Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 5, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230031	7.5	危険	mybulletinboard	-	MyBB の Archive Model の inc/init.php における任意の変数を上書きされる脆弱性	-	CVE-2006-3758	2012-12-20 18:02	2006-06-27	Show	GitHub Exploit DB Packet Storm

230032	5	警告	Zen Cart	-	Zen Cart の index.php における重要な情報を取得される脆弱性	-	CVE-2006-3757	2012-12-20 18:02	2006-07-21	Show	GitHub Exploit DB Packet Storm

230033	7.5	危険	flushcms	-	FlushCMS の Include/editor/class.rich.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-3755	2012-12-20 18:02	2006-07-21	Show	GitHub Exploit DB Packet Storm

230034	7.5	危険	flushcms	-	FlushCMS の Include/editor/rich_files/class.rich.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-3754	2012-12-20 18:02	2006-07-21	Show	GitHub Exploit DB Packet Storm

230035	6.4	警告	professional home page tools	-	Professional Home Page Tools Guestbook の管理ログインにおけるパスワードを推測する総当り攻撃を実行される脆弱性	-	CVE-2006-3753	2012-12-20 18:02	2006-07-21	Show	GitHub Exploit DB Packet Storm

230036	7.5	危険	professional home page tools	-	Professional Home Page Tools Guestbook の class.php における SQL インジェクションの脆弱性	-	CVE-2006-3752	2012-12-20 18:02	2006-07-21	Show	GitHub Exploit DB Packet Storm

230037	6.8	警告	htmlarea3	-	ImageManager 用の HTMLArea3 Addon Component における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2006-3751	2012-12-20 18:02	2006-07-21	Show	GitHub Exploit DB Packet Storm

230038	6.8	警告	hashcash	-	Joomla! 用の com_hashcash の server.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2006-3750	2012-12-20 18:02	2006-07-21	Show	GitHub Exploit DB Packet Storm

230039	6.8	警告	Mambo Foundation	-	Mambo 用の Sitemap コンポーネントにおける PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2006-3749	2012-12-20 18:02	2006-07-10	Show	GitHub Exploit DB Packet Storm

230040	6.8	警告	mamboxchange	-	Mambo 用の LoudMouth コンポーネントにおける PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2006-3748	2012-12-20 18:02	2006-07-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 5, 2026, 4:51 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
313981	9.8	CRITICAL Network	novell	edirectory	Novell eDirectory 8.6.2 and 8.7 use case insensitive passwords, which makes it easier for remote attackers to conduct brute force password guessing.	CWE-178 Improper Handling of Case Sensitivity	CVE-2002-2119	2024-02-8 11:12	2002-12-31	Show	GitHub Exploit DB Packet Storm

313982	7.5	HIGH Network	apple	quicktime_streaming_server darwin_streaming_server mac_os_x_server mac_os_x	Apache for Apple Mac OS X 10.2.8 and 10.3.6 restricts access to files in a case sensitive manner, but the Apple HFS+ filesystem accesses files in a case insensitive manner, which allows remote attack…	CWE-178 Improper Handling of Case Sensitivity	CVE-2004-1083	2024-02-8 11:09	2004-12-3	Show	GitHub Exploit DB Packet Storm

313983	-		-	-	Rejected reason: DO NOT USE THIS CVE RECORD. ConsultIDs: none. Reason: This record was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none.	-	CVE-2024-22984	2024-02-8 05:15	2024-02-8	Show	GitHub Exploit DB Packet Storm

313984	-		cisco	ios	AAA authentication on Cisco systems allows attackers to execute commands without authorization.	NVD-CWE-Other	CVE-1999-0293	2024-02-8 03:06	1998-01-1	Show	GitHub Exploit DB Packet Storm

313985	-		-	-	Rejected reason: We have rejected this CVE as it was determined a non-security issue by the vendor.	-	CVE-2023-5584	2024-02-7 00:15	2024-02-7	Show	GitHub Exploit DB Packet Storm

313986	-		postgresql	postgresql	The intagg contrib module for PostgreSQL 8.0.0 and earlier allows attackers to cause a denial of service (crash) via crafted arrays.	NVD-CWE-Other	CVE-2005-0246	2024-02-6 04:56	2005-05-2	Show	GitHub Exploit DB Packet Storm

313987	-		-	-	Rejected reason: This candidate was in a CNA pool that was not assigned to any issues during 2023.	-	CVE-2023-47170	2024-02-5 14:15	2024-02-5	Show	GitHub Exploit DB Packet Storm

313988	9.8	CRITICAL Network	pingtel	xpressa_firmware	Pingtel xpressa SIP-based voice-over-IP phone 1.2.5 through 1.2.7.4 downloads phone applications from a web site but can not verify the integrity of the applications, which could allow remote attacke…	CWE-494 Download of Code Without Integrity Check	CVE-2002-0671	2024-02-3 11:32	2002-07-23	Show	GitHub Exploit DB Packet Storm

313989	7.5	HIGH Network	linux	linux_kernel	The Network Address Translation (NAT) capability for Netfilter ("iptables") 1.2.6a and earlier leaks translated IP addresses in ICMP error messages.	CWE-212 Improper Removal of Sensitive Information Before Storage or Transfer	CVE-2002-0704	2024-02-3 11:31	2002-07-26	Show	GitHub Exploit DB Packet Storm

313990	8.8	HIGH Network	apple fedoraproject canonical opensuse	safari iphone_os fedora ubuntu_linux opensuse	Use-after-free vulnerability in WebKit in Apple Safari before 4.0.5 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via an HTML document with improp…	CWE-416 Use After Free	CVE-2010-0050	2024-02-3 11:24	2010-03-15	Show	GitHub Exploit DB Packet Storm