Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 6, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
249481 4.3 警告 NetWebLogic - WordPress 用 Login With Ajax プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2759 2012-05-24 13:38 2012-05-22 Show GitHub Exploit DB Packet Storm
249482 4.3 警告 Schneider Electric - Schneider Electric Kerweb および Kerwin におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1990 2012-05-24 12:32 2012-05-22 Show GitHub Exploit DB Packet Storm
249483 7.5 危険 Thomas Abeel - Simple PHP Agenda の engine.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-2925 2012-05-23 19:35 2012-05-21 Show GitHub Exploit DB Packet Storm
249484 7.5 危険 HyperMethod IBS - Hypermethod eLearning Server の admin/setup.inc.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2012-2924 2012-05-23 19:35 2012-05-21 Show GitHub Exploit DB Packet Storm
249485 7.5 危険 HyperMethod IBS - Hypermethod eLearning Server の news.php4 における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-2923 2012-05-23 19:34 2012-05-21 Show GitHub Exploit DB Packet Storm
249486 5 警告 Drupal - Drupal の includes/bootstrap.inc 内の request_path 関数における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2012-2922 2012-05-23 19:33 2012-05-21 Show GitHub Exploit DB Packet Storm
249487 3.5 注意 Geoff Davies - Drupal 用 Contact Forms モジュールにおけるモジュールの設定を変更される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-2340 2012-05-23 19:12 2012-05-21 Show GitHub Exploit DB Packet Storm
249488 4.3 警告 Nancy Wichmann - Drupal 用 Glossary モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2339 2012-05-23 19:00 2012-05-21 Show GitHub Exploit DB Packet Storm
249489 2.6 注意 Ishmael Sanchez - Drupal 用 Aberdeen テーマの aberdeen_breadcrumb 関数におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2907 2012-05-23 18:57 2012-05-21 Show GitHub Exploit DB Packet Storm
249490 5 警告 mark pilgrim - Universal Feed Parser におけるサービス運用妨害 (メモリ消費) の脆弱性 CWE-399
リソース管理の問題 		CVE-2012-2921 2012-05-23 18:50 2012-05-2 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 6, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
346461 - emc retrospect EMC Retrospect for Windows 6.5 before 6.5.382, 7.0 before 7.0.344, and 7.5 before 7.5.1.105 allows local users to execute arbitrary code by replacing the Retrospect.exe file, possibly due to improper… NVD-CWE-Other
CVE-2006-2155 2017-07-20 10:31 2006-05-3 Show GitHub Exploit DB Packet Storm
346462 - emc retrospect Retrospect 7.5: Apply Retrospect Driver Update 7.5.1.105. http://ftp.dantz.com/pub/updates/ru751105.exe Retrospect 7.0: Apply Application Security Update 7.0.344 (requires Retrospect 7.0.326 or… NVD-CWE-Other
CVE-2006-2155 2017-07-20 10:31 2006-05-3 Show GitHub Exploit DB Packet Storm
346463 - plogger plogger SQL injection vulnerability in gallery.php in Plogger Beta 2.1 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter, when the level is set to "slideshow". NOTE:… CWE-89
SQL Injection 		CVE-2006-2157 2017-07-20 10:31 2006-05-3 Show GitHub Exploit DB Packet Storm
346464 - stadtaus guestbook_script Dynamic variable evaluation vulnerability in index.php in Stadtaus Guestbook Script 1.7 and earlier, when register_globals is enabled, allows remote attackers to modify arbitrary program variables vi… NVD-CWE-Other
CVE-2006-2158 2017-07-20 10:31 2006-05-3 Show GitHub Exploit DB Packet Storm
346465 - stadtaus guestbook_script Download Guestbook Script 1.9 NVD-CWE-Other
CVE-2006-2158 2017-07-20 10:31 2006-05-3 Show GitHub Exploit DB Packet Storm
346466 - desert_dog_software pinnacle_cart Cross-site scripting (XSS) vulnerability in index.php in Pinnacle Cart 3.33 and earlier allows remote attackers to inject arbitrary web script or HTML via the setbackurl parameter. NVD-CWE-Other
CVE-2006-2163 2017-07-20 10:31 2006-05-4 Show GitHub Exploit DB Packet Storm
346467 - pentasoft_corp. avactis_shopping_cart Multiple SQL injection vulnerabilities in Avactis Shopping Cart 0.1.2 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) category_id parameter in (a) store_special_offer… NVD-CWE-Other
CVE-2006-2164 2017-07-20 10:31 2006-05-4 Show GitHub Exploit DB Packet Storm
346468 - pentasoft_corp. avactis_shopping_cart Multiple cross-site scripting (XSS) vulnerabilities in Avactis Shopping Cart 0.1.2 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) category_id parameter in (a) s… NVD-CWE-Other
CVE-2006-2165 2017-07-20 10:31 2006-05-4 Show GitHub Exploit DB Packet Storm
346469 - best_practical_solutions request_tracker RT: Request Tracker 3.5.HEAD allows remote attackers to obtain sensitive information via the Rows parameter in Dist/Display.html, which reveals the installation path in an error message. NVD-CWE-Other
CVE-2006-2169 2017-07-20 10:31 2006-05-4 Show GitHub Exploit DB Packet Storm
346470 - argosoft ftp_server Buffer overflow in ArgoSoft FTP Server 1.4.3.6 allows remote attackers to execute arbitrary code via Unicode in the RNTO command, as demonstrated by the Infigo FTPStress Fuzzer. NVD-CWE-Other
CVE-2006-2170 2017-07-20 10:31 2006-05-4 Show GitHub Exploit DB Packet Storm