Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 6, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229951 7.5 危険 tumbleweed - Tumbleweed EMF におけるスタックベースのバッファオーバーフローの脆弱性 - CVE-2006-3901 2012-12-20 18:02 2006-07-27 Show GitHub Exploit DB Packet Storm
229952 6.8 警告 tobias kloy - TP-Book の guestbook.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-3900 2012-12-20 18:02 2006-07-27 Show GitHub Exploit DB Packet Storm
229953 5 警告 マイクロソフト - Windows 上で稼動する Microsoft Internet Explorer 6.0 におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-3899 2012-12-20 18:02 2006-07-27 Show GitHub Exploit DB Packet Storm
229954 5 警告 マイクロソフト - Windows 上で稼動する Microsoft Internet Explorer 6.0 におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-3898 2012-12-20 18:02 2006-07-27 Show GitHub Exploit DB Packet Storm
229955 5 警告 マイクロソフト - Windows 上で稼動する Microsoft Internet Explorer 6 におけるスタックオーバフローの脆弱性 - CVE-2006-3897 2012-12-20 18:02 2006-07-27 Show GitHub Exploit DB Packet Storm
229956 9.3 危険 winzip
sky software		 - WinZip などで使用される Sky Software FileView ActiveX コントロールにおけるスタックベースのバッファオーバーフローの脆弱性 - CVE-2006-3890 2012-12-20 18:02 2006-11-21 Show GitHub Exploit DB Packet Storm
229957 7.5 危険 musicbox - Shalwan MusicBox における SQL インジェクションの脆弱性 - CVE-2006-3886 2012-12-20 18:02 2006-07-26 Show GitHub Exploit DB Packet Storm
229958 5 警告 チェック・ポイント・ソフトウェア・テクノロジーズ - Check Point Firewall-1 R55W におけるディレクトリトラバーサルの脆弱性 - CVE-2006-3885 2012-12-20 18:02 2006-07-26 Show GitHub Exploit DB Packet Storm
229959 7.5 危険 gonafish - Gonafish LinksCaffe の links.php における SQL インジェクションの脆弱性 - CVE-2006-3884 2012-12-20 18:02 2006-07-26 Show GitHub Exploit DB Packet Storm
229960 4.3 警告 gonafish - Gonafish LinksCaffe におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-3883 2012-12-20 18:02 2006-07-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
313771 - trend_micro officescan Trend Micro OfficeScan 5.5, and probably other versions before 6.5, uses insecure DACLs for critical files, which allows local users to gain SYSTEM privileges by modifying tmlisten.exe. NVD-CWE-Other
CVE-2006-1381 2024-02-14 10:17 2006-03-24 Show GitHub Exploit DB Packet Storm
313772 - glftpd glftpd Unspecified vulnerability in glFTPd before 2.01 RC5 allows remote attackers to bypass IP checks via a crafted DNS hostname, possibly a hostname that appears to be an IP address. NVD-CWE-Other
CVE-2006-1253 2024-02-14 10:17 2006-03-19 Show GitHub Exploit DB Packet Storm
313773 - jcink.com textfilebb Multiple cross-site scripting (XSS) vulnerabilities in textfileBB 1.0 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) mess and (2) user parameters in messanger.p… NVD-CWE-Other
CVE-2006-1202 2024-02-14 10:17 2006-03-14 Show GitHub Exploit DB Packet Storm
313774 - sergey_korostel php_upload_center PHP Upload Center stores password hashes under the web root with insufficient access control, which allows remote attackers to download each password hash via a direct request for the upload/users/[U… NVD-CWE-Other
CVE-2006-1207 2024-02-14 10:17 2006-03-14 Show GitHub Exploit DB Packet Storm
313775 - sergey_korostel php_upload_center Sergey Korostel PHP Upload Center allows remote attackers to execute arbitrary PHP code by uploading a file whose name ends in a .php.li extension, which can be accessed from the upload directory. NVD-CWE-Other
CVE-2006-1208 2024-02-14 10:17 2006-03-14 Show GitHub Exploit DB Packet Storm
313776 - bugada_andrea php_advanced_transfer_manager PHP Advanced Transfer Manager 1.00 through 1.30 stores sensitive information, including password hashes, under the web root with insufficient access control, which allows remote attackers to download… NVD-CWE-Other
CVE-2006-1209 2024-02-14 10:17 2006-03-14 Show GitHub Exploit DB Packet Storm
313777 - nmdeluxe nmdeluxe Cross-site scripting (XSS) vulnerability in news.php in NMDeluxe before 1.0.1 allows remote attackers to inject arbitrary web script or HTML via the nick parameter. NVD-CWE-Other
CVE-2006-1107 2024-02-14 10:17 2006-03-9 Show GitHub Exploit DB Packet Storm
313778 - nmdeluxe nmdeluxe SQL injection vulnerability in news.php in NMDeluxe before 1.0.1 allows remote attackers to execute arbitrary SQL commands via the id parameter. NVD-CWE-Other
CVE-2006-1108 2024-02-14 10:17 2006-03-9 Show GitHub Exploit DB Packet Storm
313779 - game-panel game-panel Cross-site scripting (XSS) vulnerability in login.php in Game-Panel 2.6.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the message parameter, possibly requiring a UR… NVD-CWE-Other
CVE-2006-1080 2024-02-14 10:17 2006-03-9 Show GitHub Exploit DB Packet Storm
313780 - simplog simplog Cross-site scripting (XSS) vulnerability in Daverave Simplog 1.0.2 and earlier allows remote attackers to inject arbitrary web script or HTML via a blog post. NVD-CWE-Other
CVE-2006-1072 2024-02-14 10:17 2006-03-8 Show GitHub Exploit DB Packet Storm