Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228001	4.3	警告	SquirrelMail Project	-	SquirrelMail におけるクッキーをハイジャックされる脆弱性	-	CVE-2006-3665	2012-12-20 18:02	2006-07-18	Show	GitHub Exploit DB Packet Storm

228002	4.6	警告	finjan	-	Finjan Vital Security Appliance における権限を取得される脆弱性	-	CVE-2006-3663	2012-12-20 18:02	2006-07-18	Show	GitHub Exploit DB Packet Storm

228003	5.8	警告	pixelated by lev	-	PBL Guestbook の pblguestbook.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-3617	2012-12-20 18:02	2006-07-18	Show	GitHub Exploit DB Packet Storm

228004	4.3	警告	carbonize	-	Carbonize Lazarus Guestbook におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-3616	2012-12-20 18:02	2006-07-18	Show	GitHub Exploit DB Packet Storm

228005	5.1	警告	Phorum	-	Phorum における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-3615	2012-12-20 18:02	2006-07-13	Show	GitHub Exploit DB Packet Storm

228006	7.5	危険	orbitcoders	-	Orbitcoders OrbitMATRIX の index.php における SQL エラーを誘発される脆弱性	-	CVE-2006-3614	2012-12-20 18:02	2006-07-18	Show	GitHub Exploit DB Packet Storm

228007	5.8	警告	chamberland technology	-	Chamberland Technology ezWaiter Online におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-3613	2012-12-20 18:02	2006-07-18	Show	GitHub Exploit DB Packet Storm

228008	2.6	注意	Phorum	-	Phorum におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-3612	2012-12-20 18:02	2006-07-13	Show	GitHub Exploit DB Packet Storm

228009	5.5	警告	Phorum	-	Phorum の pm.php におけるディレクトリトラバーサルの脆弱性	-	CVE-2006-3611	2012-12-20 18:02	2006-07-13	Show	GitHub Exploit DB Packet Storm

228010	5	警告	orbitcoders	-	Orbitcoders OrbitMATRIX の index.php における重要な情報を取得される脆弱性	-	CVE-2006-3610	2012-12-20 18:02	2006-07-18	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 22, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
212501	8.8	HIGH Network	mediabridge	medialink_mwn-wapr300n_firmware	Cross-site request forgery (CSRF) vulnerability on Mediabridge Medialink MWN-WAPR300N devices with firmware 5.07.50 allows remote attackers to hijack the authentication of arbitrary users.	CWE-352 Origin Validation Error	CVE-2015-5996	2024-11-21 11:34	2015-12-31	Show	GitHub Exploit DB Packet Storm

212502	9.8	CRITICAL Network	tenda mediabridge	n3_wireless_n150 medialink_mwn-wapr300n_firmware	Mediabridge Medialink MWN-WAPR300N devices with firmware 5.07.50 and Tenda N3 Wireless N150 devices allow remote attackers to obtain administrative access via a certain admin substring in an HTTP Coo…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2015-5995	2024-11-21 11:34	2015-12-31	Show	GitHub Exploit DB Packet Storm

212503	6.8	MEDIUM Adjacent	mediabridge	medialink_mwn-wapr300n_firmware	The web management interface on Mediabridge Medialink MWN-WAPR300N devices with firmware 5.07.50 has a default password of admin for the admin account and a default password of password for the media…	CWE-255 Credentials Management	CVE-2015-5994	2024-11-21 11:34	2015-12-31	Show	GitHub Exploit DB Packet Storm

212504	6.9	MEDIUM Network	progress	whatsup_gold	Multiple cross-site scripting (XSS) vulnerabilities in IPSwitch WhatsUp Gold before 16.4 allow remote attackers to inject arbitrary web script or HTML via (1) an SNMP OID object, (2) an SNMP trap mes…	CWE-79 Cross-site Scripting	CVE-2015-6005	2024-11-21 11:34	2015-12-27	Show	GitHub Exploit DB Packet Storm

212505	6.5	MEDIUM Network	progress	whatsup_gold	Multiple SQL injection vulnerabilities in IPSwitch WhatsUp Gold before 16.4 allow remote attackers to execute arbitrary SQL commands via (1) the UniqueID (aka sUniqueID) parameter to WrFreeFormText.a…	CWE-89 SQL Injection	CVE-2015-6004	2024-11-21 11:34	2015-12-27	Show	GitHub Exploit DB Packet Storm

212506	5.9	MEDIUM Network	cisco	jabber	Cisco Jabber 10.6.x, 11.0.x, and 11.1.x on Windows allows man-in-the-middle attackers to conduct STARTTLS downgrade attacks and trigger cleartext XMPP sessions via unspecified vectors, aka Bug ID CSC…	CWE-200 Information Exposure	CVE-2015-6409	2024-11-21 11:34	2015-12-27	Show	GitHub Exploit DB Packet Storm

212507	6.5	MEDIUM Adjacent	cisco	ios_xe	Cisco IOS XE 16.1.1 allows remote attackers to cause a denial of service (device reload) via a packet with the 00-00-00-00-00-00 source MAC address, aka Bug ID CSCux48405.	CWE-399 Resource Management Errors	CVE-2015-6431	2024-11-21 11:34	2015-12-23	Show	GitHub Exploit DB Packet Storm

212508	-		cisco	ios ios_xe	The IKEv1 state machine in Cisco IOS 15.4 through 15.6 and IOS XE 3.15 through 3.17 allows remote attackers to cause a denial of service (IPsec connection termination) via a crafted IKEv1 packet to a…	CWE-19 Data Processing Errors	CVE-2015-6429	2024-11-21 11:34	2015-12-19	Show	GitHub Exploit DB Packet Storm

212509	-		cisco	dpq3925_8x4_docsis_3.0_wireless_residential_gateway_with_embedded_digital_voice_adapter	Cisco DPQ3925 devices with EDVA r1 Base allow remote attackers to obtain sensitive information via a crafted HTTP request, aka Bug ID CSCuv03958.	CWE-200 Information Exposure	CVE-2015-6428	2024-11-21 11:34	2015-12-18	Show	GitHub Exploit DB Packet Storm

212510	-		cisco	firesight_system_software	Cisco FireSIGHT Management Center allows remote attackers to bypass the HTTP attack detection feature and avoid triggering Snort IDS rules via an SSL session that is mishandled after decryption, aka …	CWE-254 7PK - Security Features	CVE-2015-6427	2024-11-21 11:34	2015-12-18	Show	GitHub Exploit DB Packet Storm