NVD Vulnerability Information Top

Show Search Menu

Vendor Name
プロダクト・サービス名
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
In descending order of publication date
In descending order of update date
Number of items displayed

NVD Vulnerability Information Top

You can search the list of vulnerabilities managed by the NVD (National Vulnerability Database).
Since vulnerability information is often updated before JVN (Japan Vulnerability Note), vulnerabilities that are not listed in JVN may be updated.

If there is a vulnerability related to JVN (Japan Vulnerability Note), the information will be displayed on the detail page.

To search by CWE, please refer to the CWE Overview and check the CWE number.

CRITICAL
HIGH
MEDIUM
LOW

Update Date:June 22, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
342901	5.0	MEDIUM	mozilla	firefox mozilla_suite seamonkey thunderbird	Unspecified vulnerability in Mozilla Firefox and Thunderbird 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0 allows remote attackers to cause a denial of …	NVD-CWE-Other	CVE-2006-1738	2018-10-19 01:35	2006-04-15	Show	GitHub Exploit DB Packet Storm

342902	9.3	HIGH	mozilla	firefox mozilla_suite seamonkey thunderbird	The CSS border-rendering code in Mozilla Firefox and Thunderbird 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0 allows remote attackers to cause a denial…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2006-1739	2018-10-19 01:35	2006-04-14	Show	GitHub Exploit DB Packet Storm

342903	9.3	HIGH	mozilla	firefox mozilla_suite seamonkey thunderbird	Fixed in: Firefox 1.5 Firefox 1.0.8 Thunderbird 1.5 Thunderbird 1.0.8 SeaMonkey 1.0 Mozilla Suite 1.7.13	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2006-1739	2018-10-19 01:35	2006-04-14	Show	GitHub Exploit DB Packet Storm

342904	2.6	LOW	mozilla	firefox mozilla_suite seamonkey thunderbird	Mozilla Firefox 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0 allows remote attackers to spoof secure site indicators such as the locked icon by opening…	NVD-CWE-Other	CVE-2006-1740	2018-10-19 01:35	2006-04-14	Show	GitHub Exploit DB Packet Storm

342905	2.6	LOW	mozilla	firefox mozilla_suite seamonkey thunderbird	Fixed in: Firefox 1.5 Firefox 1.0.8 SeaMonkey 1.0 Mozilla Suite 1.7.13	NVD-CWE-Other	CVE-2006-1740	2018-10-19 01:35	2006-04-14	Show	GitHub Exploit DB Packet Storm

342906	4.3	MEDIUM	mozilla canonical	firefox mozilla_suite seamonkey ubuntu_linux	Mozilla Firefox 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0 allows remote attackers to inject arbitrary Javascript into other sites by (1) "using a mo…	CWE-79 Cross-site Scripting	CVE-2006-1741	2018-10-19 01:35	2006-04-14	Show	GitHub Exploit DB Packet Storm

342907	4.3	MEDIUM	mozilla canonical	firefox mozilla_suite seamonkey ubuntu_linux	Fixed in: Firefox 1.5 Firefox 1.0.8 Mozilla Suite 1.7.13 SeaMonkey 1.0	CWE-79 Cross-site Scripting	CVE-2006-1741	2018-10-19 01:35	2006-04-14	Show	GitHub Exploit DB Packet Storm

342908	6.8	MEDIUM	phpmyforum	phpmyforum	Cross-site scripting (XSS) vulnerability in index.php in Christoph Roeder phpMyForum 4.0 allows remote attackers to inject arbitrary web script or HTML via the page parameter.	NVD-CWE-Other	CVE-2006-1713	2018-10-19 01:34	2006-04-12	Show	GitHub Exploit DB Packet Storm

342909	7.5	HIGH	phpmyforum	phpmyforum	CRLF injection vulnerability in index.php in Christoph Roeder phpMyForum 4.0 allows remote attackers to inject HTTP headers via hex-encoded CRLF sequences in the type parameter.	NVD-CWE-Other	CVE-2006-1714	2018-10-19 01:34	2006-04-12	Show	GitHub Exploit DB Packet Storm

