Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 19, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
250651	7.5	危険	alex	-	Download-Engine における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5459	2012-06-26 15:37	2006-10-23	Show	GitHub Exploit DB Packet Storm

250652	4.3	警告	casinosoft	-	Casinosoft Casino Script の登録フォームにおけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-5457	2012-06-26 15:37	2006-10-23	Show	GitHub Exploit DB Packet Storm

250653	4.3	警告	dev	-	DEV WMS の index.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-5447	2012-06-26 15:37	2006-10-23	Show	GitHub Exploit DB Packet Storm

250654	5.1	警告	casinosoft	-	Casinosoft Casino Script の lobby/config.php における SQL インジェクションの脆弱性	-	CVE-2006-5446	2012-06-26 15:37	2006-10-23	Show	GitHub Exploit DB Packet Storm

250655	7.8	危険	Digium	-	Asterisk の SIP チャネルドライバ (channels/chan_sip.c) におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-5445	2012-06-26 15:37	2006-10-23	Show	GitHub Exploit DB Packet Storm

250656	7.5	危険	Digium	-	Cisco SCCP 電話機で使用される Asterisk の Skinny チャネルドライバにおける整数オーバーフローの脆弱性	-	CVE-2006-5444	2012-06-26 15:37	2006-10-23	Show	GitHub Exploit DB Packet Storm

250657	7.5	危険	comdev	-	Comdev Web Blogger の adminfoot.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5441	2012-06-26 15:37	2006-10-20	Show	GitHub Exploit DB Packet Storm

250658	7.5	危険	comdev	-	Comdev Form Designer の adminfoot.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5440	2012-06-26 15:37	2006-10-20	Show	GitHub Exploit DB Packet Storm

250659	7.5	危険	comdev	-	Comdev Misc Tools の adminfoot.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2006-5439	2012-06-26 15:37	2006-10-20	Show	GitHub Exploit DB Packet Storm

250660	7.5	危険	comdev	-	Comdev Forum の adminfoot.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5438	2012-06-26 15:37	2006-10-20	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 19, 2026, 4:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
247361	7.8	HIGH Local	kzsoftware	training_manager asset_manager	Kaizen Asset Manager (Enterprise Edition) and Training Manager (Enterprise Edition) allow a remote attacker to achieve arbitrary code execution via file impersonation. For example, a malicious dynami…	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2018-16545	2024-11-21 12:52	2018-09-6	Show	GitHub Exploit DB Packet Storm

247362	7.8	HIGH Local	artifex canonical debian	ghostscript ubuntu_linux debian_linux	In Artifex Ghostscript before 9.24, gssetresolution and gsgetresolution allow attackers to have an unspecified impact.	NVD-CWE-noinfo	CVE-2018-16543	2024-11-21 12:52	2018-09-6	Show	GitHub Exploit DB Packet Storm

247363	5.5	MEDIUM Local	artifex redhat debian canonical	ghostscript enterprise_linux_desktop enterprise_linux_workstation enterprise_linux enterprise_linux_server enterprise_linux_server_eus debian_linux ubuntu_linux	In Artifex Ghostscript before 9.24, attackers able to supply crafted PostScript files could use insufficient interpreter stack-size checking during error handling to crash the interpreter.	CWE-787 Out-of-bounds Write	CVE-2018-16542	2024-11-21 12:52	2018-09-6	Show	GitHub Exploit DB Packet Storm

247364	5.5	MEDIUM Local	artifex canonical debian redhat	ghostscript ubuntu_linux debian_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterprise_linux_server_tus enterprise_linux_server_eus ent…	In Artifex Ghostscript before 9.24, attackers able to supply crafted PostScript files could use incorrect free logic in pagedevice replacement to crash the interpreter.	CWE-416 Use After Free	CVE-2018-16541	2024-11-21 12:52	2018-09-6	Show	GitHub Exploit DB Packet Storm

247365	7.8	HIGH Local	artifex redhat debian canonical	ghostscript enterprise_linux_desktop enterprise_linux_workstation enterprise_linux enterprise_linux_server enterprise_linux_server_eus enterprise_linux_server_tus enterprise_linu…	In Artifex Ghostscript before 9.24, attackers able to supply crafted PostScript files to the builtin PDF14 converter could use a use-after-free in copydevice handling to crash the interpreter or poss…	CWE-416 Use After Free	CVE-2018-16540	2024-11-21 12:52	2018-09-6	Show	GitHub Exploit DB Packet Storm

247366	5.5	MEDIUM Local	artifex canonical debian redhat	ghostscript ubuntu_linux debian_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterprise_linux_server_tus enterprise_linux_server_eus ent…	In Artifex Ghostscript before 9.24, attackers able to supply crafted PostScript files could use incorrect access checking in temp file handling to disclose contents of files on the system otherwise n…	CWE-200 Information Exposure	CVE-2018-16539	2024-11-21 12:52	2018-09-6	Show	GitHub Exploit DB Packet Storm

247367	9.8	CRITICAL Network	openmrs	html_form_entry reference_application	An XML External Entity (XXE) vulnerability exists in HTML Form Entry 3.7.0, as distributed in OpenMRS Reference Application 2.8.0.	CWE-611 XXE	CVE-2018-16521	2024-11-21 12:52	2018-09-6	Show	GitHub Exploit DB Packet Storm

247368	9.8	CRITICAL Network	primx	zed\! zed\!_free	A directory traversal vulnerability with remote code execution in Prim'X Zed! FREE through 1.0 build 186 and Zed! Limited Edition through 6.1 build 2208 allows creation of arbitrary files on a user's…	CWE-22 Path Traversal	CVE-2018-16518	2024-11-21 12:52	2018-09-6	Show	GitHub Exploit DB Packet Storm

247369	6.1	MEDIUM Network	flask-admin_project	flask-admin	helpers.py in Flask-Admin 1.5.2 has Reflected XSS via a crafted URL.	CWE-79 Cross-site Scripting	CVE-2018-16516	2024-11-21 12:52	2018-09-5	Show	GitHub Exploit DB Packet Storm

247370	7.8	HIGH Local	artifex debian canonical pulsesecure	ghostscript debian_linux ubuntu_linux gpl_ghostscript pulse_connect_secure	In Artifex Ghostscript before 9.24, attackers able to supply crafted PostScript files could use a type confusion in the setcolor function to crash the interpreter or possibly have unspecified other i…	CWE-704 Incorrect Type Conversion or Cast	CVE-2018-16513	2024-11-21 12:52	2018-09-5	Show	GitHub Exploit DB Packet Storm