Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 29, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
248301 9.3 危険 シスコシステムズ - CUCM の CTL Provider サービスにおける任意のコードを実行される脆弱性 - CVE-2006-5277 2012-06-26 15:37 2007-07-11 Show GitHub Exploit DB Packet Storm
248302 4.3 警告 gcontact - Gcontact の index.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-5299 2012-06-26 15:37 2006-10-17 Show GitHub Exploit DB Packet Storm
248303 5 警告 ClamAV - ClamAV におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-5295 2012-06-26 15:37 2006-10-16 Show GitHub Exploit DB Packet Storm
248304 7.5 危険 exhibit engine - Exhibit Engine の photo_comment.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5292 2012-06-26 15:37 2006-10-16 Show GitHub Exploit DB Packet Storm
248305 7.5 危険 alex - Download-Engine の admin/includes/spaw/spaw_control.class.php におけるにおける PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2006-5291 2012-06-26 15:37 2006-10-16 Show GitHub Exploit DB Packet Storm
248306 10 危険 シスコシステムズ - Cisco 2700 Series Wireless Location Appliances における管理者権限を取得される脆弱性 - CVE-2006-5288 2012-06-26 15:37 2006-10-12 Show GitHub Exploit DB Packet Storm
248307 6.8 警告 cuttlefish multimedia ltd. - Leicestershire communityPortals における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2006-5280 2012-06-26 15:37 2006-10-13 Show GitHub Exploit DB Packet Storm
248308 7.5 危険 compteur - Compteur の compteur.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5260 2012-06-26 15:37 2006-10-12 Show GitHub Exploit DB Packet Storm
248309 7.5 危険 compteur - Compteur の param_editor.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5259 2012-06-26 15:37 2006-10-12 Show GitHub Exploit DB Packet Storm
248310 5.1 警告 asbru software - Asbru Web Content Management の spell checking コンポーネントにおける任意のコマンドを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2006-5258 2012-06-26 15:37 2006-10-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 29, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
350951 - - - Cross-site scripting (XSS) vulnerability in the search module in sCssBoard 1.2 and 1.12, and earlier versions, allows remote attackers to inject arbitrary web script or HTML via the search_term param… NVD-CWE-Other
CVE-2005-3837 2011-03-8 11:27 2005-11-27 Show GitHub Exploit DB Packet Storm
350952 - isolsoft support_center Multiple SQL injection vulnerabilities in search.php in IsolSoft Support Center 2.2 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) lorder, (2) Priority, (3) Status, … NVD-CWE-Other
CVE-2005-3838 2011-03-8 11:27 2005-11-27 Show GitHub Exploit DB Packet Storm
350953 - supportpro supportdesk Cross-site scripting (XSS) vulnerability in SupportPRO Supportdesk allows remote attackers to inject arbitrary web script or HTML via the (1) post tickers and (2) view tickets options. NVD-CWE-Other
CVE-2005-3839 2011-03-8 11:27 2005-11-27 Show GitHub Exploit DB Packet Storm
350954 - kplaylist kplaylist Cross-site scripting (XSS) vulnerability in kPlaylist 1.6 (build 400), and possibly other versions, allows remote attackers to inject arbitrary web script or HTML via the searchfor search parameter. NVD-CWE-Other
CVE-2005-3841 2011-03-8 11:27 2005-11-27 Show GitHub Exploit DB Packet Storm
350955 - pdjkeelan.com pdjk-support_suite SQL injection vulnerability in index.php in pdjk-support suite 1.1a and earlier allows remote attackers to execute arbitrary SQL commands via the (1) rowstart, (2) news_id, and (3) faq_id parameters. NVD-CWE-Other
CVE-2005-3842 2011-03-8 11:27 2005-11-27 Show GitHub Exploit DB Packet Storm
350956 - phpwordpress php_news_and_article_manager SQL injection vulnerability in phpWordPress PHP News and Article Manager 3.0 allows remote attackers to execute arbitrary SQL commands via the (1) poll and (2) category parameters to index.php, and (… NVD-CWE-Other
CVE-2005-3844 2011-03-8 11:27 2005-11-27 Show GitHub Exploit DB Packet Storm
350957 - onlinetechtools.com okbsys_lite Cross-site scripting (XSS) vulnerability in search.asp in Online Knowledge Base System (OKBSYS) Lite Edition 1.0 allows remote attackers to inject arbitrary web script or HTML via hex-encoded values … NVD-CWE-Other
CVE-2005-3850 2011-03-8 11:27 2005-11-27 Show GitHub Exploit DB Packet Storm
350958 - onlinetechtools.com oasys_lite Cross-site scripting (XSS) vulnerability in search.asp in Online Attendance System (OASYS) Lite 1.0 allows remote attackers to inject arbitrary web script or HTML via certain search parameters, possi… NVD-CWE-Other
CVE-2005-3851 2011-03-8 11:27 2005-11-27 Show GitHub Exploit DB Packet Storm
350959 - solucija snews SQL injection vulnerability in snews.php in sNews 1.3 and earlier allows remote attackers to execute arbitrary SQL commands via the (1) id and (2) category parameters to index.php. NVD-CWE-Other
CVE-2005-3853 2011-03-8 11:27 2005-11-27 Show GitHub Exploit DB Packet Storm
350960 - easybe 1-2-3_music_store SQL injection vulnerability in process.php in 1-2-3 music store allows remote attackers to execute arbitrary SQL commands via the AlbumID parameter. NVD-CWE-Other
CVE-2005-3855 2011-03-8 11:27 2005-11-27 Show GitHub Exploit DB Packet Storm