Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 19, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
250661	7.5	危険	freefaq	-	FreeFAQ の index.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5436	2012-06-26 15:37	2006-10-20	Show	GitHub Exploit DB Packet Storm

250662	6.8	警告	db-central	-	dbc Enterprise CMS の search 機能におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-5430	2012-06-26 15:37	2006-10-20	Show	GitHub Exploit DB Packet Storm

250663	7.5	危険	barry nauta	-	Barry Nauta BRIM における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5429	2012-06-26 15:37	2006-10-20	Show	GitHub Exploit DB Packet Storm

250664	5	警告	Cerberus, LLC	-	Cerberus Helpdesk の rpc.php における GUI ログインを回避される脆弱性	-	CVE-2006-5428	2012-06-26 15:37	2006-10-20	Show	GitHub Exploit DB Packet Storm

250665	5.1	警告	F5 Networks	-	F5 Networks FirePass 1000 SSL VPN の my.acctab.php3 におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-5416	2012-06-26 15:37	2006-10-20	Show	GitHub Exploit DB Packet Storm

250666	5	警告	barry nauta	-	Barry Nauta BRIM における他のユーザから情報を取得される脆弱性	-	CVE-2006-5414	2012-06-26 15:37	2006-10-20	Show	GitHub Exploit DB Packet Storm

250667	5.1	警告	BoonEx	-	BoonEx Dolphin の templates/tmpl_dfl/scripts/index.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5410	2012-06-26 15:37	2006-10-20	Show	GitHub Exploit DB Packet Storm

250668	7.5	危険	aroundme	-	AROUNDMe の template/barnraiser_01/p_new_password.tpl.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5401	2012-06-26 15:37	2006-10-18	Show	GitHub Exploit DB Packet Storm

250669	5.1	警告	cyberbrau	-	CyberBrau の forum/track.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5400	2012-06-26 15:37	2006-10-18	Show	GitHub Exploit DB Packet Storm

250670	2.1	注意	シスコシステムズ	-	CSD のデフォルト設定におけるプリンタへ送信されたデータを読まれる脆弱性	-	CVE-2006-5394	2012-06-26 15:37	2006-10-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 19, 2026, 4:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
247361	7.8	HIGH Local	kzsoftware	training_manager asset_manager	Kaizen Asset Manager (Enterprise Edition) and Training Manager (Enterprise Edition) allow a remote attacker to achieve arbitrary code execution via file impersonation. For example, a malicious dynami…	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2018-16545	2024-11-21 12:52	2018-09-6	Show	GitHub Exploit DB Packet Storm

247362	7.8	HIGH Local	artifex canonical debian	ghostscript ubuntu_linux debian_linux	In Artifex Ghostscript before 9.24, gssetresolution and gsgetresolution allow attackers to have an unspecified impact.	NVD-CWE-noinfo	CVE-2018-16543	2024-11-21 12:52	2018-09-6	Show	GitHub Exploit DB Packet Storm

247363	5.5	MEDIUM Local	artifex redhat debian canonical	ghostscript enterprise_linux_desktop enterprise_linux_workstation enterprise_linux enterprise_linux_server enterprise_linux_server_eus debian_linux ubuntu_linux	In Artifex Ghostscript before 9.24, attackers able to supply crafted PostScript files could use insufficient interpreter stack-size checking during error handling to crash the interpreter.	CWE-787 Out-of-bounds Write	CVE-2018-16542	2024-11-21 12:52	2018-09-6	Show	GitHub Exploit DB Packet Storm

247364	5.5	MEDIUM Local	artifex canonical debian redhat	ghostscript ubuntu_linux debian_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterprise_linux_server_tus enterprise_linux_server_eus ent…	In Artifex Ghostscript before 9.24, attackers able to supply crafted PostScript files could use incorrect free logic in pagedevice replacement to crash the interpreter.	CWE-416 Use After Free	CVE-2018-16541	2024-11-21 12:52	2018-09-6	Show	GitHub Exploit DB Packet Storm

247365	7.8	HIGH Local	artifex redhat debian canonical	ghostscript enterprise_linux_desktop enterprise_linux_workstation enterprise_linux enterprise_linux_server enterprise_linux_server_eus enterprise_linux_server_tus enterprise_linu…	In Artifex Ghostscript before 9.24, attackers able to supply crafted PostScript files to the builtin PDF14 converter could use a use-after-free in copydevice handling to crash the interpreter or poss…	CWE-416 Use After Free	CVE-2018-16540	2024-11-21 12:52	2018-09-6	Show	GitHub Exploit DB Packet Storm

247366	5.5	MEDIUM Local	artifex canonical debian redhat	ghostscript ubuntu_linux debian_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterprise_linux_server_tus enterprise_linux_server_eus ent…	In Artifex Ghostscript before 9.24, attackers able to supply crafted PostScript files could use incorrect access checking in temp file handling to disclose contents of files on the system otherwise n…	CWE-200 Information Exposure	CVE-2018-16539	2024-11-21 12:52	2018-09-6	Show	GitHub Exploit DB Packet Storm

247367	9.8	CRITICAL Network	openmrs	html_form_entry reference_application	An XML External Entity (XXE) vulnerability exists in HTML Form Entry 3.7.0, as distributed in OpenMRS Reference Application 2.8.0.	CWE-611 XXE	CVE-2018-16521	2024-11-21 12:52	2018-09-6	Show	GitHub Exploit DB Packet Storm

247368	9.8	CRITICAL Network	primx	zed\! zed\!_free	A directory traversal vulnerability with remote code execution in Prim'X Zed! FREE through 1.0 build 186 and Zed! Limited Edition through 6.1 build 2208 allows creation of arbitrary files on a user's…	CWE-22 Path Traversal	CVE-2018-16518	2024-11-21 12:52	2018-09-6	Show	GitHub Exploit DB Packet Storm

247369	6.1	MEDIUM Network	flask-admin_project	flask-admin	helpers.py in Flask-Admin 1.5.2 has Reflected XSS via a crafted URL.	CWE-79 Cross-site Scripting	CVE-2018-16516	2024-11-21 12:52	2018-09-5	Show	GitHub Exploit DB Packet Storm

247370	7.8	HIGH Local	artifex debian canonical pulsesecure	ghostscript debian_linux ubuntu_linux gpl_ghostscript pulse_connect_secure	In Artifex Ghostscript before 9.24, attackers able to supply crafted PostScript files could use a type confusion in the setcolor function to crash the interpreter or possibly have unspecified other i…	CWE-704 Incorrect Type Conversion or Cast	CVE-2018-16513	2024-11-21 12:52	2018-09-5	Show	GitHub Exploit DB Packet Storm