Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 13, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
231091	5	警告	threesquared.net	-	threesquared.net Php download の download/index.php および download.php におけるディレクトリトラバーサルの脆弱性	-	CVE-2006-4651	2012-12-20 18:02	2006-09-8	Show	GitHub Exploit DB Packet Storm

231092	7.5	危険	sponge news	-	Sponge News の news.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4647	2012-12-20 18:02	2006-09-8	Show	GitHub Exploit DB Packet Storm

231093	7.5	危険	phpfullannu	-	phpFullAnnu の modules/home.module.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4644	2012-12-20 18:02	2006-09-8	Show	GitHub Exploit DB Packet Storm

231094	7.5	危険	uni-vert	-	Uni-Vert PhpLeague の consult/joueurs.php における SQL インジェクションの脆弱性	-	CVE-2006-4643	2012-12-20 18:02	2006-09-8	Show	GitHub Exploit DB Packet Storm

231095	7.5	危険	szewo	-	SZEWO PhpCommander におけるディレクトリトラバーサルの脆弱性	-	CVE-2006-4636	2012-12-20 18:02	2006-09-8	Show	GitHub Exploit DB Packet Storm

231096	6.5	警告	Squiz	-	MySource Classic における任意の PHP コードを挿入される脆弱性	-	CVE-2006-4635	2012-12-20 18:02	2006-09-8	Show	GitHub Exploit DB Packet Storm

231097	4.3	警告	vbzoom	-	VBZooM の index.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-4634	2012-12-20 18:02	2006-09-8	Show	GitHub Exploit DB Packet Storm

231098	5	警告	Softbb.net	-	SoftBB の index.php におけるインストールパスを取得される脆弱性	-	CVE-2006-4633	2012-12-20 18:02	2006-09-8	Show	GitHub Exploit DB Packet Storm

231099	7.5	危険	Softbb.net	-	SoftBB における SQL インジェクションの脆弱性	-	CVE-2006-4632	2012-12-20 18:02	2006-09-8	Show	GitHub Exploit DB Packet Storm

231100	6.5	警告	Softbb.net	-	SoftBB の admin/save_opt.php における任意の PHP コードを実行される脆弱性	-	CVE-2006-4631	2012-12-20 18:02	2006-09-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
350211	-	yabb	yabb	Cross-site scripting (XSS) vulnerability in YaBB.pl for YaBB 2.0 RC1 allows remote attackers to inject arbitrary web script or HTML via the username parameter in a usersrecentposts action.	NVD-CWE-Other	CVE-2005-0741	2008-09-6 05:47	2005-03-8	Show	GitHub Exploit DB Packet Storm

350212	-	utstarcom	ian-02ex_voip_ata	UTStarcom iAN-02EX VoIP Analog Terminal Adaptor (ATA) allows local users to bypass ATA access restrictions by dialing "*#26845#" and causing a device reset.	NVD-CWE-Other	CVE-2005-0745	2008-09-6 05:47	2005-03-9	Show	GitHub Exploit DB Packet Storm

350213	-	applyyourself	i-class	ApplyYourself i-Class allows remote attackers to obtain sensitive information about their own applications by reusing the hidden ID field, as demonstrated using the id parameter to ApplicantDecision.…	NVD-CWE-Other	CVE-2005-0747	2008-09-6 05:47	2005-03-8	Show	GitHub Exploit DB Packet Storm

350214	-	midnight_commander	midnight_commander	Buffer overflow in Midnight Commander (mc) 4.5.55 and earlier may allow attackers to execute arbitrary code.	NVD-CWE-Other	CVE-2005-0763	2008-09-6 05:47	2005-05-2	Show	GitHub Exploit DB Packet Storm

350215	-	marc_lehmann	rxvt-unicode	Buffer overflow in command.C for rxvt-unicode before 5.3 allows remote attackers to execute arbitrary code via a crafted file containing long escape sequences.	NVD-CWE-Other	CVE-2005-0764	2008-09-6 05:47	2005-05-2	Show	GitHub Exploit DB Packet Storm

350216	-	notify_technology	notifylink	NotifyLink, when configured for client key retrieval, allows remote attackers to obtain AES keys via a direct request to /hwp/get.asp, then uses a weak encryption scheme (fixed byte reordering) to pr…	NVD-CWE-Other	CVE-2005-0809	2008-09-6 05:47	2005-05-2	Show	GitHub Exploit DB Packet Storm

350217	-	notify_technology	notifylink	SQL injection vulnerability in NotifyLink before 3.0 allows remote attackers to execute arbitrary SQL commands via the URL.	NVD-CWE-Other	CVE-2005-0810	2008-09-6 05:47	2005-05-2	Show	GitHub Exploit DB Packet Storm

350218	-	notify_technology	notifylink	The web interface in NotifyLink 3.0 does not properly restrict access to functions that have been disabled in the GUI, which allows remote authenticated users to bypass intended restrictions via a di…	NVD-CWE-Other	CVE-2005-0811	2008-09-6 05:47	2005-05-2	Show	GitHub Exploit DB Packet Storm

350219	-	notify_technology	notifylink	The web interface in NotifyLink 3.0 displays passwords in cleartext on the administrative page, which could allow remote attackers or local users to obtain sensitive information.	NVD-CWE-Other	CVE-2005-0812	2008-09-6 05:47	2005-05-2	Show	GitHub Exploit DB Packet Storm

350220	-	initial_redirect	initial_redirect_squid_proxy_plug-in	Buffer overflow in Initial Redirect (ir) Squid Proxy Plug-In 0.1 and 0.2 may allow attackers to cause a denial of service and execute arbitrary code via unknown vectors.	NVD-CWE-Other	CVE-2005-0813	2008-09-6 05:47	2005-05-2	Show	GitHub Exploit DB Packet Storm