Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 13, 2026, 4:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
231081 6.8 警告 vikingboard - Vikingboard におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-4708 2012-12-20 18:02 2006-09-12 Show GitHub Exploit DB Packet Storm
231082 5 警告 Zope Foundation - Zope の docutils モジュールにおける任意のファイルを読まれる脆弱性 - CVE-2006-4684 2012-12-20 18:02 2006-09-19 Show GitHub Exploit DB Packet Storm
231083 1.2 注意 TIBCO Software - TIBCO RendezVous における重要な情報を取得される脆弱性 - CVE-2006-4676 2012-12-20 18:02 2006-09-11 Show GitHub Exploit DB Packet Storm
231084 7.5 危険 profitcode - PayProCart の profitCode ppalCart コンポーネントにおける PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2006-4672 2012-12-20 18:02 2006-09-11 Show GitHub Exploit DB Packet Storm
231085 5.1 警告 somery - Somery の admin/system/include.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4669 2012-12-20 18:02 2006-09-8 Show GitHub Exploit DB Packet Storm
231086 4.3 警告 rob hensley - Rob Hensley AckerTodo の index.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-4668 2012-12-20 18:02 2006-09-8 Show GitHub Exploit DB Packet Storm
231087 7.5 危険 runcms - RunCMS における SQL インジェクションの脆弱性 - CVE-2006-4667 2012-12-20 18:02 2006-09-8 Show GitHub Exploit DB Packet Storm
231088 7.5 危険 stefan ernst - Stefan Ernst Newsscript における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2006-4666 2012-12-20 18:02 2006-09-8 Show GitHub Exploit DB Packet Storm
231089 5.1 警告 premod shadow - Premod Shadow の includes/functions_portal.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4664 2012-12-20 18:02 2006-09-8 Show GitHub Exploit DB Packet Storm
231090 7.5 危険 web-provence - Web Provence SL_Site の admin/editeur/spaw_control.class.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4656 2012-12-20 18:02 2006-09-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
314791 - - - microweber 2.0.16 was discovered to contain a Cross Site Scripting (XSS) vulnerability via userfiles\modules\settings\admin.php. - CVE-2024-41381 2024-08-8 04:35 2024-08-6 Show GitHub Exploit DB Packet Storm
314792 - - - microweber 2.0.16 was discovered to contain a Cross Site Scripting (XSS) vulnerability via userfiles\modules\tags\add_tagging_tagged.php. - CVE-2024-41380 2024-08-8 04:35 2024-08-6 Show GitHub Exploit DB Packet Storm
314793 - - - In the Elliptic package 6.5.6 for Node.js, ECDSA signature malleability occurs because BER-encoded signatures are allowed. - CVE-2024-42461 2024-08-8 04:35 2024-08-2 Show GitHub Exploit DB Packet Storm
314794 - - - Concrete CMS versions 9.0.0 through 9.3.2 are affected by a stored XSS vulnerability in the generate dashboard board instance functionality. The Name input field does not check the input sufficiently… - CVE-2024-4353 2024-08-8 04:15 2024-08-2 Show GitHub Exploit DB Packet Storm
314795 - jetbox jetbox_cms PHP remote file inclusion vulnerability in includes/phpdig/libs/search_function.php in Jetbox CMS 2.1 allows remote attackers to execute arbitrary PHP code via a URL in the relative_script_path param… NVD-CWE-Other
CVE-2006-4422 2024-08-8 04:15 2006-08-29 Show GitHub Exploit DB Packet Storm
314796 - jupiter_cms jupiter_cms PHP remote file inclusion vulnerability in index.php in Jupiter CMS 1.1.5 allows remote attackers to execute arbitrary PHP code via a URL in the template parameter. NOTE: CVE disputes this claim, si… NVD-CWE-Other
CVE-2006-4428 2024-08-8 04:15 2006-08-29 Show GitHub Exploit DB Packet Storm
314797 - phlymail phlymail_lite PHP remote file inclusion vulnerability in handlers/email/mod.output.php in PHlyMail Lite 3.4.4 and earlier (Build 3.04.04) allows remote attackers to execute arbitrary PHP code via a URL in the _PM_… NVD-CWE-Other
CVE-2006-4429 2024-08-8 04:15 2006-08-29 Show GitHub Exploit DB Packet Storm
314798 - mambo contacts_xtd_component PHP remote file inclusion vulnerability in contxtd.class.php in the Contacts XTD (ContXTD) component for Mambo (com_contxtd) allows remote attackers to execute arbitrary PHP code via a URL in the mos… NVD-CWE-Other
CVE-2006-4375 2024-08-8 04:15 2006-08-27 Show GitHub Exploit DB Packet Storm
314799 - joomla rssxt_component Multiple PHP remote file inclusion vulnerabilities in the Rssxt component for Joomla! (com_rssxt), possibly 2.0 Beta 1 or 1.0 and earlier, allow remote attackers to execute arbitrary PHP code via a U… NVD-CWE-Other
CVE-2006-4378 2024-08-8 04:15 2006-08-27 Show GitHub Exploit DB Packet Storm
314800 - toenda_software_development toendacms PHP remote file inclusion vulnerability in ToendaCMS 1.0.3 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the tcms_administer_site parameter to an unspecified script, … NVD-CWE-Other
CVE-2006-4349 2024-08-8 04:15 2006-08-25 Show GitHub Exploit DB Packet Storm