Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 8, 2026, 2:21 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230541	2.1	注意	xbiff2	-	xbiff2 におけるログイン資格情報などを重要な情報を取得される脆弱性	-	CVE-2006-4493	2012-12-20 18:02	2006-08-31	Show	GitHub Exploit DB Packet Storm

230542	7.5	危険	ultrize	-	MiniBill における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4489	2012-12-20 18:02	2006-08-31	Show	GitHub Exploit DB Packet Storm

230543	4.3	警告	visualshapers	-	Visual Shapers ezContents の loginreq2.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-4479	2012-12-20 18:02	2006-08-31	Show	GitHub Exploit DB Packet Storm

230544	7.5	危険	visualshapers	-	Visual Shapers ezContents の headeruserdata.php における SQL インジェクションの脆弱性	-	CVE-2006-4478	2012-12-20 18:02	2006-08-31	Show	GitHub Exploit DB Packet Storm

230545	7.5	危険	visualshapers	-	Visual Shapers ezContents における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4477	2012-12-20 18:02	2006-08-31	Show	GitHub Exploit DB Packet Storm

230546	7.5	危険	Simple Machines	-	SMF における任意のローカルファイルを読むディレクトリトラバーサル攻撃を実行される脆弱性	-	CVE-2006-4467	2012-12-20 18:02	2006-08-19	Show	GitHub Exploit DB Packet Storm

230547	6.4	警告	phpgroupware	-	phpGroupWare の calendar/inc/class.holidaycalc.inc.php におけるディレクトリトラバーサルの脆弱性	-	CVE-2006-4458	2012-12-20 18:02	2006-08-31	Show	GitHub Exploit DB Packet Storm

230548	7.5	危険	phpecard	-	phpECard の index.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4457	2012-12-20 18:02	2006-08-31	Show	GitHub Exploit DB Packet Storm

230549	7.5	危険	phpecard	-	phpECard の functions.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4456	2012-12-20 18:02	2006-08-31	Show	GitHub Exploit DB Packet Storm

230550	4.3	警告	PmWiki	-	PmWiki におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-4453	2012-12-20 18:02	2006-08-30	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
314351	-		phildev	ipfilter	IPFilter 3.4.25 and earlier sets a different TTL when a port is being filtered than when it is not being filtered, which allows remote attackers to identify filtered ports by comparing TTLs.	CWE-203 Information Exposure Through Discrepancy	CVE-2002-0515	2024-02-15 00:07	2002-08-12	Show	GitHub Exploit DB Packet Storm

314352	-		network.associates	pgpfire	PGP Security PGPfire 7.1 for Windows alters the system's TCP/IP stack and modifies packets in ICMP error messages in a way that allows remote attackers to determine that the system is running PGPfire.	CWE-203 Information Exposure Through Discrepancy	CVE-2002-0208	2024-02-15 00:00	2002-05-16	Show	GitHub Exploit DB Packet Storm

314353	-		woppoware	postmaster	The web mail service in Woppoware PostMaster 4.2.2 (build 3.2.5) generates different error messages depending on whether a user exists or not, which allows remote attackers to determine valid usernam…	CWE-203 Information Exposure Through Discrepancy	CVE-2005-1650	2024-02-14 23:43	2005-05-18	Show	GitHub Exploit DB Packet Storm

314354	-		yabbforumsoftware	yet_another_bulletin_board	YaBB 1 SP 1.3.1 displays different error messages when a user exists or not, which makes it easier for remote attackers to identify valid users and conduct a brute force password guessing attack.	CWE-203 Information Exposure Through Discrepancy	CVE-2004-0294	2024-02-14 23:32	2004-11-23	Show	GitHub Exploit DB Packet Storm

314355	-		ibm	aix	AIX 4.3.3 through AIX 5.1, when direct remote login is disabled, displays a different message if the password is correct, which allows remote attackers to guess the password via brute force methods.	CWE-203 Information Exposure Through Discrepancy	CVE-2004-0243	2024-02-14 23:30	2004-11-23	Show	GitHub Exploit DB Packet Storm

314356	5.5	MEDIUM Local	-	-	Rejected reason: Do not use this CVE as it is duplicate of CVE-2023-6932	-	CVE-2024-0584	2024-02-14 15:15	2024-01-16	Show	GitHub Exploit DB Packet Storm

314357	7.8	HIGH Local	-	-	Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.	-	CVE-2023-42915	2024-02-14 12:15	2024-01-23	Show	GitHub Exploit DB Packet Storm

314358	-		jvehicles	com_jvehicles	SQL injection vulnerability in the Jvehicles (com_jvehicles) component 1.0, 2.0, and 2.1111 for Joomla! allows remote attackers to execute arbitrary SQL commands via the aid parameter in an agentlist…	CWE-89 SQL Injection	CVE-2010-1873	2024-02-14 10:17	2010-05-12	Show	GitHub Exploit DB Packet Storm

314359	-		vmware	player ace workstation server	VMware Authentication Daemon 1.0 in vmware-authd.exe in the VMware Authorization Service in VMware Workstation 7.0 before 7.0.1 build 227600 and 6.5.x before 6.5.4 build 246459, VMware Player 3.0 bef…	CWE-134 Use of Externally-Controlled Format String	CVE-2009-4811	2024-02-14 10:17	2010-04-28	Show	GitHub Exploit DB Packet Storm

314360	-		hp	operations_manager	Multiple stack-based buffer overflows in a certain Tetradyne ActiveX control in HP Operations Manager 7.5, 8.10, and 8.16 might allow remote attackers to execute arbitrary code via a long string argu…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2010-1033	2024-02-14 10:17	2010-04-21	Show	GitHub Exploit DB Packet Storm