Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 8, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230441 5.1 警告 telekorn - Telekorn SL における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4889 2012-12-20 18:02 2006-09-19 Show GitHub Exploit DB Packet Storm
230442 7.5 危険 shadowed portal - Shadowed Portal における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4885 2012-12-20 18:02 2006-09-19 Show GitHub Exploit DB Packet Storm
230443 5 警告 phpquiz - Walter Beschmout PhpQuiz における重要な情報を取得される脆弱性 - CVE-2006-4865 2012-12-20 18:02 2006-09-19 Show GitHub Exploit DB Packet Storm
230444 4.3 警告 roller weblogger - Roller WebLogger におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-4856 2012-12-20 18:02 2006-09-19 Show GitHub Exploit DB Packet Storm
230445 4.9 警告 シマンテック - Symantec Norton Personal Firewall などの \Device\SymEvent ドライバにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2006-4855 2012-12-20 18:02 2006-09-19 Show GitHub Exploit DB Packet Storm
230446 7.5 危険 quadcomm - QuadComm Q-Shop の browse.asp における SQL インジェクションの脆弱性 - CVE-2006-4852 2012-12-20 18:02 2006-09-18 Show GitHub Exploit DB Packet Storm
230447 5 警告 ソフォス - Sophos Anti-Virus におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-4839 2012-12-20 18:02 2006-11-1 Show GitHub Exploit DB Packet Storm
230448 7.5 危険 phpquiz - Jule Slootbeek phpQuiz の index.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4834 2012-12-20 18:02 2006-09-15 Show GitHub Exploit DB Packet Storm
230449 7.8 危険 verso netperformer - Verso NetPerformer FRAD ACT SDM におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-4833 2012-12-20 18:02 2006-09-15 Show GitHub Exploit DB Packet Storm
230450 7.5 危険 verso netperformer - Verso NetPerformer FRAD ACT SDM におけるバッファオーバーフローの脆弱性 - CVE-2006-4832 2012-12-20 18:02 2006-09-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
314591 - ethereal_group ethereal The HTTP dissector in Ethereal 0.10.1 through 0.10.7 allows remote attackers to cause a denial of service (application crash) via a certain packet that causes the dissector to access previously-freed… NVD-CWE-Other
CVE-2004-1141 2024-02-14 10:17 2004-12-31 Show GitHub Exploit DB Packet Storm
314592 - psychostats psychostats Cross-site scripting (XSS) vulnerability in login.php in PsychoStats 2.2.4 Beta and earlier allows remote attackers to inject arbitrary web script or HTML via the login parameter. CWE-79
Cross-site Scripting 		CVE-2004-1417 2024-02-14 10:17 2004-12-31 Show GitHub Exploit DB Packet Storm
314593 - argosoft ftp_server ArGoSoft FTP before 1.4.2.1 generates an error message if the user name does not exist instead of prompting for a password, which allows remote attackers to determine valid usernames. CWE-203
 Information Exposure Through Discrepancy 		CVE-2004-1428 2024-02-14 10:17 2004-12-31 Show GitHub Exploit DB Packet Storm
314594 - ethereal_group ethereal Unknown vulnerability in Ethereal 0.8.13 to 0.10.2 allows attackers to cause a denial of service (segmentation fault) via a malformed color filter file. NVD-CWE-Other
CVE-2004-1761 2024-02-14 10:17 2004-12-31 Show GitHub Exploit DB Packet Storm
314595 - alan_ward a-cart SQL injection vulnerability in category.asp in A-CART Pro and A-CART 2.0 allows remote attackers to gain privileges via the catcode parameter. NVD-CWE-Other
CVE-2004-1873 2024-02-14 10:17 2004-12-31 Show GitHub Exploit DB Packet Storm
314596 - oscommerce oscommerce Directory traversal vulnerability in file_manager.php in osCommerce 2.2 allows remote attackers to view arbitrary files via a .. (dot dot) in the filename argument. NVD-CWE-Other
CVE-2004-2021 2024-02-14 10:17 2004-12-31 Show GitHub Exploit DB Packet Storm
314597 - allwebscripts mysqlguest Cross-site scripting (XSS) vulnerability in AWSguest.php in AllWebScripts MySQLGuest allows remote attackers to inject arbitrary HTML and PHP code via the (1) Name, (2) Email, (3) Homepage or (4) Com… NVD-CWE-Other
CVE-2004-2138 2024-02-14 10:17 2004-12-31 Show GitHub Exploit DB Packet Storm
314598 - phpx phpx PHPX 3.2.6 and earlier allows remote attackers to obtain the physical path of PHPX via a null or invalid value in the limit parameter, which leaks the pathname in a database error message, as demonst… NVD-CWE-Other
CVE-2004-2362 2024-02-14 10:17 2004-12-31 Show GitHub Exploit DB Packet Storm
314599 - phpx phpx Validate-Before-Canonicalize vulnerability in the checkURI function in functions.inc.php in PHPX 3.0 through 3.2.6 allows remote attackers to conduct cross-site scripting (XSS) attacks via hex-encode… NVD-CWE-Other
CVE-2004-2363 2024-02-14 10:17 2004-12-31 Show GitHub Exploit DB Packet Storm
314600 - phpx phpx Cross-site request forgery (CSRF) vulnerability in PHPX 3.0 through 3.2.6 allows remote attackers to execute arbitrary commands via URLs that are automatically executed on behalf of the administrator… NVD-CWE-Other
CVE-2004-2364 2024-02-14 10:17 2004-12-31 Show GitHub Exploit DB Packet Storm