Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 19, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
250661 7.5 危険 freefaq - FreeFAQ の index.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5436 2012-06-26 15:37 2006-10-20 Show GitHub Exploit DB Packet Storm
250662 6.8 警告 db-central - dbc Enterprise CMS の search 機能におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-5430 2012-06-26 15:37 2006-10-20 Show GitHub Exploit DB Packet Storm
250663 7.5 危険 barry nauta - Barry Nauta BRIM における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5429 2012-06-26 15:37 2006-10-20 Show GitHub Exploit DB Packet Storm
250664 5 警告 Cerberus, LLC - Cerberus Helpdesk の rpc.php における GUI ログインを回避される脆弱性 - CVE-2006-5428 2012-06-26 15:37 2006-10-20 Show GitHub Exploit DB Packet Storm
250665 5.1 警告 F5 Networks - F5 Networks FirePass 1000 SSL VPN の my.acctab.php3 におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-5416 2012-06-26 15:37 2006-10-20 Show GitHub Exploit DB Packet Storm
250666 5 警告 barry nauta - Barry Nauta BRIM における他のユーザから情報を取得される脆弱性 - CVE-2006-5414 2012-06-26 15:37 2006-10-20 Show GitHub Exploit DB Packet Storm
250667 5.1 警告 BoonEx - BoonEx Dolphin の templates/tmpl_dfl/scripts/index.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5410 2012-06-26 15:37 2006-10-20 Show GitHub Exploit DB Packet Storm
250668 7.5 危険 aroundme - AROUNDMe の template/barnraiser_01/p_new_password.tpl.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5401 2012-06-26 15:37 2006-10-18 Show GitHub Exploit DB Packet Storm
250669 5.1 警告 cyberbrau - CyberBrau の forum/track.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5400 2012-06-26 15:37 2006-10-18 Show GitHub Exploit DB Packet Storm
250670 2.1 注意 シスコシステムズ - CSD のデフォルト設定におけるプリンタへ送信されたデータを読まれる脆弱性 - CVE-2006-5394 2012-06-26 15:37 2006-10-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 19, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
247481 6.1 MEDIUM
Network 		1234n minicms MiniCMS V1.10 has XSS via the mc-admin/post-edit.php tags parameter. CWE-79
Cross-site Scripting 		CVE-2018-16233 2024-11-21 12:52 2018-08-31 Show GitHub Exploit DB Packet Storm
247482 7.5 HIGH
Network 		michael-roth-software pftp Michael Roth Software Personal FTP Server (PFTP) through 8.4f allows remote attackers to cause a denial of service (daemon crash) via an unspecified sequence of FTP commands. CWE-20
 Improper Input Validation  		CVE-2018-16231 2024-11-21 12:52 2018-08-31 Show GitHub Exploit DB Packet Storm
247483 9.8 CRITICAL
Network 		codemenschen gift_vouchers The Gift Vouchers plugin through 2.0.1 for WordPress allows SQL Injection via the template_id parameter in a wp-admin/admin-ajax.php wpgv_doajax_front_template request. CWE-89
SQL Injection 		CVE-2018-16159 2024-11-21 12:52 2018-08-31 Show GitHub Exploit DB Packet Storm
247484 5.3 MEDIUM
Network 		bijiadao waimai_super_cms waimai Super Cms 20150505 has a logic flaw allowing attackers to modify a price, before form submission, by observing data in a packet capture. By setting the index.php?m=cart&a=save item_totals para… NVD-CWE-noinfo
CVE-2018-16157 2024-11-21 12:52 2018-08-30 Show GitHub Exploit DB Packet Storm
247485 7.5 HIGH
Network 		lightbend akka_http The decodeRequest and decodeRequestWith directives in Lightbend Akka HTTP 10.1.x through 10.1.4 and 10.0.x through 10.0.13 allow remote attackers to cause a denial of service (memory consumption and … CWE-400
 Uncontrolled Resource Consumption 		CVE-2018-16131 2024-11-21 12:52 2018-08-30 Show GitHub Exploit DB Packet Storm
247486 9.8 CRITICAL
Network 		eaton power_xpert_meter_4000_firmware
power_xpert_meter_6000_firmware
power_xpert_meter_8000_firmware 		Eaton Power Xpert Meter 4000, 6000, and 8000 devices before 13.4.0.10 have a single SSH private key across different customers' installations and do not properly restrict access to this key, which ma… CWE-798
 Use of Hard-coded Credentials 		CVE-2018-16158 2024-11-21 12:52 2018-08-30 Show GitHub Exploit DB Packet Storm
247487 6.1 MEDIUM
Network 		phpok phpok PHPOK 4.8.278 has a Reflected XSS vulnerability in framework/www/login_control.php via the _back parameter to the ok_f function. CWE-79
Cross-site Scripting 		CVE-2018-16142 2024-11-21 12:52 2018-08-30 Show GitHub Exploit DB Packet Storm
247488 6.5 MEDIUM
Network 		thinkcmf thinkcmfx ThinkCMF X2.2.3 has an arbitrary file deletion vulnerability in do_avatar in \application\User\Controller\ProfileController.class.php via an imgurl parameter with a ..\ sequence. A member user can de… CWE-22
Path Traversal 		CVE-2018-16141 2024-11-21 12:52 2018-08-30 Show GitHub Exploit DB Packet Storm
247489 7.8 HIGH
Local 		canonical
fig2dev_project 		ubuntu_linux
fig2dev 		A buffer underwrite vulnerability in get_line() (read.c) in fig2dev 3.2.7a allows an attacker to write prior to the beginning of the buffer via a crafted .fig file. CWE-787
 Out-of-bounds Write 		CVE-2018-16140 2024-11-21 12:52 2018-08-30 Show GitHub Exploit DB Packet Storm
247490 7.5 HIGH
Network 		wireshark
debian 		wireshark
debian_linux 		In Wireshark 2.6.0 to 2.6.2, 2.4.0 to 2.4.8, and 2.2.0 to 2.2.16, the Bluetooth AVDTP dissector could crash. This was addressed in epan/dissectors/packet-btavdtp.c by properly initializing a data str… CWE-665
 Improper Initialization 		CVE-2018-16058 2024-11-21 12:52 2018-08-30 Show GitHub Exploit DB Packet Storm