Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 27, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
251881 9 危険 cPanel - cPanel における権限を取得される脆弱性 - CVE-2006-5014 2012-06-26 15:37 2006-09-26 Show GitHub Exploit DB Packet Storm
251882 4.6 警告 Apache Friends - Apache Friends XAMPP における権限を取得される脆弱性 - CVE-2006-4994 2012-06-26 15:37 2006-09-25 Show GitHub Exploit DB Packet Storm
251883 5 警告 grayscale - Grayscale BandSite CMS における重要な情報を取得される脆弱性 - CVE-2006-4986 2012-06-26 15:37 2006-09-25 Show GitHub Exploit DB Packet Storm
251884 4.3 警告 grayscale - Grayscale BandSite CMS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2006-4985 2012-06-26 15:37 2006-09-25 Show GitHub Exploit DB Packet Storm
251885 7.5 危険 grayscale - Grayscale BandSite CMS における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4984 2012-06-26 15:37 2006-09-25 Show GitHub Exploit DB Packet Storm
251886 7.5 危険 シスコシステムズ - Cisco NAC におけるコントロールメソッドを回避される脆弱性 - CVE-2006-4983 2012-06-26 15:37 2006-09-25 Show GitHub Exploit DB Packet Storm
251887 4.6 警告 シスコシステムズ - Cisco NAC におけるローカルネットワークに接続される脆弱性 - CVE-2006-4982 2012-06-26 15:37 2006-09-25 Show GitHub Exploit DB Packet Storm
251888 4.3 警告 DNN - Perpetual Motion Interactive Systems DotNetNuke の Default.aspx におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-4973 2012-06-26 15:37 2006-09-17 Show GitHub Exploit DB Packet Storm
251889 7.5 危険 chumpsoft - phpQ の inc/ifunctions.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4966 2012-06-26 15:37 2006-09-24 Show GitHub Exploit DB Packet Storm
251890 6.4 警告 Exponent CMS project - Exponent CMS の index.php におけるディレクトリトラバーサルの脆弱性 - CVE-2006-4963 2012-06-26 15:37 2006-09-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 27, 2026, 4:35 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
246051 9.8 CRITICAL
Network 		ibm security_identity_governance_and_intelligence IBM Security Identity Governance and Intelligence 5.2 through 5.2.4.1 Virtual Appliance contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound aut… CWE-798
 Use of Hard-coded Credentials 		CVE-2018-1944 2024-11-21 13:00 2019-02-22 Show GitHub Exploit DB Packet Storm
246052 9.8 CRITICAL
Network 		fastweb fastgate_firmware The web interface on FASTGate Fastweb devices with firmware through 0.00.47_FW_200_Askey 2017-05-17 (software through 1.0.1b) exposed a CGI binary that is vulnerable to a command injection vulnerabil… CWE-78
OS Command  		CVE-2018-20122 2024-11-21 13:00 2019-02-21 Show GitHub Exploit DB Packet Storm
246053 7.8 HIGH
Local 		liquidware flexapp
profileunity 		An issue was discovered in Liquidware ProfileUnity before 6.8.0 with Liquidware FlexApp before 6.8.0. A local user could obtain administrator rights, as demonstrated by use of PowerShell. NVD-CWE-noinfo
CVE-2018-20146 2024-11-21 13:00 2019-02-21 Show GitHub Exploit DB Packet Storm
246054 7.5 HIGH
Network 		libexif_project libexif An error when processing the EXIF_IFD_INTEROPERABILITY and EXIF_IFD_EXIF tags within libexif version 0.6.21 can be exploited to exhaust available CPU resources. CWE-400
 Uncontrolled Resource Consumption 		CVE-2018-20030 2024-11-21 13:00 2019-02-21 Show GitHub Exploit DB Packet Storm
246055 7.5 HIGH
Network 		codesys control_for_beaglebone_sl
control_for_empc-a\/imx6_sl
control_for_iot2000_sl
control_for_linux_sl
control_for_pfc100_sl
control_for_pfc200_sl
control_for_raspberry_pi_sl
control_… 		Improper Communication Address Filtering exists in CODESYS V3 products versions prior V3.5.14.0. NVD-CWE-noinfo
CVE-2018-20026 2024-11-21 13:00 2019-02-20 Show GitHub Exploit DB Packet Storm
246056 7.5 HIGH
Network 		codesys control_for_beaglebone_sl
control_for_empc-a\/imx6_sl
control_for_iot2000_sl
control_for_linux_sl
control_for_pfc100_sl
control_for_pfc200_sl
control_for_raspberry_pi_sl
control_… 		Use of Insufficiently Random Values exists in CODESYS V3 products versions prior V3.5.14.0. CWE-330
 Use of Insufficiently Random Values 		CVE-2018-20025 2024-11-21 13:00 2019-02-20 Show GitHub Exploit DB Packet Storm
246057 5.3 MEDIUM
Network 		ibm websphere_application_server IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 could provide weaker than expected security, caused by the improper TLS configuration. A remote attacker could exploit this vulnerability to ob… CWE-327
 Use of a Broken or Risky Cryptographic Algorithm 		CVE-2018-1996 2024-11-21 13:00 2019-02-20 Show GitHub Exploit DB Packet Storm
246058 5.4 MEDIUM
Network 		ibm infosphere_information_governance_catalog
infosphere_information_server_on_cloud 		IBM InfoSphere Information Server 11.3, 11.5, and 11.7 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intend… CWE-79
Cross-site Scripting 		CVE-2018-1895 2024-11-21 13:00 2019-02-16 Show GitHub Exploit DB Packet Storm
246059 9.1 CRITICAL
Network 		ibm infosphere_information_server IBM InfoSphere Information Server 9.1, 11.3, 11.5, and 11.7 is vulnerable to a XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability … CWE-611
XXE 		CVE-2018-1727 2024-11-21 13:00 2019-02-16 Show GitHub Exploit DB Packet Storm
246060 8.5 HIGH
Network 		ibm infosphere_information_server
infosphere_information_server_on_cloud 		IBM InfoSphere Information Server 11.7 could allow an authenciated user under specialized conditions to inject commands into the installation process that would execute on the WebSphere Application S… NVD-CWE-noinfo
CVE-2018-1701 2024-11-21 13:00 2019-02-16 Show GitHub Exploit DB Packet Storm