342910	5.0	MEDIUM	tugzip	tugzip	Multiple directory traversal vulnerabilities in Christian Kindahl TUGZip 3.4.0.0, 3.3.0.0, and 3.1.0.2 allow user-assisted attackers to create files in arbitrary directories via a .. (dot dot) in an …	NVD-CWE-Other	CVE-2006-1715	2018-10-19 01:34	2006-04-12	Show	GitHub Exploit DB Packet Storm

342911	5.1	MEDIUM	mybulletinboard	mybulletinboard	Cross-site scripting (XSS) vulnerability in inc/functions_post.php in MyBB (aka MyBulletinBoard) 1.10 allows remote attackers to inject arbitrary web script or HTML via a JavaScript event in a BBCode…	NVD-CWE-Other	CVE-2006-1716	2018-10-19 01:34	2006-04-12	Show	GitHub Exploit DB Packet Storm

342912	5.1	MEDIUM	mybulletinboard	mybulletinboard	Successful exploitation requires that unauthenticated users are allowed to post new threads (not the default setting).	NVD-CWE-Other	CVE-2006-1716	2018-10-19 01:34	2006-04-12	Show	GitHub Exploit DB Packet Storm

342913	5.1	MEDIUM	mybulletinboard	mybulletinboard	Cross-site scripting (XSS) vulnerability in newthread.php in MyBB (aka MyBulletinBoard) 1.10, when configured to permit new threads by unregistered users, allows remote attackers to inject arbitrary …	NVD-CWE-Other	CVE-2006-1717	2018-10-19 01:34	2006-04-12	Show	GitHub Exploit DB Packet Storm

342914	5.1	MEDIUM	mybulletinboard	mybulletinboard	Successful exploitation requires that unauthenticated users are allowed to post new threads (not the default setting).	NVD-CWE-Other	CVE-2006-1717	2018-10-19 01:34	2006-04-12	Show	GitHub Exploit DB Packet Storm

342915	5.0	MEDIUM	clever_copy	clever_copy	Magus Perde Clever Copy 3.0 and earlier stores sensitive information under the web root with insufficient access control, which allows remote attackers to view the database username and password via …	NVD-CWE-Other	CVE-2006-1718	2018-10-19 01:34	2006-04-12	Show	GitHub Exploit DB Packet Storm

342916	5.0	MEDIUM	microsoft	ie	Internet Explorer 6 allows remote attackers to cause a denial of service (application crash) via any scrollbar Cascading Style Sheets (CSS) property.	NVD-CWE-Other	CVE-2006-1719	2018-10-19 01:34	2006-04-12	Show	GitHub Exploit DB Packet Storm

342917	4.3	MEDIUM	arabless	saphplesson	Cross-site scripting (XSS) vulnerability in search.php in SaphpLesson 3.0 allows remote attackers to inject arbitrary web script or HTML via the Word parameter. NOTE: it is possible that this issue …	NVD-CWE-Other	CVE-2006-1720	2018-10-19 01:34	2006-04-12	Show	GitHub Exploit DB Packet Storm

342918	2.6	LOW	cyrus	sasl	digestmd5.c in the CMU Cyrus Simple Authentication and Security Layer (SASL) library 2.1.18, and possibly other versions before 2.1.21, allows remote unauthenticated attackers to cause a denial of se…	CWE-20 Improper Input Validation	CVE-2006-1721	2018-10-19 01:34	2006-04-12	Show	GitHub Exploit DB Packet Storm

342919	7.5	HIGH	mozilla	firefox seamonkey thunderbird	Unspecified vulnerability in Firefox and Thunderbird before 1.5.0.2, and SeaMonkey before 1.0.1, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via u…	NVD-CWE-Other	CVE-2006-1723	2018-10-19 01:34	2006-04-14	Show	GitHub Exploit DB Packet Storm

342920	7.5	HIGH	mozilla	firefox seamonkey thunderbird	This vulnerability is addressed in the following product releases: Mozilla, Firefox, 1.5.0.2 Mozilla, Thunderbird, 1.5.0.2 Mozilla, SeaMonkey, 1.0.1	NVD-CWE-Other	CVE-2006-1723	2018-10-19 01:34	2006-04-14	Show	GitHub Exploit DB Packet Storm

