Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 30, 2026, 12:08 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252081 7.5 危険 coalescent systems - Coalescent Systems freePBX における任意のコマンドを実行される脆弱性 - CVE-2006-6244 2012-06-26 15:38 2006-12-4 Show GitHub Exploit DB Packet Storm
252082 7.5 危険 fipsasp - FipsSHOP の index.asp における SQL インジェクションの脆弱性 - CVE-2006-6243 2012-06-26 15:38 2006-12-4 Show GitHub Exploit DB Packet Storm
252083 5 警告 アップル - Apple Safari の AutoFill 機能における重要な情報を取得される脆弱性 - CVE-2006-6238 2012-06-26 15:38 2006-12-3 Show GitHub Exploit DB Packet Storm
252084 7.5 危険 francisco burzi - PHP-Nuke の Content モジュールにおける SQL インジェクションの脆弱性 - CVE-2006-6234 2012-06-26 15:38 2006-12-2 Show GitHub Exploit DB Packet Storm
252085 7.5 危険 dreamcost - DreamAccount の admin/index.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-6232 2012-06-26 15:38 2006-12-1 Show GitHub Exploit DB Packet Storm
252086 5 警告 codewalkers - Codewalkers ltwCalendar におけるログファイルから正しいパスワードを推測される脆弱性 - CVE-2006-6229 2012-06-26 15:38 2006-12-1 Show GitHub Exploit DB Packet Storm
252087 6.8 警告 codewalkers - Codewalkers ltwCalendar におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-6228 2012-06-26 15:38 2006-12-1 Show GitHub Exploit DB Packet Storm
252088 5.1 警告 Geeklog - GeekLog における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-6225 2012-06-26 15:38 2006-12-1 Show GitHub Exploit DB Packet Storm
252089 4.3 警告 Google - Google Search Appliance および Google Mini におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-6223 2012-06-26 15:38 2006-12-1 Show GitHub Exploit DB Packet Storm
252090 7.5 危険 2X Software - 2X ThinClientServer Enterprise Edition における特権アカウントを生成される脆弱性 - CVE-2006-6221 2012-06-26 15:38 2006-12-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 30, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
245931 5.5 MEDIUM
Local 		linux
netapp 		linux_kernel
element_software_management_node 		The hidma_chan_stats function in drivers/dma/qcom/hidma_dbg.c in the Linux kernel 4.14.90 allows local users to obtain sensitive address information by reading "callback=" lines in a debugfs file. CWE-200
Information Exposure 		CVE-2018-20449 2024-11-21 13:01 2019-04-5 Show GitHub Exploit DB Packet Storm
245932 9.8 CRITICAL
Network 		airsonic_project airsonic XXE issue in Airsonic before 10.1.2 during parse. CWE-611
XXE 		CVE-2018-20222 2024-11-21 13:01 2019-04-5 Show GitHub Exploit DB Packet Storm
245933 8.1 HIGH
Network 		sqlite
apple
opensuse 		sqlite
iphone_os
mac_os_x
watchos
tvos
icloud
itunes
leap 		SQLite before 3.25.3, when the FTS3 extension is enabled, encounters an integer overflow (and resultant buffer overflow) for FTS3 queries in a "merge" operation that occurs after crafted changes to F… CWE-190
 Integer Overflow or Wraparound 		CVE-2018-20506 2024-11-21 13:01 2019-04-4 Show GitHub Exploit DB Packet Storm
245934 7.5 HIGH
Network 		sqlite
apple 		sqlite
iphone_os
watchos
mac_os_x
icloud
itunes 		SQLite 3.25.2, when queries are run on a table with a malformed PRIMARY KEY, allows remote attackers to cause a denial of service (application crash) by leveraging the ability to run arbitrary SQL st… CWE-89
SQL Injection 		CVE-2018-20505 2024-11-21 13:01 2019-04-4 Show GitHub Exploit DB Packet Storm
245935 7.5 HIGH
Adjacent 		opensynergy blue_sdk The L2CAP signaling channel implementation and SDP server implementation in OpenSynergy Blue SDK 3.2 through 6.0 allow remote, unauthenticated attackers to execute arbitrary code or cause a denial of… CWE-20
 Improper Input Validation  		CVE-2018-20378 2024-11-21 13:01 2019-03-30 Show GitHub Exploit DB Packet Storm
245936 8.8 HIGH
Network 		librenms librenms LibreNMS through 1.47 allows SQL injection via the html/ajax_table.php sort[hostname] parameter, exploitable by authenticated users during a search. CWE-89
SQL Injection 		CVE-2018-20678 2024-11-21 13:01 2019-03-29 Show GitHub Exploit DB Packet Storm
245937 7.8 HIGH
Local 		linux
canonical
netapp 		linux_kernel
ubuntu_linux
solidfire
hci_management_node
snapprotect
cn1610_firmware 		An issue where a provided address with access_ok() is not checked was discovered in i915_gem_execbuffer2_ioctl in drivers/gpu/drm/i915/i915_gem_execbuffer.c in the Linux kernel through 4.19.13. A loc… CWE-20
 Improper Input Validation  		CVE-2018-20669 2024-11-21 13:01 2019-03-22 Show GitHub Exploit DB Packet Storm
245938 8.8 HIGH
Network 		car_rental_script_project car_rental_script PHP Scripts Mall Car Rental Script 2.0.8 has Cross-Site Request Forgery (CSRF) via accountedit.php. CWE-352
 Origin Validation Error 		CVE-2018-20648 2024-11-21 13:01 2019-03-22 Show GitHub Exploit DB Packet Storm
245939 6.5 MEDIUM
Network 		car_rental_script_project car_rental_script PHP Scripts Mall Car Rental Script 2.0.8 has directory traversal via a direct request for a listing of an image directory such as an images/ directory. CWE-22
Path Traversal 		CVE-2018-20647 2024-11-21 13:01 2019-03-22 Show GitHub Exploit DB Packet Storm
245940 6.5 MEDIUM
Network 		basic_b2b_script_project basic_b2b_script PHP Scripts Mall Basic B2B Script 2.0.9 has has directory traversal via a direct request for a listing of an image directory such as an uploads/ directory. CWE-22
Path Traversal 		CVE-2018-20646 2024-11-21 13:01 2019-03-22 Show GitHub Exploit DB Packet Storm