Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
227571	5	警告	siteatschool	-	S@S の starnet/editors/htmlarea/popups/images.php における実行可能な拡張子を伴う任意のファイルをアップロードされる脆弱性	-	CVE-2006-4922	2012-12-20 18:02	2006-09-20	Show	GitHub Exploit DB Packet Storm

227572	7.5	危険	siteatschool	-	S@S における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4921	2012-12-20 18:02	2006-09-20	Show	GitHub Exploit DB Packet Storm

227573	7.5	危険	siteatschool	-	S@S における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4920	2012-12-20 18:02	2006-09-20	Show	GitHub Exploit DB Packet Storm

227574	2.6	注意	siteatschool	-	S@S の starnet/editors/htmlarea/popups/images.php におけるディレクトリトラバーサルの脆弱性	-	CVE-2006-4919	2012-12-20 18:02	2006-09-20	Show	GitHub Exploit DB Packet Storm

227575	7.5	危険	simple discussion board	-	Simple Discussion Board における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4918	2012-12-20 18:02	2006-09-20	Show	GitHub Exploit DB Packet Storm

227576	4.3	警告	pt news	-	PT News の search.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-4917	2012-12-20 18:02	2006-09-20	Show	GitHub Exploit DB Packet Storm

227577	7.5	危険	Qualiteam Software Limited	-	Qualiteam X-Cart の cmpi.php における任意のプログラム変数を上書きされる脆弱性	-	CVE-2006-4904	2012-12-20 18:02	2006-09-20	Show	GitHub Exploit DB Packet Storm

227578	10	危険	シマンテック	-	Symantec Veritas NetBackup の NetBackup bpcd デーモンにおける任意のコマンドを実行される脆弱性	-	CVE-2006-4902	2012-12-20 18:02	2006-12-13	Show	GitHub Exploit DB Packet Storm

227579	7.5	危険	phpbb xs	-	phpBB XS の bb_usage_stats/includes/bb_usage_stats.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4893	2012-12-20 18:02	2006-09-19	Show	GitHub Exploit DB Packet Storm

227580	7.5	危険	techno dreams	-	Techno Dreams FAQ Manager Package の faqview.asp における SQL インジェクションの脆弱性	-	CVE-2006-4892	2012-12-20 18:02	2006-09-19	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 24, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
212431	-		splunk	splunk	Cross-site scripting (XSS) vulnerability in Splunk Web in Splunk Enterprise 6.2.x before 6.2.4, 6.1.x before 6.1.8, 6.0.x before 6.0.9, and 5.0.x before 5.0.13 and Splunk Light 6.2.x before 6.2.4 all…	CWE-79 Cross-site Scripting	CVE-2015-6515	2024-11-21 11:35	2015-08-19	Show	GitHub Exploit DB Packet Storm

212432	-		splunk	splunk	Cross-site scripting (XSS) vulnerability in the Dashboard in Splunk Enterprise 6.2.x before 6.2.4 and Splunk Light 6.2.x before 6.2.4 allows remote authenticated users to inject arbitrary web script …	CWE-79 Cross-site Scripting	CVE-2015-6514	2024-11-21 11:35	2015-08-19	Show	GitHub Exploit DB Packet Storm

212433	-		j2store	j2store	Multiple SQL injection vulnerabilities in the J2Store (com_j2store) extension before 3.1.7 for Joomla! allow remote attackers to execute arbitrary SQL commands via the (1) sortby or (2) manufacturer_…	CWE-89 SQL Injection	CVE-2015-6513	2024-11-21 11:35	2015-08-19	Show	GitHub Exploit DB Packet Storm

212434	-		codelogic	freichat	SQL injection vulnerability in the get_messages function in server/plugins/chatroom/chatroom.php in FreiChat 9.6 allows remote attackers to execute arbitrary SQL commands via the time parameter to se…	CWE-89 SQL Injection	CVE-2015-6512	2024-11-21 11:35	2015-08-19	Show	GitHub Exploit DB Packet Storm

212435	-		netgate	pfsense	Cross-site scripting (XSS) vulnerability in pfSense before 2.2.3 allows remote attackers to inject arbitrary web script or HTML via the server[] parameter to services_ntpd.php.	CWE-79 Cross-site Scripting	CVE-2015-6511	2024-11-21 11:35	2015-08-19	Show	GitHub Exploit DB Packet Storm

212436	-		netgate	pfsense	Cross-site scripting (XSS) vulnerability in pfSense before 2.2.3 allows remote attackers to inject arbitrary web script or HTML via the descr parameter in a "new" action to system_authservers.php.	CWE-79 Cross-site Scripting	CVE-2015-6508	2024-11-21 11:35	2015-08-19	Show	GitHub Exploit DB Packet Storm

212437	-		netgate	pfsense	Multiple cross-site scripting (XSS) vulnerabilities in pfSense before 2.2.3 allow remote attackers to inject arbitrary web script or HTML via the (1) srctrack, (2) use_mfs_tmp_size, or (3) use_mfs_va…	CWE-79 Cross-site Scripting	CVE-2015-6510	2024-11-21 11:35	2015-08-19	Show	GitHub Exploit DB Packet Storm

212438	-		netgate	pfsense	Multiple cross-site scripting (XSS) vulnerabilities in pfSense before 2.2.3 allow remote attackers to inject arbitrary web script or HTML via the (1) proxypass parameter to system_advanced_misc.php; …	CWE-79 Cross-site Scripting	CVE-2015-6509	2024-11-21 11:35	2015-08-19	Show	GitHub Exploit DB Packet Storm

212439	8.8	HIGH Network	vtiger	vtiger_crm	Unrestricted file upload vulnerability in the Settings_Vtiger_CompanyDetailsSave_Action class in modules/Settings/Vtiger/actions/CompanyDetailsSave.php in Vtiger CRM 6.3.0 and earlier allows remote a…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2015-6000	2024-11-21 11:34	2020-02-6	Show	GitHub Exploit DB Packet Storm

212440	9.8	CRITICAL Network	thomsonreuters	fatca	Directory traversal vulnerability in Thomson Reuters for FATCA before 5.2 allows remote attackers to execute arbitrary files via the item parameter.	CWE-22 Path Traversal	CVE-2015-5952	2024-11-21 11:34	2020-01-16	Show	GitHub Exploit DB Packet Storm