Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 18, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
250931	5.1	警告	アップル	-	Apple QuickTime における整数オーバーフローの脆弱性	-	CVE-2006-4381	2012-06-26 15:37	2006-09-12	Show	GitHub Exploit DB Packet Storm

250932	7.5	危険	guder und koch netzwerktechnik	-	Guder und Koch Netzwerktechnik Eichhorn Portal における SQL インジェクションの脆弱性	-	CVE-2006-4377	2012-06-26 15:37	2006-08-26	Show	GitHub Exploit DB Packet Storm

250933	5.1	警告	guder und koch netzwerktechnik	-	Guder und Koch Netzwerktechnik Eichhorn Portal におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-4376	2012-06-26 15:37	2006-08-26	Show	GitHub Exploit DB Packet Storm

250934	7.5	危険	derek leung	-	pSlash の modules/visitors2/include/config.inc.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4373	2012-06-26 15:37	2006-08-26	Show	GitHub Exploit DB Packet Storm

250935	7.5	危険	constructor component	-	Mambo の lurm_constructor の admin.lurm_constructor.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4372	2012-06-26 15:37	2006-08-26	Show	GitHub Exploit DB Packet Storm

250936	4	警告	Alt-N	-	MDaemon が稼動している Alt-N WebAdmin におけるディレクトリトラバーサルの脆弱性	-	CVE-2006-4371	2012-06-26 15:37	2006-08-26	Show	GitHub Exploit DB Packet Storm

250937	7.5	危険	Alt-N	-	MDaemon が稼動している Alt-N WebAdmin におけるグローバル管理者のパスワードを変更される脆弱性	-	CVE-2006-4370	2012-06-26 15:37	2006-08-26	Show	GitHub Exploit DB Packet Storm

250938	7.5	危険	all topics	-	phpBB の All Topics Hack の alltopics.php における SQL インジェクションの脆弱性	-	CVE-2006-4367	2012-06-26 15:37	2006-08-26	Show	GitHub Exploit DB Packet Storm

250939	5	警告	Alt-N	-	Alt-N Technologies MDaemon の POP3 サーバにおけるヒープベースのバッファオーバーフローの脆弱性	-	CVE-2006-4364	2012-06-26 15:37	2006-08-26	Show	GitHub Exploit DB Packet Storm

250940	7.5	危険	cropimage component	-	Mambo 用の CropImage コンポーネントの admin.cropcanvas.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4363	2012-06-26 15:37	2006-08-26	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 18, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
247151	8.8	HIGH Network	ipbrick	ipbrick_os	An issue was discovered in the Web Management Console in IPBRICK OS 6.3. There are multiple SQL injections.	CWE-89 SQL Injection	CVE-2018-16137	2024-11-21 12:52	2019-05-14	Show	GitHub Exploit DB Packet Storm

247152	8.8	HIGH Network	ipbrick	ipbrick_os	An issue was discovered in the administrator interface in IPBRICK OS 6.3. The application doesn't check for Anti-CSRF tokens, allowing the submission of multiple forms unwillingly by a victim.	CWE-352 Origin Validation Error	CVE-2018-16136	2024-11-21 12:52	2019-05-14	Show	GitHub Exploit DB Packet Storm

247153	6.1	MEDIUM Network	bibliosoft	bibliopac	Cross-site scripting (XSS) vulnerability in BIBLIOsoft BIBLIOpac 2008 allows remote attackers to inject arbitrary web script or HTML via the db or action parameter to to bin/wxis.exe/bibliopac/.	CWE-79 Cross-site Scripting	CVE-2018-16139	2024-11-21 12:52	2019-05-14	Show	GitHub Exploit DB Packet Storm

247154	6.1	MEDIUM Network	audiocodes	405hd_firmware	Cross Site Scripting in different input fields (domain field and personal settings) in AudioCodes 405HD VoIP phone with firmware 2.2.12 allows an attacker (local or remote) to inject JavaScript into …	CWE-79 Cross-site Scripting	CVE-2018-16220	2024-11-21 12:52	2019-04-26	Show	GitHub Exploit DB Packet Storm

247155	8.8	HIGH Adjacent	audiocodes	405hd_firmware	A missing password verification in the web interface in AudioCodes 405HD VoIP phone with firmware 2.2.12 allows an remote attacker (in the same network as the device) to change the admin password wit…	CWE-287 Improper Authentication	CVE-2018-16219	2024-11-21 12:52	2019-04-26	Show	GitHub Exploit DB Packet Storm

247156	8.0	HIGH Adjacent	audiocodes	405hd_firmware	A command injection (missing input validation, escaping) in the monitoring or memory status web interface in AudioCodes 405HD (firmware 2.2.12) VoIP phone allows an authenticated remote attacker in t…	CWE-78 OS Command	CVE-2018-16216	2024-11-21 12:52	2019-04-26	Show	GitHub Exploit DB Packet Storm

247157	7.5	HIGH Network	siemens	simatic_s7-300_firmware simatic_s7-300f_firmware simatic_s7-300fs_firmware simatic_s7-300t_firmware	A vulnerability has been identified in SIMATIC S7-300 CPUs (All versions < V3.X.16). The affected CPUs improperly validate S7 communication packets which could cause a Denial-of-Service condition of …	NVD-CWE-noinfo	CVE-2018-16561	2024-11-21 12:52	2019-04-17	Show	GitHub Exploit DB Packet Storm

247158	7.5	HIGH Network	siemens	simatic_s7-1500_firmware	A vulnerability has been identified in SIMATIC S7-1500 CPU (All versions >= V2.0 and < V2.5), SIMATIC S7-1500 CPU (All versions <= V1.8.5). Specially crafted network packets sent to port 80/tcp or 44…	CWE-20 Improper Input Validation	CVE-2018-16559	2024-11-21 12:52	2019-04-17	Show	GitHub Exploit DB Packet Storm

247159	7.5	HIGH Network	siemens	simatic_s7-1500_firmware	A vulnerability has been identified in SIMATIC S7-1500 CPU (All versions >= V2.0 and < V2.5), SIMATIC S7-1500 CPU (All versions <= V1.8.5). Specially crafted network packets sent to port 80/tcp or 44…	CWE-20 Improper Input Validation	CVE-2018-16558	2024-11-21 12:52	2019-04-17	Show	GitHub Exploit DB Packet Storm

247160	6.1	MEDIUM Network	soflyy	wp_all_import	There is an XSS vulnerability in WP All Import plugin 3.4.9 for WordPress via pmxi-admin-settings large_feed_limit. NOTE: The vendor states that this is not a vulnerability. WP All Import is only abl…	CWE-79 Cross-site Scripting	CVE-2018-16259	2024-11-21 12:52	2019-04-13	Show	GitHub Exploit DB Packet Storm