Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 1, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
229191	7.5	危険	webtext	-	WebText CMS における wt/users/ 配下のスクリプトへ任意の PHP コードを挿入される脆弱性	-	CVE-2006-6856	2012-12-20 18:02	2006-12-31	Show	GitHub Exploit DB Packet Storm

229192	7.5	危険	shadowed works	-	Shadowed Portal の include.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-6850	2012-12-20 18:02	2006-12-31	Show	GitHub Exploit DB Packet Storm

229193	5	警告	リアルネットワークス	-	RealNetworks RealPlayer の ierpplug.dll におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-6847	2012-12-20 18:02	2006-12-31	Show	GitHub Exploit DB Packet Storm

229194	10	危険	phpBB	-	phpBB の特定のフォームにおける脆弱性	-	CVE-2006-6841	2012-12-20 18:02	2006-12-31	Show	GitHub Exploit DB Packet Storm

229195	10	危険	phpBB	-	phpBB における脆弱性	-	CVE-2006-6840	2012-12-20 18:02	2006-12-31	Show	GitHub Exploit DB Packet Storm

229196	10	危険	phpBB	-	phpBB における脆弱性	-	CVE-2006-6839	2012-12-20 18:02	2006-12-31	Show	GitHub Exploit DB Packet Storm

229197	7.5	危険	rediff	-	Rediff Bol Downloader OCX コントロールにおける重要な情報 (ユーザ名およびパス名) を取得される脆弱性	-	CVE-2006-6838	2012-12-20 18:02	2006-12-31	Show	GitHub Exploit DB Packet Storm

229198	6.8	警告	sergey oblomov	-	Total Commander 用の ISO プラグインの LoadTree などの関数におけるスタックベースのバッファオーバーフローの脆弱性	-	CVE-2006-6837	2012-12-20 18:02	2006-12-31	Show	GitHub Exploit DB Packet Storm

229199	7.5	危険	yrch	-	Yrch! の plugins/metasearch/plug.inc.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-6823	2012-12-20 18:02	2006-12-29	Show	GitHub Exploit DB Packet Storm

229200	7.5	危険	vladimir menshakov	-	Vladimir Menshakov buratinable templator の process.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-6809	2012-12-20 18:02	2006-12-29	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 1, 2026, 4:54 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
211301	7.5	HIGH Network	gnu opensuse	tar leap	pax_decode_header in sparse.c in GNU Tar before 1.32 had a NULL pointer dereference when parsing certain archives that have malformed extended headers.	CWE-476 NULL Pointer Dereference	CVE-2019-9923	2024-11-21 13:52	2019-03-22	Show	GitHub Exploit DB Packet Storm

211302	6.1	MEDIUM Network	get-simple.	getsimplecms	GetSimpleCMS 3.3.13 has an Open Redirect via the admin/index.php redirect parameter.	CWE-601 Open Redirect	CVE-2019-9915	2024-11-21 13:52	2019-03-22	Show	GitHub Exploit DB Packet Storm

211303	6.1	MEDIUM Network	yop-poll	yop-poll	The yop-poll plugin before 6.0.3 for WordPress has wp-admin/admin.php?page=yop-polls&action=view-votes poll_id XSS.	CWE-79 Cross-site Scripting	CVE-2019-9914	2024-11-21 13:52	2019-03-22	Show	GitHub Exploit DB Packet Storm

211304	6.1	MEDIUM Network	3cx	live_chat	The wp-live-chat-support plugin before 8.0.18 for WordPress has wp-admin/admin.php?page=wplivechat-menu-gdpr-page term XSS.	CWE-79 Cross-site Scripting	CVE-2019-9913	2024-11-21 13:52	2019-03-22	Show	GitHub Exploit DB Packet Storm

211305	6.1	MEDIUM Network	codecabin	wp_go_maps	The wp-google-maps plugin before 7.10.43 for WordPress has XSS via the wp-admin/admin.php PATH_INFO.	CWE-79 Cross-site Scripting	CVE-2019-9912	2024-11-21 13:52	2019-03-22	Show	GitHub Exploit DB Packet Storm

211306	6.1	MEDIUM Network	nextscripts	social_networks_auto_poster	The social-networks-auto-poster-facebook-twitter-g plugin before 4.2.8 for WordPress has wp-admin/admin.php?page=nxssnap-reposter&action=edit item XSS.	CWE-79 Cross-site Scripting	CVE-2019-9911	2024-11-21 13:52	2019-03-22	Show	GitHub Exploit DB Packet Storm

211307	6.1	MEDIUM Network	king-theme	kingcomposer	The kingcomposer plugin 2.7.6 for WordPress has wp-admin/admin.php?page=kc-mapper id XSS.	CWE-79 Cross-site Scripting	CVE-2019-9910	2024-11-21 13:52	2019-03-22	Show	GitHub Exploit DB Packet Storm

211308	6.1	MEDIUM Network	givewp	givewp	The "Donation Plugin and Fundraising Platform" plugin before 2.3.1 for WordPress has wp-admin/edit.php csv XSS.	CWE-79 Cross-site Scripting	CVE-2019-9909	2024-11-21 13:52	2019-03-22	Show	GitHub Exploit DB Packet Storm

211309	6.1	MEDIUM Network	hivewebstudios	font_organizer	The font-organizer plugin 2.1.1 for WordPress has wp-admin/options-general.php manage_font_id XSS.	CWE-79 Cross-site Scripting	CVE-2019-9908	2024-11-21 13:52	2019-03-22	Show	GitHub Exploit DB Packet Storm

211310	6.5	MEDIUM Network	graphviz	graphviz	An issue was discovered in lib\cdt\dttree.c in libcdt.a in graphviz 2.40.1. Stack consumption occurs because of recursive agclose calls in lib\cgraph\graph.c in libcgraph.a, related to agfstsubg in l…	CWE-674 Uncontrolled Recursion	CVE-2019-9904	2024-11-21 13:52	2019-03-22	Show	GitHub Exploit DB Packet Storm