Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
193971	4.3	警告	mkportal	-	MKPortal の index.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-4665	2012-09-25 15:35	2006-09-8	Show	GitHub Exploit DB Packet Storm

193972	4.3	警告	luke hutteman	-	Luke Hutteman SharpReader におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-4761	2012-09-25 15:35	2006-09-13	Show	GitHub Exploit DB Packet Storm

193973	5	警告	laurentiu matei	-	Laurentiu Matei XHP CMS におけるインストールパスを取得される脆弱性	-	CVE-2006-4752	2012-09-25 15:35	2006-09-13	Show	GitHub Exploit DB Packet Storm

193974	6.8	警告	laurentiu matei	-	Laurentiu Matei XHP CMS の index.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-4751	2012-09-25 15:35	2006-09-13	Show	GitHub Exploit DB Packet Storm

193975	5.1	警告	openi-cms group	-	OPENi-CMS の openi-admin/base/fileloader.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4750	2012-09-25 15:35	2006-09-13	Show	GitHub Exploit DB Packet Storm

193976	4.3	警告	idevSpot	-	IdevSpot TextAds におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-4747	2012-09-25 15:35	2006-09-13	Show	GitHub Exploit DB Packet Storm

193977	4.3	警告	idevSpot	-	IDevSpot PhpLinkExchange の user_add.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-4742	2012-09-25 15:35	2006-09-13	Show	GitHub Exploit DB Packet Storm

193978	7.5	危険	idevSpot	-	IDevSpot PhpLinkExchange における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4741	2012-09-25 15:35	2006-09-13	Show	GitHub Exploit DB Packet Storm

193979	5	警告	jetbox	-	Jetbox CMS における重要な情報を取得される脆弱性	-	CVE-2006-4740	2012-09-25 15:35	2006-09-13	Show	GitHub Exploit DB Packet Storm

193980	2.6	注意	jetbox	-	Jetbox CMS におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-4739	2012-09-25 15:35	2006-09-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:Feb. 9, 2025, 4:07 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
267521	-	pmwiki	pmwiki	Cross-site scripting (XSS) vulnerability in (1) uploads.php and (2) "url links" in PmWiki 2.1.6 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified parameters.	NVD-CWE-Other	CVE-2006-2840	2017-07-20 10:31	2006-06-7	Show	GitHub Exploit DB Packet Storm

267522	-	pmwiki	pmwiki	This vulnerability is addressed in the following product release: PmWiki, PmWiki, 2.1.7	NVD-CWE-Other	CVE-2006-2840	2017-07-20 10:31	2006-06-7	Show	GitHub Exploit DB Packet Storm

267523	-	php_labware	labwiki	Cross-site scripting (XSS) vulnerability in recentchanges.php in PHP Labware LabWiki 1.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the help parameter.	NVD-CWE-Other	CVE-2006-2850	2017-07-20 10:31	2006-06-7	Show	GitHub Exploit DB Packet Storm

267524	-	dotproject	dotproject	Cross-site scripting (XSS) vulnerability in index.php in dotProject 2.0.2 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified parameters, which are not properly…	NVD-CWE-Other	CVE-2006-2851	2017-07-20 10:31	2006-06-7	Show	GitHub Exploit DB Packet Storm

267525	-	abarcar	abarcar_realty_portal	SQL injection vulnerability in content.php in abarcar Realty Portal 5.1.5 allows remote attackers to execute arbitrary SQL commands via the cat parameter.	NVD-CWE-Other	CVE-2006-2853	2017-07-20 10:31	2006-06-7	Show	GitHub Exploit DB Packet Storm

267526	-	ibwd	ibwd_guestbook	SQL injection vulnerability in index.php in iBWd Guestbook 1.0 allows remote attackers to execute arbitrary SQL commands via the offset parameter.	NVD-CWE-Other	CVE-2006-2854	2017-07-20 10:31	2006-06-7	Show	GitHub Exploit DB Packet Storm

267527	-	xuebook	xuebook	SQL injection vulnerability in index.php in xueBook 1.0 allows remote attackers to execute arbitrary SQL commands via the start parameter.	NVD-CWE-Other	CVE-2006-2855	2017-07-20 10:31	2006-06-7	Show	GitHub Exploit DB Packet Storm

267528	-	activestate	activeperl	ActiveState ActivePerl 5.8.8.817 for Windows configures the site/lib directory with "Users" group permissions for changing files, which allows local users to gain privileges by creating a malicious s…	NVD-CWE-Other	CVE-2006-2856	2017-07-20 10:31	2006-06-7	Show	GitHub Exploit DB Packet Storm

267529	-	particle_soft	particle_wiki	SQL injection vulnerability in index.php in Particle Wiki 1.0.2 and earlier allows remote attackers to execute arbitrary SQL commands via the version parameter.	NVD-CWE-Other	CVE-2006-2861	2017-07-20 10:31	2006-06-7	Show	GitHub Exploit DB Packet Storm

267530	-	alwil	avast_antivirus	Unspecified vulnerability in the CHM unpacker in avast! before 4.7.844 has unknown impact and remote attack vectors.	NVD-CWE-Other	CVE-2006-2869	2017-07-20 10:31	2006-06-7	Show	GitHub Exploit DB Packet Storm