Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 1, 2026, 12:10 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
229571	7.8	危険	phplibre	-	registroTL におけるデータベースをダウンロードされる脆弱性	-	CVE-2006-5316	2012-12-20 18:02	2006-10-17	Show	GitHub Exploit DB Packet Storm

229572	6.8	警告	phpBB	-	phpBB 用の Journals System モジュールにおける PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2006-5306	2012-12-20 18:02	2006-10-17	Show	GitHub Exploit DB Packet Storm

229573	5.1	警告	phpBB	-	lat2cyr および phpbb の lat2cyr.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5305	2012-12-20 18:02	2006-10-17	Show	GitHub Exploit DB Packet Storm

229574	2.1	注意	securecomputing	-	Secure Computing SafeWord RemoteAccess における UserCenter Web ポータルパスワードなどを取得される脆弱性	-	CVE-2006-5303	2012-12-20 18:02	2006-10-17	Show	GitHub Exploit DB Packet Storm

229575	7.5	危険	redaction system	-	Redaction System における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2006-5302	2012-12-20 18:02	2006-10-17	Show	GitHub Exploit DB Packet Storm

229576	6.8	警告	phpBB	-	phpBB 用の SpamBlockerMODv モジュールにおける PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2006-5301	2012-12-20 18:02	2006-10-17	Show	GitHub Exploit DB Packet Storm

229577	4.3	警告	Tincan	-	phplist の index.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-5294	2012-12-20 18:02	2006-10-16	Show	GitHub Exploit DB Packet Storm

229578	6.8	警告	phpoutsourcing	-	PhpOutsourcing Noah's Classifieds の index.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-5293	2012-12-20 18:02	2006-10-16	Show	GitHub Exploit DB Packet Storm

229579	7.5	危険	Xerox	-	Xerox WorkCentre における認証を回避される脆弱性	-	CVE-2006-5290	2012-12-20 18:02	2006-10-3	Show	GitHub Exploit DB Packet Storm

229580	7.5	危険	Vtiger	-	Vtiger CRM における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5289	2012-12-20 18:02	2006-10-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 1, 2026, 4:54 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
211781	8.8	HIGH Network	ofcms_project	ofcms	An issue was discovered in OFCMS before 1.1.3. A command execution vulnerability exists via a template file with '<#assign ex="freemarker.template.utility.Execute"?new()> ${ ex("' followed by the com…	CWE-74 Injection	CVE-2019-9614	2024-11-21 13:51	2019-03-7	Show	GitHub Exploit DB Packet Storm

211782	7.2	HIGH Network	ofcms_project	ofcms	An issue was discovered in OFCMS before 1.1.3. Remote attackers can execute arbitrary code because blocking of .jsp and .jspx files does not consider (for example) file.jsp::$DATA to the admin/uedito…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2019-9613	2024-11-21 13:51	2019-03-7	Show	GitHub Exploit DB Packet Storm

211783	8.8	HIGH Network	ofcms_project	ofcms	An issue was discovered in OFCMS before 1.1.3. Remote attackers can execute arbitrary code because blocking of .jsp and .jspx files does not consider (for example) file.jsp::$DATA to the admin/comn/s…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2019-9612	2024-11-21 13:51	2019-03-7	Show	GitHub Exploit DB Packet Storm

211784	6.5	MEDIUM Network	ofcms_project	ofcms	An issue was discovered in OFCMS before 1.1.3. It allows admin/cms/template/getTemplates.html?res_path=res directory traversal, with ../ in the dir parameter, to write arbitrary content (in the file_…	CWE-22 Path Traversal	CVE-2019-9611	2024-11-21 13:51	2019-03-7	Show	GitHub Exploit DB Packet Storm

211785	4.3	MEDIUM Network	ofcms_project	ofcms	An issue was discovered in OFCMS before 1.1.3. It has admin/cms/template/getTemplates.html?res_path=res&up_dir=../ directory traversal, related to the getTemplates function in TemplateController.java.	CWE-22 Path Traversal	CVE-2019-9610	2024-11-21 13:51	2019-03-7	Show	GitHub Exploit DB Packet Storm

211786	8.8	HIGH Network	ofcms_project	ofcms	An issue was discovered in OFCMS before 1.1.3. Remote attackers can execute arbitrary code because blocking of .jsp and .jspx files does not consider (for example) file.jsp::$DATA to the admin/comn/s…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2019-9609	2024-11-21 13:51	2019-03-7	Show	GitHub Exploit DB Packet Storm

211787	8.8	HIGH Network	ofcms_project	ofcms	An issue was discovered in OFCMS before 1.1.3. Remote attackers can execute arbitrary code because blocking of .jsp and .jspx files does not consider (for example) file.jsp::$DATA to the admin/uedito…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2019-9608	2024-11-21 13:51	2019-03-7	Show	GitHub Exploit DB Packet Storm

211788	5.3	MEDIUM Network	medical_store_script_project	medical_store_script	PHP Scripts Mall Medical Store Script 3.0.3 allows Path Traversal by navigating to the parent directory of a jpg or png file.	CWE-22 Path Traversal	CVE-2019-9607	2024-11-21 13:51	2019-03-7	Show	GitHub Exploit DB Packet Storm

211789	5.4	MEDIUM Network	personal_video_collection_script_project	personal_video_collection_script	PHP Scripts Mall Personal Video Collection Script 4.0.4 has Stored XSS via the "Update profile" feature.	CWE-79 Cross-site Scripting	CVE-2019-9606	2024-11-21 13:51	2019-03-7	Show	GitHub Exploit DB Packet Storm

211790	6.5	MEDIUM Network	1234n	minicms	MiniCMS 1.10 allows mc-admin/post.php?state=publish&delete= CSRF to delete articles, a different vulnerability than CVE-2018-18891.	CWE-352 Origin Validation Error	CVE-2019-9603	2024-11-21 13:51	2019-03-7	Show	GitHub Exploit DB Packet Storm