Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
252611 7.5 危険 chumpsoft - phpQ の inc/ifunctions.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4966 2012-06-26 15:37 2006-09-24 Show GitHub Exploit DB Packet Storm
252612 6.4 警告 Exponent CMS project - Exponent CMS の index.php におけるディレクトリトラバーサルの脆弱性 - CVE-2006-4963 2012-06-26 15:37 2006-09-23 Show GitHub Exploit DB Packet Storm
252613 6.4 警告 blue dragon - Php Blue Dragon の pbd_engine.php におけるディレクトリトラバーサルの脆弱性 - CVE-2006-4962 2012-06-26 15:37 2006-09-23 Show GitHub Exploit DB Packet Storm
252614 7.5 危険 blue dragon - Php Blue Dragon の GetModuleConfig 関数における SQL インジェクションの脆弱性 - CVE-2006-4961 2012-06-26 15:37 2006-09-23 Show GitHub Exploit DB Packet Storm
252615 6.8 警告 blue dragon - Php Blue Dragon の index.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-4960 2012-06-26 15:37 2006-09-23 Show GitHub Exploit DB Packet Storm
252616 4.3 警告 Drupal - Drupal の Site Profile Directory におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-4949 2012-06-26 15:37 2006-09-20 Show GitHub Exploit DB Packet Storm
252617 6.8 警告 Drupal - Drupal の Search Keywords モジュールにおけるクロスサイトスクリプティングの脆弱性 - CVE-2006-4947 2012-06-26 15:37 2006-09-20 Show GitHub Exploit DB Packet Storm
252618 5.1 警告 cmsdevelopment - BCWB の include/startup.inc.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4946 2012-06-26 15:37 2006-09-22 Show GitHub Exploit DB Packet Storm
252619 5.1 警告 cardway - Cardway DigitalWebShop における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4945 2012-06-26 15:37 2006-09-22 Show GitHub Exploit DB Packet Storm
252620 7.5 危険 boesch-it - ProgSys の includes/pear/Net/DNS/RR.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4944 2012-06-26 15:37 2006-09-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
246241 8.8 HIGH
Network
ok-file-formats_project ok-file-formats ok-file-formats through 2018-10-16 has a heap-based buffer overflow in the ok_wav_decode_ms_adpcm_data function in ok_wav.c. CWE-787
 Out-of-bounds Write
CVE-2018-20616 2024-11-21 13:01 2018-12-31 Show GitHub Exploit DB Packet Storm
246242 7.5 HIGH
Network
cim_project cim public\install\install.php in CIM 0.9.3 allows remote attackers to reload the product via the public/install/#/step3 URI. CWE-20
 Improper Input Validation 
CVE-2018-20614 2024-11-21 13:01 2018-12-31 Show GitHub Exploit DB Packet Storm
246243 8.8 HIGH
Network
temmoku_project temmoku TEMMOKU T1.09 Beta allows admin/user/add CSRF. CWE-352
 Origin Validation Error
CVE-2018-20613 2024-11-21 13:01 2018-12-31 Show GitHub Exploit DB Packet Storm
246244 8.8 HIGH
Network
asthis universal_website_asthis UWA 2.3.11 allows index.php?g=admin&c=admin&a=add_admin_do CSRF. CWE-352
 Origin Validation Error
CVE-2018-20612 2024-11-21 13:01 2018-12-31 Show GitHub Exploit DB Packet Storm
246245 6.1 MEDIUM
Network
txjia imcat imcat 4.4 allow XSS via a crafted cookie to the root/tools/adbug/binfo.php?cookie URI. CWE-79
Cross-site Scripting
CVE-2018-20611 2024-11-21 13:01 2018-12-31 Show GitHub Exploit DB Packet Storm
246246 4.9 MEDIUM
Network
txjia imcat imcat 4.4 allows directory traversal via the root/run/adm.php efile parameter. CWE-22
Path Traversal
CVE-2018-20610 2024-11-21 13:01 2018-12-31 Show GitHub Exploit DB Packet Storm
246247 5.3 MEDIUM
Network
txjia imcat imcat 4.4 allows remote attackers to obtain potentially sensitive configuration information via the root/tools/adbug/check.php URI. CWE-200
Information Exposure
CVE-2018-20609 2024-11-21 13:01 2018-12-31 Show GitHub Exploit DB Packet Storm
246248 7.5 HIGH
Network
txjia imcat imcat 4.4 allows remote attackers to read phpinfo output via the root/tools/adbug/binfo.php?phpinfo1 URI. CWE-200
Information Exposure
CVE-2018-20608 2024-11-21 13:01 2018-12-31 Show GitHub Exploit DB Packet Storm
246249 5.3 MEDIUM
Network
txjia imcat imcat 4.4 allows remote attackers to obtain potentially sensitive debugging information via the root/tools/adbug/binfo.php URI. CWE-200
Information Exposure
CVE-2018-20607 2024-11-21 13:01 2018-12-31 Show GitHub Exploit DB Packet Storm
246250 7.5 HIGH
Network
txjia imcat imcat 4.4 allows full path disclosure via a dev.php?tools-ipaddr&api=Pcoln&uip= URI. CWE-200
Information Exposure
CVE-2018-20606 2024-11-21 13:01 2018-12-31 Show GitHub Exploit DB Packet Storm