Community and Enterprise Edition 11.1.x before 11.1.5 and 11.2.x before 11.2.2. There is Persistent XSS in the Merge Request Changes View. CWE-79
Cross-site Scripting 		CVE-2018-16050 2024-11-21 12:52 2018-10-4 Show GitHub Exploit DB Packet Storm
247314 9.8 CRITICAL
Network 		gitlab gitlab An issue was discovered in GitLab Community and Enterprise Edition before 11.0.6, 11.1.x before 11.1.5, and 11.2.x before 11.2.2. There is Sensitive Data Disclosure in Sidekiq Logs through an Error M… CWE-532
 Inclusion of Sensitive Information in Log Files 		CVE-2018-16049 2024-11-21 12:52 2018-10-4 Show GitHub Exploit DB Packet Storm
247315 4.3 MEDIUM
Network 		otrs
debian 		open_ticket_request_system
debian_linux 		In Open Ticket Request System (OTRS) 4.0.x before 4.0.32, 5.0.x before 5.0.30, and 6.0.x before 6.0.11, an attacker could send a malicious email to an OTRS system. If a logged in user opens it, the e… NVD-CWE-noinfo
CVE-2018-16586 2024-11-21 12:52 2018-09-28 Show GitHub Exploit DB Packet Storm
247316 5.4 MEDIUM
Network 		xwiki xwiki The Image Import function in XWiki through 10.7 has XSS. CWE-79
Cross-site Scripting 		CVE-2018-16277 2024-11-21 12:52 2018-09-28 Show GitHub Exploit DB Packet Storm
247317 8.8 HIGH
Network 		netgate pfsense An authenticated command injection vulnerability exists in status_interfaces.php via dhcp_relinquish_lease() in pfSense before 2.4.4 due to its passing user input from the $_POST parameters "ifdescr"… CWE-78
OS Command  		CVE-2018-16055 2024-11-21 12:52 2018-09-27 Show GitHub Exploit DB Packet Storm
247318 8.1 HIGH
Network 		zohocorp manageengine_applications_manager A serialization vulnerability in Zoho ManageEngine Applications Manager before build 13740 allows for remote code execution on Windows via a payload on an SMB share. CWE-502
 Deserialization of Untrusted Data 		CVE-2018-16364 2024-11-21 12:52 2018-09-27 Show GitHub Exploit DB Packet Storm
247319 7.5 HIGH
Network 		strongswan
debian
canonical 		strongswan
debian_linux
ubuntu_linux 		In verify_emsa_pkcs1_signature() in gmp_rsa_public_key.c in the gmp plugin in strongSwan 4.x and 5.x before 5.7.0, the RSA implementation based on GMP does not reject excess data in the digestAlgorit… CWE-347
 Improper Verification of Cryptographic Signature 		CVE-2018-16152 2024-11-21 12:52 2018-09-27 Show GitHub Exploit DB Packet Storm
247320 7.5 HIGH
Network 		strongswan
debian
canonical 		strongswan
debian_linux
ubuntu_linux 		In verify_emsa_pkcs1_signature() in gmp_rsa_public_key.c in the gmp plugin in strongSwan 4.x and 5.x before 5.7.0, the RSA implementation based on GMP does not reject excess data after the encoded al… CWE-347
 Improper Verification of Cryptographic Signature 		CVE-2018-16151 2024-11-21 12:52 2018-09-27 Show GitHub Exploit DB Packet Storm