Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 5, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230011	6.5	警告	シトリックス・システムズ	-	Citrix MetaFrame における権限を取得される脆弱性	-	CVE-2006-3779	2012-12-20 18:02	2006-07-24	Show	GitHub Exploit DB Packet Storm

230012	7.5	危険	idevSpot	-	IDevSpot PhpLinkExchange の index.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2006-3777	2012-12-20 18:02	2006-07-24	Show	GitHub Exploit DB Packet Storm

230013	7.5	危険	idevSpot	-	IDevSpot PhpHostBot および AutoHost の order/index.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2006-3776	2012-12-20 18:02	2006-07-24	Show	GitHub Exploit DB Packet Storm

230014	7.5	危険	mybulletinboard	-	MyBB の class_session.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2006-3775	2012-12-20 18:02	2006-07-24	Show	GitHub Exploit DB Packet Storm

230015	6.8	警告	Joomla!	-	Joomla! 用の com_performs における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2006-3774	2012-12-20 18:02	2006-07-24	Show	GitHub Exploit DB Packet Storm

230016	6.8	警告	Mambo Foundation	-	Joomla! および Mambo 用の Bridge コンポーネントにおける PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2006-3773	2012-12-20 18:02	2006-07-10	Show	GitHub Exploit DB Packet Storm

230017	5.1	警告	php-post	-	PHP-Post における管理者権限を取得される脆弱性	-	CVE-2006-3772	2012-12-20 18:02	2006-07-24	Show	GitHub Exploit DB Packet Storm

230018	7.5	危険	imaginex-resource	-	iManage CMS の component.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-3771	2012-12-20 18:02	2006-07-24	Show	GitHub Exploit DB Packet Storm

230019	7.5	危険	phpfaber	-	phpFaber TopSites の index.php における SQL インジェクションの脆弱性	-	CVE-2006-3770	2012-12-20 18:02	2006-07-24	Show	GitHub Exploit DB Packet Storm

230020	2.6	注意	top xl	-	Top XL におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-3769	2012-12-20 18:02	2006-07-24	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 5, 2026, 4:51 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
313981	9.8	CRITICAL Network	novell	edirectory	Novell eDirectory 8.6.2 and 8.7 use case insensitive passwords, which makes it easier for remote attackers to conduct brute force password guessing.	CWE-178 Improper Handling of Case Sensitivity	CVE-2002-2119	2024-02-8 11:12	2002-12-31	Show	GitHub Exploit DB Packet Storm

313982	7.5	HIGH Network	apple	quicktime_streaming_server darwin_streaming_server mac_os_x_server mac_os_x	Apache for Apple Mac OS X 10.2.8 and 10.3.6 restricts access to files in a case sensitive manner, but the Apple HFS+ filesystem accesses files in a case insensitive manner, which allows remote attack…	CWE-178 Improper Handling of Case Sensitivity	CVE-2004-1083	2024-02-8 11:09	2004-12-3	Show	GitHub Exploit DB Packet Storm

313983	-		-	-	Rejected reason: DO NOT USE THIS CVE RECORD. ConsultIDs: none. Reason: This record was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none.	-	CVE-2024-22984	2024-02-8 05:15	2024-02-8	Show	GitHub Exploit DB Packet Storm

313984	-		cisco	ios	AAA authentication on Cisco systems allows attackers to execute commands without authorization.	NVD-CWE-Other	CVE-1999-0293	2024-02-8 03:06	1998-01-1	Show	GitHub Exploit DB Packet Storm

313985	-		-	-	Rejected reason: We have rejected this CVE as it was determined a non-security issue by the vendor.	-	CVE-2023-5584	2024-02-7 00:15	2024-02-7	Show	GitHub Exploit DB Packet Storm

313986	-		postgresql	postgresql	The intagg contrib module for PostgreSQL 8.0.0 and earlier allows attackers to cause a denial of service (crash) via crafted arrays.	NVD-CWE-Other	CVE-2005-0246	2024-02-6 04:56	2005-05-2	Show	GitHub Exploit DB Packet Storm

313987	-		-	-	Rejected reason: This candidate was in a CNA pool that was not assigned to any issues during 2023.	-	CVE-2023-47170	2024-02-5 14:15	2024-02-5	Show	GitHub Exploit DB Packet Storm

313988	9.8	CRITICAL Network	pingtel	xpressa_firmware	Pingtel xpressa SIP-based voice-over-IP phone 1.2.5 through 1.2.7.4 downloads phone applications from a web site but can not verify the integrity of the applications, which could allow remote attacke…	CWE-494 Download of Code Without Integrity Check	CVE-2002-0671	2024-02-3 11:32	2002-07-23	Show	GitHub Exploit DB Packet Storm

313989	7.5	HIGH Network	linux	linux_kernel	The Network Address Translation (NAT) capability for Netfilter ("iptables") 1.2.6a and earlier leaks translated IP addresses in ICMP error messages.	CWE-212 Improper Removal of Sensitive Information Before Storage or Transfer	CVE-2002-0704	2024-02-3 11:31	2002-07-26	Show	GitHub Exploit DB Packet Storm

313990	8.8	HIGH Network	apple fedoraproject canonical opensuse	safari iphone_os fedora ubuntu_linux opensuse	Use-after-free vulnerability in WebKit in Apple Safari before 4.0.5 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via an HTML document with improp…	CWE-416 Use After Free	CVE-2010-0050	2024-02-3 11:24	2010-03-15	Show	GitHub Exploit DB Packet Storm