Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 20, 2026, 2:09 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230781 9.3 危険 VideoLAN - VideoLAN VLC Media Player のプラグインにおけるフォーマットストリングの脆弱性 - CVE-2007-3316 2012-12-20 18:19 2007-06-12 Show GitHub Exploit DB Packet Storm
230782 6.8 警告 yourfreescreamer - YourFreeScreamer における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-3315 2012-12-20 18:19 2007-06-21 Show GitHub Exploit DB Packet Storm
230783 7.5 危険 XOOPS - Xoops 用の Articles モジュールにおける SQL インジェクションの脆弱性 - CVE-2007-3311 2012-12-20 18:19 2007-06-21 Show GitHub Exploit DB Packet Storm
230784 4.3 警告 tdizin - TDizin の arama.asp におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-3310 2012-12-20 18:19 2007-06-20 Show GitHub Exploit DB Packet Storm
230785 7.5 危険 Simple Machines - SMF におけるメッセージの作成時に任意の PHP コードを実行され脆弱性 - CVE-2007-3309 2012-12-20 18:19 2007-06-20 Show GitHub Exploit DB Packet Storm
230786 7.5 危険 Simple Machines - SMF における CAPTCHA テストを通過される脆弱性 - CVE-2007-3308 2012-12-20 18:19 2007-06-20 Show GitHub Exploit DB Packet Storm
230787 7.5 危険 solar empire - Solar Empire の game_listing.php における SQL インジェクションの脆弱性 - CVE-2007-3307 2012-12-20 18:19 2007-06-20 Show GitHub Exploit DB Packet Storm
230788 7.5 危険 ultrize - MiniBill の crontab/run_billing.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-3306 2012-12-20 18:19 2007-06-20 Show GitHub Exploit DB Packet Storm
230789 7.5 危険 spey - Spey における SQL インジェクションの脆弱性 - CVE-2007-3298 2012-12-20 18:19 2007-06-20 Show GitHub Exploit DB Packet Storm
230790 9.3 危険 迅雷 - xunlei Web Thunderbolt の ThunderServer.webThunder.1 ActiveX コントロールにおける任意のファイルをダウンロードされる脆弱性 - CVE-2007-3296 2012-12-20 18:19 2007-06-20 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 20, 2026, 4:14 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
317261 - trendmicro interscan_messaging_security_suite ISNTSmtp directory in Trend Micro InterScan Messaging Security Suite (IMSS) 5.5 build 1183 and possibly other versions before 5.7.0.1121, uses insecure DACLs for critical files, which allows local us… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2006-1380 2024-02-14 10:17 2006-03-24 Show GitHub Exploit DB Packet Storm
317262 - trend_micro officescan Trend Micro OfficeScan 5.5, and probably other versions before 6.5, uses insecure DACLs for critical files, which allows local users to gain SYSTEM privileges by modifying tmlisten.exe. NVD-CWE-Other
CVE-2006-1381 2024-02-14 10:17 2006-03-24 Show GitHub Exploit DB Packet Storm
317263 - glftpd glftpd Unspecified vulnerability in glFTPd before 2.01 RC5 allows remote attackers to bypass IP checks via a crafted DNS hostname, possibly a hostname that appears to be an IP address. NVD-CWE-Other
CVE-2006-1253 2024-02-14 10:17 2006-03-19 Show GitHub Exploit DB Packet Storm
317264 - jcink.com textfilebb Multiple cross-site scripting (XSS) vulnerabilities in textfileBB 1.0 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) mess and (2) user parameters in messanger.p… NVD-CWE-Other
CVE-2006-1202 2024-02-14 10:17 2006-03-14 Show GitHub Exploit DB Packet Storm
317265 - sergey_korostel php_upload_center PHP Upload Center stores password hashes under the web root with insufficient access control, which allows remote attackers to download each password hash via a direct request for the upload/users/[U… NVD-CWE-Other
CVE-2006-1207 2024-02-14 10:17 2006-03-14 Show GitHub Exploit DB Packet Storm
317266 - sergey_korostel php_upload_center Sergey Korostel PHP Upload Center allows remote attackers to execute arbitrary PHP code by uploading a file whose name ends in a .php.li extension, which can be accessed from the upload directory. NVD-CWE-Other
CVE-2006-1208 2024-02-14 10:17 2006-03-14 Show GitHub Exploit DB Packet Storm
317267 - bugada_andrea php_advanced_transfer_manager PHP Advanced Transfer Manager 1.00 through 1.30 stores sensitive information, including password hashes, under the web root with insufficient access control, which allows remote attackers to download… NVD-CWE-Other
CVE-2006-1209 2024-02-14 10:17 2006-03-14 Show GitHub Exploit DB Packet Storm
317268 - nmdeluxe nmdeluxe Cross-site scripting (XSS) vulnerability in news.php in NMDeluxe before 1.0.1 allows remote attackers to inject arbitrary web script or HTML via the nick parameter. NVD-CWE-Other
CVE-2006-1107 2024-02-14 10:17 2006-03-9 Show GitHub Exploit DB Packet Storm
317269 - nmdeluxe nmdeluxe SQL injection vulnerability in news.php in NMDeluxe before 1.0.1 allows remote attackers to execute arbitrary SQL commands via the id parameter. NVD-CWE-Other
CVE-2006-1108 2024-02-14 10:17 2006-03-9 Show GitHub Exploit DB Packet Storm
317270 - game-panel game-panel Cross-site scripting (XSS) vulnerability in login.php in Game-Panel 2.6.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the message parameter, possibly requiring a UR… NVD-CWE-Other
CVE-2006-1080 2024-02-14 10:17 2006-03-9 Show GitHub Exploit DB Packet Storm