Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
201471 5 警告 david bennett - David Bennett PHPp における重要な情報を取得される脆弱性 - CVE-2006-4880 2012-06-26 15:37 2006-09-19 Show GitHub Exploit DB Packet Storm
201472 7.5 危険 david bennett - David Bennett PHPp の profile.php における SQL インジェクションの脆弱性 - CVE-2006-4879 2012-06-26 15:37 2006-09-19 Show GitHub Exploit DB Packet Storm
201473 5 警告 david bennett - David Bennett PHPp の footer.php におけるディレクトリトラバーサルの脆弱性 - CVE-2006-4878 2012-06-26 15:37 2006-09-19 Show GitHub Exploit DB Packet Storm
201474 5 警告 david bennett - David Bennett PHPp における任意のプログラム変数を上書きされる脆弱性 - CVE-2006-4877 2012-06-26 15:37 2006-09-19 Show GitHub Exploit DB Packet Storm
201475 7.5 危険 aewebworks - AEDating における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4870 2012-06-26 15:37 2006-09-19 Show GitHub Exploit DB Packet Storm
201476 7.5 危険 gnuturk - GNUTurk 2G の mods.php における SQL インジェクションの脆弱性 - CVE-2006-4867 2012-06-26 15:37 2006-09-19 Show GitHub Exploit DB Packet Storm
201477 4.6 警告 アップル - Apple OS X の kextload におけるバッファオーバーフローの脆弱性 - CVE-2006-4866 2012-06-26 15:37 2006-09-19 Show GitHub Exploit DB Packet Storm
201478 7.5 危険 all enthusiast inc - All Enthusiast ReviewPost の index.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4864 2012-06-26 15:37 2006-09-19 Show GitHub Exploit DB Packet Storm
201479 7.5 危険 easypagecms - easypage の default.aspx における SQL インジェクションの脆弱性 - CVE-2006-4862 2012-06-26 15:37 2006-09-19 Show GitHub Exploit DB Packet Storm
201480 7.5 危険 clicktech - ClickTech ClickBlog の default.asp における SQL インジェクションの脆弱性 - CVE-2006-4857 2012-06-26 15:37 2006-09-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 4, 2025, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
267301 - nikolay_avrionov explorer_xp Directory traversal vulnerability in dir.php in Explorer XP allows remote attackers to read arbitrary files via the chemin parameter. NVD-CWE-Other
CVE-2006-1492 2017-07-20 10:30 2006-03-30 Show GitHub Exploit DB Packet Storm
267302 - nikolay_avrionov explorer_xp Cross-site scripting (XSS) vulnerability in dir.php in Explorer XP allows remote attackers to inject arbitrary web script or HTML via the chemin parameter. NOTE: it is possible that this issue is re… NVD-CWE-Other
CVE-2006-1493 2017-07-20 10:30 2006-03-30 Show GitHub Exploit DB Packet Storm
267303 - vihor vihordesign Multiple cross-site scripting (XSS) vulnerabilities in index.php in ViHor Design allow remote attackers to inject arbitrary web script or HTML via (1) a remote URL in the page parameter, which is pro… NVD-CWE-Other
CVE-2006-1496 2017-07-20 10:30 2006-03-30 Show GitHub Exploit DB Packet Storm
267304 - mediawiki mediawiki Cross-site scripting (XSS) vulnerability in MediaWiki before 1.5.8 and 1.4.15 allows remote attackers to inject arbitrary web script or HTML via crafted encoded links. NVD-CWE-Other
CVE-2006-1498 2017-07-20 10:30 2006-03-30 Show GitHub Exploit DB Packet Storm
267305 - tilde tilde_cms SQL injection vulnerability in index.php in Tilde CMS 3.0 allows remote attackers to execute arbitrary SQL commands via the id parameter. CWE-89
SQL Injection 		CVE-2006-1500 2017-07-20 10:30 2006-03-30 Show GitHub Exploit DB Packet Storm
267306 - oneorzero oneorzero SQL injection vulnerability in index.php in OneOrZero 1.6.3.0 allows remote attackers to execute arbitrary SQL commands via the id parameter, possibly in the kans action. CWE-89
SQL Injection 		CVE-2006-1501 2017-07-20 10:30 2006-03-30 Show GitHub Exploit DB Packet Storm
267307 - mh_software connect_daily Multiple cross-site scripting (XSS) vulnerabilities in MH Software Connect Daily Web Calendar Software 3.2.9 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) cale… NVD-CWE-Other
CVE-2006-1508 2017-07-20 10:30 2006-03-30 Show GitHub Exploit DB Packet Storm
267308 - microsoft .net_framework Buffer overflow in calloc.c in the Microsoft Windows XP SP2 ntdll.dll system library, when used by the ILDASM disassembler in the Microsoft .NET 1.0 and 1.1 SDK, might allow user-assisted attackers t… NVD-CWE-Other
CVE-2006-1510 2017-07-20 10:30 2006-03-30 Show GitHub Exploit DB Packet Storm
267309 - microsoft .net_framework Succesful exploitation can only occur when ntdll.dll system library is used by the ILDASM disassembler in the Microsoft .NET 1.0 and 1.1 SDK packages. NVD-CWE-Other
CVE-2006-1510 2017-07-20 10:30 2006-03-30 Show GitHub Exploit DB Packet Storm
267310 - microsoft .net_framework Buffer overflow in the ILASM assembler in the Microsoft .NET 1.0 and 1.1 Framework might allow user-assisted attackers to execute arbitrary code via a .il file that calls a function with a long name. NVD-CWE-Other
CVE-2006-1511 2017-07-20 10:30 2006-03-30 Show GitHub Exploit DB Packet Storm