Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":April 29, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228421	7.5	危険	Xerox	-	Xerox WorkCentre および WorkCentre Pro の Web User Interface における認証の制御を回避される脆弱性	-	CVE-2006-6434	2012-12-20 18:02	2006-11-30	Show	GitHub Exploit DB Packet Storm

228422	5	警告	Xerox	-	Xerox WorkCentre および WorkCentre Pro における検出を回避される脆弱性	-	CVE-2006-6433	2012-12-20 18:02	2006-12-10	Show	GitHub Exploit DB Packet Storm

228423	5	警告	Xerox	-	Xerox WorkCentre および WorkCentre Pro の Scan-to-mailbox 機能における特定のファイルをダウンロードされる脆弱性	-	CVE-2006-6432	2012-12-20 18:02	2006-12-10	Show	GitHub Exploit DB Packet Storm

228424	6.8	警告	phpnews	-	PHPNews の templates/cat_temp.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-6357	2012-12-20 18:02	2006-12-6	Show	GitHub Exploit DB Packet Storm

228425	6.8	警告	phpnews	-	PHPNews の templates/link_temp.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-6356	2012-12-20 18:02	2006-12-6	Show	GitHub Exploit DB Packet Storm

228426	7.5	危険	pwp technologies	-	PWP Technologies The Classified Ad System における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2006-6349	2012-12-20 18:02	2006-12-6	Show	GitHub Exploit DB Packet Storm

228427	6.5	警告	tftgallery	-	TFT-Gallery における admin/index.php を使用する任意の .php ファイルをアップロードされる脆弱性	-	CVE-2006-6347	2012-12-20 18:02	2006-12-6	Show	GitHub Exploit DB Packet Storm

228428	10	危険	SAP	-	SAP IGS におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-6346	2012-12-20 18:02	2006-12-6	Show	GitHub Exploit DB Packet Storm

228429	5	警告	Xerox	-	Xerox WorkCentre および WorkCentre Pro における電子メールメッセージの署名を変更される脆弱性	-	CVE-2006-6431	2012-12-20 18:02	2006-12-10	Show	GitHub Exploit DB Packet Storm

228430	7.8	危険	Xerox	-	Xerox WorkCentre および WorkCentre Pro の Web services における重要な情報を取得される脆弱性	-	CVE-2006-6430	2012-12-20 18:02	2006-12-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 29, 2026, 4:51 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
211001	6.1	MEDIUM Network	ipandao	editor.md	Editor.md 1.5.0 has DOM-based XSS via vectors involving the '<EMBED SRC="data:image/svg+xml' substring.	CWE-79 Cross-site Scripting	CVE-2019-9737	2024-11-21 13:52	2019-03-13	Show	GitHub Exploit DB Packet Storm

211002	6.1	MEDIUM Network	1024tools	1024tools	DOM-based XSS exists in 1024Tools Markdown 1.0 via vectors involving the '<EMBED SRC="data:image/svg+xml' substring.	CWE-79 Cross-site Scripting	CVE-2019-9736	2024-11-21 13:52	2019-03-13	Show	GitHub Exploit DB Packet Storm

211003	6.5	MEDIUM Network	openstack redhat debian	neutron openstack debian_linux	An issue was discovered in the iptables firewall module in OpenStack Neutron before 10.0.8, 11.x before 11.0.7, 12.x before 12.0.6, and 13.x before 13.0.3. By setting a destination port in a security…	CWE-755 Improper Handling of Exceptional Conditions	CVE-2019-9735	2024-11-21 13:52	2019-03-13	Show	GitHub Exploit DB Packet Storm

211004	7.8	HIGH Local	shanda	maplestory_online	In Shanda MapleStory Online V160, the SdoKeyCrypt.sys driver allows privilege escalation to NT AUTHORITY\SYSTEM because of not validating the IOCtl 0x8000c01c input value, leading to an integer signe…	CWE-787 CWE-129 Out-of-bounds Write Improper Validation of Array Index	CVE-2019-9729	2024-11-21 13:52	2019-03-13	Show	GitHub Exploit DB Packet Storm

211005	6.1	MEDIUM Network	korenix	jetport_web_manager jetport_5601_firmware jetport_5601f_firmware	The Web manager (aka Commander) on Korenix JetPort 5601 and 5601f devices has Persistent XSS via the Port Alias field under Serial Setting.	CWE-79 Cross-site Scripting	CVE-2019-9725	2024-11-21 13:52	2019-03-13	Show	GitHub Exploit DB Packet Storm

211006	6.1	MEDIUM Network	joomla	joomla\!	An issue was discovered in Joomla! before 3.9.4. The media form field lacks escaping, leading to XSS.	CWE-79 Cross-site Scripting	CVE-2019-9714	2024-11-21 13:52	2019-03-13	Show	GitHub Exploit DB Packet Storm

211007	7.5	HIGH Network	joomla	joomla\!	An issue was discovered in Joomla! before 3.9.4. The sample data plugins lack ACL checks, allowing unauthorized access.	CWE-862 Missing Authorization	CVE-2019-9713	2024-11-21 13:52	2019-03-13	Show	GitHub Exploit DB Packet Storm

211008	6.1	MEDIUM Network	joomla	joomla\!	An issue was discovered in Joomla! before 3.9.4. The JSON handler in com_config lacks input validation, leading to XSS.	CWE-79 Cross-site Scripting	CVE-2019-9712	2024-11-21 13:52	2019-03-13	Show	GitHub Exploit DB Packet Storm

211009	6.1	MEDIUM Network	joomla	joomla\!	An issue was discovered in Joomla! before 3.9.4. The item_title layout in edit views lacks escaping, leading to XSS.	CWE-79 Cross-site Scripting	CVE-2019-9711	2024-11-21 13:52	2019-03-13	Show	GitHub Exploit DB Packet Storm

211010	6.5	MEDIUM Network	ffmpeg canonical	ffmpeg ubuntu_linux	A denial of service in the subtitle decoder in FFmpeg 3.2 and 4.1 allows attackers to hog the CPU via a crafted video file in Matroska format, because handle_open_brace in libavcodec/htmlsubtitles.c …	CWE-125 Out-of-bounds Read	CVE-2019-9721	2024-11-21 13:52	2019-03-12	Show	GitHub Exploit DB Packet Storm