Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
227411	5	警告	シマンテック	-	Domino Server 用の Symantec Mail Security におけるスパム送信用の踏み台として製品を使用される脆弱性	-	CVE-2006-5545	2012-12-20 18:02	2006-10-19	Show	GitHub Exploit DB Packet Storm

227412	7.5	危険	ueberproject management system	-	UeberProject Management System の login/secure.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5539	2012-12-20 18:02	2006-10-26	Show	GitHub Exploit DB Packet Storm

227413	4.3	警告	zwahlen informatik	-	Zwahlen Online Shop Freeware の index.htm におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2006-5534	2012-12-20 18:02	2006-10-26	Show	GitHub Exploit DB Packet Storm

227414	6.8	警告	XOOPS	-	RMSOFT Gallery System の rmgs/images.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-5532	2012-12-20 18:02	2006-10-26	Show	GitHub Exploit DB Packet Storm

227415	5.1	警告	schoolalumni portal	-	SchoolAlumni Portal の smumdadotcom_ascyb_alumni/mod.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-5529	2012-12-20 18:02	2006-10-26	Show	GitHub Exploit DB Packet Storm

227416	5	警告	schoolalumni portal	-	SchoolAlumni Portal の mod.php におけるディレクトリトラバーサルの脆弱性	-	CVE-2006-5528	2012-12-20 18:02	2006-10-26	Show	GitHub Exploit DB Packet Storm

227417	5.1	警告	PHPNUKE	-	PHP-Nuke の mainfile.php における SQL インジェクション攻撃を実行される脆弱性	-	CVE-2006-5525	2012-12-20 18:02	2006-10-26	Show	GitHub Exploit DB Packet Storm

227418	6.8	警告	phpList	-	phplist の index.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-5524	2012-12-20 18:02	2006-10-26	Show	GitHub Exploit DB Packet Storm

227419	7.5	危険	rhode island secretary of state	-	Rhode Island OMFA における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2006-5517	2012-12-20 18:02	2006-10-26	Show	GitHub Exploit DB Packet Storm

227420	4.3	警告	wikini	-	WikiNi の actions/usersettings.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-5516	2012-12-20 18:02	2006-10-26	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 26, 2026, 4:08 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
212351	-	nvidia	gpu_driver	Unspecified vulnerability in the NVAPI support layer in the NVIDIA GPU graphics driver R340 before 341.92, R352 before 354.35, and R358 before 358.87 on Windows allows local users to obtain sensitive…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2015-8328	2024-11-21 11:38	2015-11-25	Show	GitHub Exploit DB Packet Storm

212352	-	huawei	espace_firmware	Huawei eSpace U2980 unified gateway with software before V100R001C10 and U2990 with software before V200R001C10 allow remote authenticated users to cause a denial of service via crafted signaling pac…	CWE-20 Improper Input Validation	CVE-2015-8229	2024-11-21 11:38	2015-11-25	Show	GitHub Exploit DB Packet Storm

212353	-	huawei	ar_firmware	Directory traversal vulnerability in the SFTP server in Huawei AR 120, 150, 160, 200, 500, 1200, 2200, 3200, and 3600 routers with software before V200R006SPH003 allows remote authenticated users to …	CWE-22 Path Traversal	CVE-2015-8228	2024-11-21 11:38	2015-11-25	Show	GitHub Exploit DB Packet Storm

212354	-	huawei	vp_9660_firmware	The built-in web server in Huawei VP9660 multi-point control unit with software before V200R001C30SPC700 allows remote administrators to obtain sensitive information or cause a denial of service via …	CWE-20 Improper Input Validation	CVE-2015-8227	2024-11-21 11:38	2015-11-25	Show	GitHub Exploit DB Packet Storm

212355	-	apache	cordova	Apache Cordova-Android before 3.7.0 improperly generates random values for BridgeSecret data, which makes it easier for attackers to conduct bridge hijacking attacks by predicting a value.	NVD-CWE-Other	CVE-2015-8320	2024-11-21 11:38	2015-11-23	Show	GitHub Exploit DB Packet Storm

212356	-	arista	eos	Arista EOS before 4.11.12, 4.12 before 4.12.11, 4.13 before 4.13.14M, 4.14 before 4.14.5FX.5, and 4.15 before 4.15.0FX1.1 allows remote attackers to execute arbitrary code as root by leveraging manag…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2015-8236	2024-11-21 11:38	2015-11-19	Show	GitHub Exploit DB Packet Storm

212357	-	tibco	loglogic_unity	The Web Server component in TIBCO LogLogic Unity before 1.1.1 allows remote authenticated users to gain privileges, and consequently obtain sensitive information, via an HTTP request.	CWE-200 Information Exposure	CVE-2015-8090	2024-11-21 11:38	2015-11-19	Show	GitHub Exploit DB Packet Storm

212358	-	mayo_project	mayo	Cross-site scripting (XSS) vulnerability in the MAYO theme 7.x-1.x before 7.x-1.4 and 7.x-2.x before 7.x-2.6 for Drupal allows remote administrators with the "Administer themes" permission to inject …	CWE-79 Cross-site Scripting	CVE-2015-8233	2024-11-21 11:38	2015-11-18	Show	GitHub Exploit DB Packet Storm

212359	-	uc_profile_project	uc_profile	The UC Profile module 6.x-1.x before 6.x-1.3 for Drupal does not properly check access to profiles in certain circumstances, which might allow remote attackers to obtain sensitive information from th…	CWE-200 Information Exposure	CVE-2015-8232	2024-11-21 11:38	2015-11-18	Show	GitHub Exploit DB Packet Storm

212360	-	canonical	ubuntu_linux	The lxd-unix.socket systemd unit file in the Ubuntu lxd package before 0.20-0ubuntu4.1 uses world-readable permissions for /var/lib/lxd/unix.socket, which allows local users to gain privileges via un…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2015-8222	2024-11-21 11:38	2015-11-18	Show	GitHub Exploit DB Packet Storm