342921	7.5	HIGH	mozilla debian	firefox mozilla_suite seamonkey thunderbird debian_linux	Unspecified vulnerability in Firefox and Thunderbird before 1.5.0.2, 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0.1 allows remote attackers to cause a denial of service (…	NVD-CWE-Other	CVE-2006-1724	2018-10-19 01:34	2006-04-14	Show	GitHub Exploit DB Packet Storm

342922	7.5	HIGH	mozilla debian	firefox mozilla_suite seamonkey thunderbird debian_linux	Fixed in: Firefox 1.5.0.2 Thunderbird 1.5.0.2 SeaMonkey 1.0.1	NVD-CWE-Other	CVE-2006-1724	2018-10-19 01:34	2006-04-14	Show	GitHub Exploit DB Packet Storm

342923	2.6	LOW	mozilla	firefox seamonkey	Mozilla Firefox 1.5 before 1.5.0.2 and SeaMonkey before 1.0.1 causes certain windows to become translucent due to an interaction between XUL content windows and the history mechanism, which might all…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2006-1725	2018-10-19 01:34	2006-04-14	Show	GitHub Exploit DB Packet Storm

342924	2.6	LOW	mozilla	firefox seamonkey	Fixed in: Firefox 1.5.0.2 SeaMonkey 1.0.1	CWE-264 Permissions, Privileges, and Access Controls	CVE-2006-1725	2018-10-19 01:34	2006-04-14	Show	GitHub Exploit DB Packet Storm

342925	9.3	HIGH	mozilla	firefox seamonkey thunderbird	Unspecified vulnerability in Firefox and Thunderbird 1.5 before 1.5.0.2, and SeaMonkey before 1.0.1, allows remote attackers to bypass the js_ValueToFunctionObject check and execute arbitrary code vi…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2006-1726	2018-10-19 01:34	2006-04-14	Show	GitHub Exploit DB Packet Storm

342926	9.3	HIGH	mozilla	firefox seamonkey thunderbird	This vulnerability is addressed in the following product releases: Mozilla, Firefox, 1.5.0.2 Mozilla, Thunderbird, 1.5.0.2 Mozilla, SeaMonkey, 1.0.1	CWE-264 Permissions, Privileges, and Access Controls	CVE-2006-1726	2018-10-19 01:34	2006-04-14	Show	GitHub Exploit DB Packet Storm

342927	7.6	HIGH	mozilla canonical	firefox mozilla_suite seamonkey thunderbird ubuntu_linux	Unspecified vulnerability in Mozilla Firefox and Thunderbird 1.x before 1.5.0.2 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0.1 allows remote attackers to gain chrome …	NVD-CWE-noinfo	CVE-2006-1727	2018-10-19 01:34	2006-04-14	Show	GitHub Exploit DB Packet Storm

342928	7.6	HIGH	mozilla canonical	firefox mozilla_suite seamonkey thunderbird ubuntu_linux	Fixed in: Firefox 1.5.0.2 Firefox 1.0.8 Thunderbird 1.5.0.2 Thunderbird 1.0.8 SeaMonkey 1.0.1 Mozilla Suite 1.7.13	NVD-CWE-noinfo	CVE-2006-1727	2018-10-19 01:34	2006-04-14	Show	GitHub Exploit DB Packet Storm

342929	9.3	HIGH	mozilla canonical	firefox mozilla_suite seamonkey thunderbird ubuntu_linux	Unspecified vulnerability in Mozilla Firefox and Thunderbird 1.x before 1.5.0.2 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0.1 allows remote attackers to execute arbi…	NVD-CWE-noinfo	CVE-2006-1728	2018-10-19 01:34	2006-04-14	Show	GitHub Exploit DB Packet Storm

342930	9.3	HIGH	mozilla canonical	firefox mozilla_suite seamonkey thunderbird ubuntu_linux	Fixed in: Firefox 1.5.0.2 Firefox 1.0.8 Thunderbird 1.5.0.2 Thunderbird 1.0.8 SeaMonkey 1.0.1 Mozilla Suite 1.7.13	NVD-CWE-noinfo	CVE-2006-1728	2018-10-19 01:34	2006-04-14	Show	GitHub Exploit DB Packet Storm

