Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 16, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
250791	4.3	警告	chaossoft	-	GaesteChaos の eintragen.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-4038	2012-06-26 15:37	2006-08-9	Show	GitHub Exploit DB Packet Storm

250792	10	危険	fenestrae	-	Fenestrae Faxination Server における任意のコードを実行される脆弱性	-	CVE-2006-4037	2012-06-26 15:37	2006-08-9	Show	GitHub Exploit DB Packet Storm

250793	7.5	危険	counterchaos	-	CounterChaos の counterchaos.php における SQL インジェクションの脆弱性	-	CVE-2006-4035	2012-06-26 15:37	2006-08-9	Show	GitHub Exploit DB Packet Storm

250794	5	警告	シスコシステムズ	-	Cisco IOS CME におけるSession Initiation Protocol (SIP) ユーザディレクトリから重要な情報を取得される脆弱性	-	CVE-2006-4032	2012-06-26 15:37	2006-08-9	Show	GitHub Exploit DB Packet Storm

250795	4.3	警告	3com	-	3Com OfficeConnect Secure Router の cgi-bin/admin におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-3974	2012-06-26 15:37	2007-06-11	Show	GitHub Exploit DB Packet Storm

250796	5	警告	Bharat Mediratta	-	Gallery の stats モジュールにおける重要な情報を取得される脆弱性	-	CVE-2006-4030	2012-06-26 15:37	2006-08-9	Show	GitHub Exploit DB Packet Storm

250797	7.5	危険	ageet	-	AGEphone の sipd.dll におけるスタックベースのバッファオーバーフローの脆弱性	-	CVE-2006-4029	2012-06-26 15:37	2006-08-9	Show	GitHub Exploit DB Packet Storm

250798	7.5	危険	festalon	-	Festalon の FESTAHES_Load 関数におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-4024	2012-06-26 15:37	2006-08-8	Show	GitHub Exploit DB Packet Storm

250799	7.5	危険	ClamAV	-	ClamAV の pefromupx 関数におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2006-4018	2012-06-26 15:37	2006-08-8	Show	GitHub Exploit DB Packet Storm

250800	5	警告	bomberclone	-	BomberClone の do_gameinfo などの関数におけるサーバメモリの一部を読み取られる脆弱性	CWE-200 情報漏えい	CVE-2006-4006	2012-06-26 15:37	2006-08-7	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
247331	9.8	CRITICAL Network	adobe	coldfusion	Adobe ColdFusion versions July 12 release (2018.0.0.310739), Update 6 and earlier, and Update 14 and earlier have a deserialization of untrusted data vulnerability. Successful exploitation could lead…	CWE-502 Deserialization of Untrusted Data	CVE-2018-15959	2024-11-21 12:51	2018-09-25	Show	GitHub Exploit DB Packet Storm

247332	9.8	CRITICAL Network	adobe	coldfusion	Adobe ColdFusion versions July 12 release (2018.0.0.310739), Update 6 and earlier, and Update 14 and earlier have a deserialization of untrusted data vulnerability. Successful exploitation could lead…	CWE-502 Deserialization of Untrusted Data	CVE-2018-15958	2024-11-21 12:51	2018-09-25	Show	GitHub Exploit DB Packet Storm

247333	9.8	CRITICAL Network	adobe	coldfusion	Adobe ColdFusion versions July 12 release (2018.0.0.310739), Update 6 and earlier, and Update 14 and earlier have a deserialization of untrusted data vulnerability. Successful exploitation could lead…	CWE-502 Deserialization of Untrusted Data	CVE-2018-15957	2024-11-21 12:51	2018-09-25	Show	GitHub Exploit DB Packet Storm

247334	4.4	MEDIUM Local	avaya	call_management_system_supervisor	A vulnerability in the Supervisor component of Avaya Call Management System allows local administrative user to extract sensitive information from users connecting to a remote CMS host. Affected vers…	CWE-200 Information Exposure	CVE-2018-15615	2024-11-21 12:51	2018-09-24	Show	GitHub Exploit DB Packet Storm

247335	6.1	MEDIUM Network	avaya	aura_orchestration_designer	A cross-site scripting (XSS) vulnerability in the Runtime Config component of Avaya Aura Orchestration Designer could result in malicious content being returned to the user. Affected versions of Avay…	CWE-79 Cross-site Scripting	CVE-2018-15613	2024-11-21 12:51	2018-09-22	Show	GitHub Exploit DB Packet Storm

247336	8.8	HIGH Network	avaya	orchestration_designer	A CSRF vulnerability in the Runtime Config component of Avaya Aura Orchestration Designer could allow an attacker to add, change, or remove administrative settings. Affected versions of Avaya Aura Or…	CWE-352 Origin Validation Error	CVE-2018-15612	2024-11-21 12:51	2018-09-22	Show	GitHub Exploit DB Packet Storm

247337	8.8	HIGH Network	ubisoft	uplay	upc.exe in Ubisoft Uplay Desktop Client versions 63.0.5699.0 allows remote attackers to execute arbitrary code. User interaction is required to exploit this vulnerability in that the target must visi…	CWE-20 Improper Input Validation	CVE-2018-15832	2024-11-21 12:51	2018-09-21	Show	GitHub Exploit DB Packet Storm

247338	6.1	MEDIUM Network	accusoft	prizmdoc	Accusoft PrizmDoc version 13.3 and earlier contains a Stored Cross-Site Scripting issue through a crafted PDF file.	CWE-79 Cross-site Scripting	CVE-2018-15546	2024-11-21 12:51	2018-09-19	Show	GitHub Exploit DB Packet Storm

247339	8.8	HIGH Network	avaya	ip_office	A vulnerability in the one-X Portal component of Avaya IP Office allows an authenticated attacker to read and delete arbitrary files on the system. Affected versions of Avaya IP Office include 9.1 th…	CWE-22 Path Traversal	CVE-2018-15610	2024-11-21 12:51	2018-09-13	Show	GitHub Exploit DB Packet Storm

247340	5.5	MEDIUM Local	radare	radare2	In radare2 before 2.9.0, a heap overflow vulnerability exists in the read_module_referenced_functions function in libr/anal/flirt.c via a crafted flirt signature file.	CWE-787 Out-of-bounds Write	CVE-2018-15834	2024-11-21 12:51	2018-09-13	Show	GitHub Exploit DB Packet Storm