Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 31, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
225961 4.3 警告 Smarty Pants Plugins - WordPress 用 WP FuneralPress プラグインの user/obits.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-3529 2013-05-14 15:46 2013-05-10 Show GitHub Exploit DB Packet Storm
225962 7.5 危険 Vanilla Forums - Vanilla Forums の更新チェックにおける脆弱性 CWE-noinfo
情報不足 		CVE-2013-3528 2013-05-14 15:44 2013-04-5 Show GitHub Exploit DB Packet Storm
225963 7.5 危険 Vanilla Forums - Vanilla Forums における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-3527 2013-05-14 15:37 2013-04-5 Show GitHub Exploit DB Packet Storm
225964 4.3 警告 georgemathewk - WordPress 用 Traffic Analyzer プラグインの js/ta_loaded.js.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-3526 2013-05-14 15:37 2013-05-10 Show GitHub Exploit DB Packet Storm
225965 7.5 危険 David Clark - phpVMS 用 Pop Up News モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-3524 2013-05-14 15:36 2013-05-10 Show GitHub Exploit DB Packet Storm
225966 7.5 危険 greg jennings - This HTML Is Simple における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-3523 2013-05-14 15:35 2013-04-1 Show GitHub Exploit DB Packet Storm
225967 6.5 警告 vBulletin Solutions, Inc. - vBulletin の index.php/ajax/api/reputation/vote における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-3522 2013-05-14 15:34 2013-05-10 Show GitHub Exploit DB Packet Storm
225968 4.6 警告 シスコシステムズ - Cisco Aggregation Services Router Route Processor 上で稼働する Cisco IOS におけるサービス運用妨害 (DoS) 状態にされる脆弱性 CWE-399
リソース管理の問題 		CVE-2013-1136 2013-05-14 14:52 2013-05-13 Show GitHub Exploit DB Packet Storm
225969 10 危険 phpvms.net - phpVMS の admin/action.php における脆弱性 CWE-noinfo
情報不足 		CVE-2012-6552 2013-05-14 12:00 2012-08-24 Show GitHub Exploit DB Packet Storm
225970 9.3 危険 サムスン - MarkAny ContentSAFER MASetupCaller の ActiveX コントロールに脆弱性 CWE-94
コード・インジェクション 		CVE-2012-2990 2013-05-13 17:59 2012-08-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
346421 - oracle database_server The DIRECTORY objects in Oracle 8i through Oracle 10g contain the location of a specific operating system directory, which allows users with read privileges to a DIRECTORY object to obtain sensitive … NVD-CWE-Other
CVE-2005-0298 2017-07-11 10:32 2005-05-2 Show GitHub Exploit DB Packet Storm
346422 - gforge gforge Directory traversal vulnerability in GForge 3.3 and earlier allows remote attackers to list arbitrary directories via a .. (dot dot) in the (1) dir parameter to controller.php or (2) dir_name paramet… NVD-CWE-Other
CVE-2005-0299 2017-07-11 10:32 2005-05-2 Show GitHub Exploit DB Packet Storm
346423 - jsboard jsboard Directory traversal vulnerability in session.php in JSBoard 2.0.9 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the table parameter. NVD-CWE-Other
CVE-2005-0300 2017-07-11 10:32 2005-01-20 Show GitHub Exploit DB Packet Storm
346424 - comersus_open_technologies comersus_backoffice_lite comersus_backoffice_install10.asp in BackOffice Lite 6.0 and 6.01 allows remote attackers to bypass authentication and gain privileges via a direct request to the program. NVD-CWE-Other
CVE-2005-0301 2017-07-11 10:32 2005-05-2 Show GitHub Exploit DB Packet Storm
346425 - comersus_open_technologies comersus_backoffice_lite SQL injection vulnerability in default.asp in BackOffice Lite 6.0 and 6.01 allows remote attackers to execute arbitrary SQL commands via the referer field in the HTTP header. NVD-CWE-Other
CVE-2005-0302 2017-07-11 10:32 2005-05-2 Show GitHub Exploit DB Packet Storm
346426 - comersus_open_technologies comersus_backoffice_lite Multiple cross-site scripting (XSS) vulnerabilities in (1) comersus_supportError.asp or (2) comersus_backofficelite_supportError.asp in BackOffice Lite 6.0 and 6.01 allow remote attackers to inject a… NVD-CWE-Other
CVE-2005-0303 2017-07-11 10:32 2005-05-2 Show GitHub Exploit DB Packet Storm
346427 - divx divx_player Directory traversal vulnerability in DivX Player 2.6 and earlier allows remote attackers to overwrite arbitrary files via a .. (dot dot) in a filename in a ZIP file for a skin. NVD-CWE-Other
CVE-2005-0304 2017-07-11 10:32 2005-05-2 Show GitHub Exploit DB Packet Storm
346428 - siteman siteman CRLF injection vulnerability in users.php in Siteman 1.1.10 and earlier allows remote attackers to add arbitrary users and gain privileges via the line parameter in a docreate operation. NVD-CWE-Other
CVE-2005-0305 2017-07-11 10:32 2005-05-2 Show GitHub Exploit DB Packet Storm
346429 - mercuryboard mercuryboard MercuryBoard 1.1.1 allows remote attackers to gain sensitive information via an HTTP request with the n parameter set to 0, which causes a divide-by-zero error and reveals the path in the resulting e… NVD-CWE-Other
CVE-2005-0306 2017-07-11 10:32 2005-01-25 Show GitHub Exploit DB Packet Storm
346430 - mercuryboard mercuryboard Multiple cross-site scripting (XSS) vulnerabilities in index.php in MercuryBoard 1.1.1 allow remote attackers to inject arbitrary web script or HTML via the (1) s, (2) l, (3) a, (4) t, (5) to, or (6)… NVD-CWE-Other
CVE-2005-0307 2017-07-11 10:32 2005-01-25 Show GitHub Exploit DB Packet Storm