342931	4.3	MEDIUM	mozilla canonical	firefox mozilla_suite seamonkey ubuntu_linux	Mozilla Firefox 1.x before 1.5.0.2 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0.1 allows remote attackers to read arbitrary files by (1) inserting the target filename…	CWE-20 Improper Input Validation	CVE-2006-1729	2018-10-19 01:34	2006-04-14	Show	GitHub Exploit DB Packet Storm

342932	4.3	MEDIUM	mozilla canonical	firefox mozilla_suite seamonkey ubuntu_linux	Fixed in: Firefox 1.5.0.2 Firefox 1.0.8 SeaMonkey 1.0.1 Mozilla Suite 1.7.13	CWE-20 Improper Input Validation	CVE-2006-1729	2018-10-19 01:34	2006-04-14	Show	GitHub Exploit DB Packet Storm

342933	9.3	HIGH	mozilla	firefox mozilla_suite seamonkey thunderbird	Integer overflow in Mozilla Firefox and Thunderbird 1.x before 1.5.0.2 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0.1 allows remote attackers to execute arbitrary cod…	CWE-189 Numeric Errors	CVE-2006-1730	2018-10-19 01:34	2006-04-14	Show	GitHub Exploit DB Packet Storm

342934	9.3	HIGH	mozilla	firefox mozilla_suite seamonkey thunderbird	Fixed in: Firefox 1.5.0.2 Firefox 1.0.8 Thunderbird 1.5.0.2 Thunderbird 1.0.8 SeaMonkey 1.0.1 Mozilla Suite 1.7.13	CWE-189 Numeric Errors	CVE-2006-1730	2018-10-19 01:34	2006-04-14	Show	GitHub Exploit DB Packet Storm

342935	4.3	MEDIUM	mozilla	firefox mozilla_suite seamonkey thunderbird	Mozilla Firefox and Thunderbird 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0 returns the Object class prototype instead of the global window object whe…	CWE-79 Cross-site Scripting	CVE-2006-1731	2018-10-19 01:34	2006-04-14	Show	GitHub Exploit DB Packet Storm

342936	4.3	MEDIUM	mozilla	firefox mozilla_suite seamonkey thunderbird	Fixed in: Firefox 1.5 Firefox 1.0.8 Thunderbird 1.5 Thunderbird 1.0.8 SeaMonkey 1.0 Mozilla Suite 1.7.13	CWE-79 Cross-site Scripting	CVE-2006-1731	2018-10-19 01:34	2006-04-14	Show	GitHub Exploit DB Packet Storm

342937	4.3	MEDIUM	mozilla	firefox seamonkey thunderbird	Unspecified vulnerability in Mozilla Firefox and Thunderbird 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0 allows remote attackers to bypass same-origin…	NVD-CWE-Other	CVE-2006-1732	2018-10-19 01:34	2006-04-14	Show	GitHub Exploit DB Packet Storm

342938	4.3	MEDIUM	mozilla	firefox seamonkey thunderbird	This vulnerability also affects Mozilla Suite before 1.7.13, and SeaMonkey before 1.0 This vulnerability is addressed in the following product releases: Mozilla, Firefox, 1.5 Mozilla, Firefox, 1.…	NVD-CWE-Other	CVE-2006-1732	2018-10-19 01:34	2006-04-14	Show	GitHub Exploit DB Packet Storm

342939	2.1	LOW	x.org	x11r6	Buffer overflow in the X render (Xrender) extension in X.org X server 6.8.0 up to allows attackers to cause a denial of service (crash), as demonstrated by the (1) XRenderCompositeTriStrip and (2) XR…	NVD-CWE-Other	CVE-2006-1526	2018-10-19 01:33	2006-05-3	Show	GitHub Exploit DB Packet Storm

342940	7.5	HIGH	mozilla	firefox seamonkey thunderbird	Unspecified vulnerability in Firefox and Thunderbird before 1.5.0.2, and SeaMonkey before 1.0.1, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via u…	NVD-CWE-Other	CVE-2006-1529	2018-10-19 01:33	2006-04-14	Show	GitHub Exploit DB Packet Storm

