Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
251971 6.9 警告 dreameesoft - DreameeSoft Password Master におけるデータベースコンテンツを読まれる脆弱性 - CVE-2006-7163 2012-06-26 15:38 2007-03-9 Show GitHub Exploit DB Packet Storm
251972 7.5 危険 ASP indir - Hazir Site の giris_yap.asp における SQL インジェクションの脆弱性 - CVE-2006-7161 2012-06-26 15:38 2007-03-7 Show GitHub Exploit DB Packet Storm
251973 4.9 警告 Agnitum - Outpost Firewall PRO の sandbox.sys ドライバにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認
CVE-2006-7160 2012-06-26 15:38 2007-03-7 Show GitHub Exploit DB Packet Storm
251974 6.4 警告 bti-tracker - BTI-Tracker の include/prune_torrents.php におけるディレクトリトラバーサルの脆弱性 - CVE-2006-7159 2012-06-26 15:38 2007-03-7 Show GitHub Exploit DB Packet Storm
251975 7.1 危険 Google - Google Earth におけるバッファオーバーフローの脆弱性 - CVE-2006-7157 2012-06-26 15:38 2007-03-7 Show GitHub Exploit DB Packet Storm
251976 8.5 危険 asp-nuke - ASP-Nuke Community の default.asp における権限を取得される脆弱性 - CVE-2006-7152 2012-06-26 15:38 2007-03-7 Show GitHub Exploit DB Packet Storm
251977 7.8 危険 Apache Software Foundation - Apache Tomca の AJP コネクタにおける重要なメモリの一部を読まれる脆弱性 - CVE-2006-7197 2012-06-26 15:38 2006-03-5 Show GitHub Exploit DB Packet Storm
251978 5.5 警告 call-center-software - Call Center Software の edit_user.php における重要な情報を取得される脆弱性 - CVE-2006-7145 2012-06-26 15:38 2007-03-7 Show GitHub Exploit DB Packet Storm
251979 7.5 危険 call-center-software - Call Center Software における SQL インジェクションの脆弱性 - CVE-2006-7144 2012-06-26 15:38 2007-03-7 Show GitHub Exploit DB Packet Storm
251980 5.8 警告 call-center-software - Call Center Software におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-7143 2012-06-26 15:38 2007-03-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
246611 6.1 MEDIUM
Network
ibm security_identity_governance_and_intelligence IBM Security Identity Governance and Intelligence 5.2 through 5.2.4.1 Virtual Appliance is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in th… CWE-79
Cross-site Scripting
CVE-2018-1947 2024-11-21 13:00 2019-02-22 Show GitHub Exploit DB Packet Storm
246612 7.5 HIGH
Network
ibm security_identity_governance_and_intelligence IBM Security Identity Governance and Intelligence 5.2 through 5.2.4.1 Virtual Appliance supports interaction between multiple actors and allows those actors to negotiate which algorithm should be use… CWE-326
Inadequate Encryption Strength
CVE-2018-1946 2024-11-21 13:00 2019-02-22 Show GitHub Exploit DB Packet Storm
246613 6.1 MEDIUM
Network
ibm security_identity_governance_and_intelligence IBM Security Identity Governance and Intelligence 5.2 through 5.2.4.1 Virtual Appliance could allow a remote attacker to hijack the clicking action of the victim. By persuading a victim to visit a ma… CWE-20
 Improper Input Validation 
CVE-2018-1945 2024-11-21 13:00 2019-02-22 Show GitHub Exploit DB Packet Storm
246614 9.8 CRITICAL
Network
ibm security_identity_governance_and_intelligence IBM Security Identity Governance and Intelligence 5.2 through 5.2.4.1 Virtual Appliance contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound aut… CWE-798
 Use of Hard-coded Credentials
CVE-2018-1944 2024-11-21 13:00 2019-02-22 Show GitHub Exploit DB Packet Storm
246615 9.8 CRITICAL
Network
fastweb fastgate_firmware The web interface on FASTGate Fastweb devices with firmware through 0.00.47_FW_200_Askey 2017-05-17 (software through 1.0.1b) exposed a CGI binary that is vulnerable to a command injection vulnerabil… CWE-78
OS Command 
CVE-2018-20122 2024-11-21 13:00 2019-02-21 Show GitHub Exploit DB Packet Storm
246616 7.8 HIGH
Local
liquidware flexapp
profileunity
An issue was discovered in Liquidware ProfileUnity before 6.8.0 with Liquidware FlexApp before 6.8.0. A local user could obtain administrator rights, as demonstrated by use of PowerShell. NVD-CWE-noinfo
CVE-2018-20146 2024-11-21 13:00 2019-02-21 Show GitHub Exploit DB Packet Storm
246617 7.5 HIGH
Network
libexif_project libexif An error when processing the EXIF_IFD_INTEROPERABILITY and EXIF_IFD_EXIF tags within libexif version 0.6.21 can be exploited to exhaust available CPU resources. CWE-400
 Uncontrolled Resource Consumption
CVE-2018-20030 2024-11-21 13:00 2019-02-21 Show GitHub Exploit DB Packet Storm
246618 7.5 HIGH
Network
codesys control_for_beaglebone_sl
control_for_empc-a\/imx6_sl
control_for_iot2000_sl
control_for_linux_sl
control_for_pfc100_sl
control_for_pfc200_sl
control_for_raspberry_pi_sl
control_…
Improper Communication Address Filtering exists in CODESYS V3 products versions prior V3.5.14.0. NVD-CWE-noinfo
CVE-2018-20026 2024-11-21 13:00 2019-02-20 Show GitHub Exploit DB Packet Storm
246619 7.5 HIGH
Network
codesys control_for_beaglebone_sl
control_for_empc-a\/imx6_sl
control_for_iot2000_sl
control_for_linux_sl
control_for_pfc100_sl
control_for_pfc200_sl
control_for_raspberry_pi_sl
control_…
Use of Insufficiently Random Values exists in CODESYS V3 products versions prior V3.5.14.0. CWE-330
 Use of Insufficiently Random Values
CVE-2018-20025 2024-11-21 13:00 2019-02-20 Show GitHub Exploit DB Packet Storm
246620 5.3 MEDIUM
Network
ibm websphere_application_server IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 could provide weaker than expected security, caused by the improper TLS configuration. A remote attacker could exploit this vulnerability to ob… CWE-327
 Use of a Broken or Risky Cryptographic Algorithm
CVE-2018-1996 2024-11-21 13:00 2019-02-20 Show GitHub Exploit DB Packet Storm