Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
255851 6.8 警告 Webfolio CMS - Webfolio CMS におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反
CVE-2012-1498 2012-03-22 17:25 2012-03-19 Show GitHub Exploit DB Packet Storm
255852 4.3 警告 NetMechanica - NetMechanica NetDecision の HTTP Server におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2012-1465 2012-03-22 17:22 2012-03-19 Show GitHub Exploit DB Packet Storm
255853 5 警告 NetMechanica - NetMechanica NetDecision の Dashboard Server におけるインストールパスを取得される脆弱性 CWE-200
情報漏えい
CVE-2012-1464 2012-03-22 17:22 2012-03-19 Show GitHub Exploit DB Packet Storm
255854 6.8 警告 Contao - Contao の main.php におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反
CVE-2012-1297 2012-03-22 17:18 2012-03-19 Show GitHub Exploit DB Packet Storm
255855 4.3 警告 tskynet - Kongreg8 におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2012-1789 2012-03-22 17:16 2012-03-19 Show GitHub Exploit DB Packet Storm
255856 7.5 危険 Dotclear - Dotclear の inc/swf/swfupload.swf における任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2011-5083 2012-03-22 17:15 2012-03-19 Show GitHub Exploit DB Packet Storm
255857 4.3 警告 WonderDesk - WonderDesk SQL の wonderdesk.cgi におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2012-1788 2012-03-22 16:59 2012-03-19 Show GitHub Exploit DB Packet Storm
255858 4.3 警告 s2Member - WordPress 用 s2Member Pro プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2011-5082 2012-03-22 16:55 2012-03-19 Show GitHub Exploit DB Packet Storm
255859 5 警告 Bitweaver - Bitweaver の wiki/rankings.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2010-5086 2012-03-22 16:54 2012-03-19 Show GitHub Exploit DB Packet Storm
255860 4.3 警告 Webglimpse - Webglimpse の wgarcmin.cgi におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2012-1787 2012-03-22 16:48 2012-03-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
345601 - dia dia Multiple buffer overflows in the xfig import code (xfig-import.c) in Dia 0.87 and later before 0.95-pre6 allow user-assisted attackers to have an unknown impact via a crafted xfig file, possibly invo… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2006-1550 2018-10-19 01:33 2006-03-31 Show GitHub Exploit DB Packet Storm
345602 - georges_auberger pajax Eval injection vulnerability in pajax_call_dispatcher.php in PAJAX 0.5.1 and earlier allows remote attackers to execute arbitrary code via the (1) $method and (2) $args parameters. NVD-CWE-Other
CVE-2006-1551 2018-10-19 01:33 2006-04-14 Show GitHub Exploit DB Packet Storm
345603 - tachyon vsns_lemon SQL injection vulnerability in functions/final_functions.php in VSNS Lemon 3.2.0, with magic_quotes_gpc disabled, allows remote attackers to execute arbitrary SQL commands via the id parameter. NVD-CWE-Other
CVE-2006-1553 2018-10-19 01:33 2006-03-31 Show GitHub Exploit DB Packet Storm
345604 - tachyon vsns_lemon Successful exploitation requires that the "magic_quotes_gpc" parameter is disabled. NVD-CWE-Other
CVE-2006-1553 2018-10-19 01:33 2006-03-31 Show GitHub Exploit DB Packet Storm
345605 - tachyon vsns_lemon Cross-site scripting (XSS) vulnerability in VSNS Lemon 3.2.0 allows remote attackers to inject arbitrary web script or HTML via the name parameter while adding a comment. NVD-CWE-Other
CVE-2006-1554 2018-10-19 01:33 2006-03-31 Show GitHub Exploit DB Packet Storm
345606 - tachyon vsns_lemon Successful exploitation requires that the "magic_quotes_gpc" parameter is disabled. NVD-CWE-Other
CVE-2006-1554 2018-10-19 01:33 2006-03-31 Show GitHub Exploit DB Packet Storm
345607 - tachyon vsns_lemon VSNS Lemon 3.2.0 allows remote attackers to bypass authentication and access password-protected articles by setting the vsns[topic_id] cookie to the targeted topic. NVD-CWE-Other
CVE-2006-1555 2018-10-19 01:33 2006-03-31 Show GitHub Exploit DB Packet Storm
345608 - al-caricatier al-caricatier Multiple cross-site scripting (XSS) vulnerabilities in view_caricatier.php in AL-Caricatier 2.5 allow remote attackers to inject arbitrary web script or HTML via the (1) CatName, (2) CaricatierID, or… NVD-CWE-Other
CVE-2006-1556 2018-10-19 01:33 2006-03-31 Show GitHub Exploit DB Packet Storm
345609 - skintech x-changer Multiple SQL injection vulnerabilities in X-Changer 0.2 allow remote attackers to execute arbitrary SQL commands via the (1) from and (2) into parameters in a calculate action, and the (3) id paramet… NVD-CWE-Other
CVE-2006-1557 2018-10-19 01:33 2006-03-31 Show GitHub Exploit DB Packet Storm
345610 - skintech phpnewsmanager Multiple SQL injection vulnerabilities in SkinTech phpNewsManager 1.48 allow remote attackers to execute arbitrary SQL commands via unspecified parameters, possibly (1) id and (2) topicid, in (a) bro… NVD-CWE-Other
CVE-2006-1560 2018-10-19 01:33 2006-03-31 Show GitHub Exploit DB Packet Storm