342941	7.5	HIGH	mozilla	firefox seamonkey thunderbird	This vulnerability is addressed in the following product releases: Mozilla, Firefox, 1.5.0.2 Mozilla, Thunderbird, 1.5.0.2 Mozilla, SeaMonkey, 1.0.1	NVD-CWE-Other	CVE-2006-1529	2018-10-19 01:33	2006-04-14	Show	GitHub Exploit DB Packet Storm

342942	7.5	HIGH	mozilla debian	firefox seamonkey thunderbird debian_linux	Unspecified vulnerability in Firefox and Thunderbird before 1.5.0.2, and SeaMonkey before 1.0.1, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via u…	NVD-CWE-Other	CVE-2006-1530	2018-10-19 01:33	2006-04-14	Show	GitHub Exploit DB Packet Storm

342943	7.5	HIGH	mozilla debian	firefox seamonkey thunderbird debian_linux	This vulnerability is addresses in the following product releases: Mozilla, Firefox, 1.5.0.2 Mozilla, Thunderbird, 1.5.0.2 Mozilla, SeaMonkey, 1.0.1	NVD-CWE-Other	CVE-2006-1530	2018-10-19 01:33	2006-04-14	Show	GitHub Exploit DB Packet Storm

342944	7.5	HIGH	mozilla debian	firefox seamonkey thunderbird debian_linux	Unspecified vulnerability in Firefox and Thunderbird before 1.5.0.2, and SeaMonkey before 1.0.1, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via u…	NVD-CWE-Other	CVE-2006-1531	2018-10-19 01:33	2006-04-14	Show	GitHub Exploit DB Packet Storm

342945	7.5	HIGH	sourceworkshop	newsletter	SQL injection vulnerability in newsletter.php in Sourceworkshop newsletter 1.0 allows remote attackers to execute arbitrary SQL commands via the newsletteremail parameter.	NVD-CWE-Other	CVE-2006-1533	2018-10-19 01:33	2006-03-30	Show	GitHub Exploit DB Packet Storm

342946	7.5	HIGH	null_news	null_news	Multiple SQL injection vulnerabilities in Null news allow remote attackers to execute arbitrary SQL commands via (1) the user_email parameter in (a) lostpass.php, and the (2) user_email and (3) user_…	NVD-CWE-Other	CVE-2006-1534	2018-10-19 01:33	2006-03-30	Show	GitHub Exploit DB Packet Storm

342947	7.5	HIGH	null_news	null_news	Succesful exploitation of this vulnerability requires the "magic_quotes_gpc" parameter to be disabled.	NVD-CWE-Other	CVE-2006-1534	2018-10-19 01:33	2006-03-30	Show	GitHub Exploit DB Packet Storm

342948	4.3	MEDIUM	phoetux.net	phxcontacts	Cross-site scripting (XSS) vulnerability in login.php in Phoetux.net PhxContacts 0.93.1 beta and earlier allows remote attackers to inject arbitrary web script or HTML via the m parameter.	NVD-CWE-Other	CVE-2006-1535	2018-10-19 01:33	2006-03-30	Show	GitHub Exploit DB Packet Storm

342949	7.5	HIGH	phoetux.net	phxcontacts	Multiple SQL injection vulnerabilities in Phoetux.net PhxContacts 0.93.1 beta and earlier allow remote attackers to execute arbitrary SQL commands via the (1) motclef and (2) nbr_line_view parameters…	NVD-CWE-Other	CVE-2006-1536	2018-10-19 01:33	2006-03-30	Show	GitHub Exploit DB Packet Storm

342950	5.0	MEDIUM	webcalendar	webcalendar	Craig Knudsen WebCalendar 1.1.0-CVS allows remote attackers to obtain sensitive information via a direct request to (1) includes/index.php, (2) tests/add_duration_test.php, (3) tests/all_tests.php, (…	NVD-CWE-Other	CVE-2006-1537	2018-10-19 01:33	2006-03-30	Show	GitHub Exploit DB Packet Storm