Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 1, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252901 4.3 警告 マイクロソフト - Microsoft Internet Explorer の CSS 実装における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2002-2435 2011-12-12 16:11 2011-12-7 Show GitHub Exploit DB Packet Storm
252902 6.8 警告 レッドハット - FreeIPA におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2011-3636 2011-12-12 11:42 2011-12-8 Show GitHub Exploit DB Packet Storm
252903 4.3 警告 Vtiger - vtiger CRM におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-4680 2011-12-12 11:39 2011-12-7 Show GitHub Exploit DB Packet Storm
252904 4 警告 Vtiger - vtiger CRM におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-4679 2011-12-12 11:39 2011-12-7 Show GitHub Exploit DB Packet Storm
252905 5 警告 Novell - Novell Messenger および Novell GroupWise Messenger における任意のメモリ配置を読み取られる脆弱性 CWE-200
情報漏えい 		CVE-2011-3179 2011-12-12 11:37 2011-10-25 Show GitHub Exploit DB Packet Storm
252906 10 危険 Novell - Novell ZENworks Asset Management の rtrlet コンポーネントにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2011-2653 2011-12-12 11:36 2011-11-2 Show GitHub Exploit DB Packet Storm
252907 7.8 危険 日立 - JP1/Cm2/Network Node Manager i におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		- 2011-12-9 16:35 2011-10-12 Show GitHub Exploit DB Packet Storm
252908 5 警告 Opera Software ASA - Opera におけるサービス運用妨害 (CPU およびメモリ消費) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-4687 2011-12-9 16:07 2011-12-7 Show GitHub Exploit DB Packet Storm
252909 5 警告 Opera Software ASA - Opera の Web Workers 実装におけるサービス運用妨害 (アプリケーションクラッシュ) の脆弱性 CWE-noinfo
情報不足 		CVE-2011-4686 2011-12-9 16:06 2011-12-7 Show GitHub Exploit DB Packet Storm
252910 5 警告 Opera Software ASA - Opera の Dragonfly におけるサービス運用妨害 (アプリケーションクラッシュ) の脆弱性 CWE-20
不適切な入力確認 		CVE-2011-4685 2011-12-9 16:05 2011-12-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
345811 - dragoran portal_module SQL injection vulnerability index.php in Dragoran Portal module 1.3 for Invision Power Board (IPB) allows remote attackers to execute arbitrary SQL commands via the site parameter. NOTE: the provena… NVD-CWE-Other
CVE-2006-0520 2017-07-20 10:29 2006-02-2 Show GitHub Exploit DB Packet Storm
345812 - symantec sygate_management_server SQL injection vulnerability in the Authentication Servlet in Symantec Sygate Management Server (SMS) version 4.1 build 1417 and earlier allows remote attackers to execute arbitrary SQL commands and b… NVD-CWE-Other
CVE-2006-0522 2017-07-20 10:29 2006-02-2 Show GitHub Exploit DB Packet Storm
345813 - mybulletinboard mybulletinboard SQL injection vulnerability in global.php in MyBB before 1.03 allows remote attackers to execute arbitrary SQL commands via the templatelist variable. NVD-CWE-Other
CVE-2006-0523 2017-07-20 10:29 2006-02-2 Show GitHub Exploit DB Packet Storm
345814 - ashwebstudio ashnews Cross-site scripting (XSS) vulnerability in ashnews.php in Derek Ashauer ashNews 0.83 allows remote attackers to inject arbitrary web script or HTML via the id parameter. NVD-CWE-Other
CVE-2006-0524 2017-07-20 10:29 2006-02-2 Show GitHub Exploit DB Packet Storm
345815 - media2_cms shop Cross-site scripting (XSS) vulnerability in resultat.asp in SoftMaker Shop allows remote attackers to inject arbitrary web script or HTML via a strSok parameter containing a javascript: URI in an IMG… NVD-CWE-Other
CVE-2006-0532 2017-07-20 10:29 2006-02-4 Show GitHub Exploit DB Packet Storm
345816 - cpanel cpanel Cross-site scripting (XSS) vulnerability in webmailaging.cgi in cPanel allows remote attackers to inject arbitrary web script or HTML via the numdays parameter. CWE-79
Cross-site Scripting 		CVE-2006-0533 2017-07-20 10:29 2006-02-4 Show GitHub Exploit DB Packet Storm
345817 - ubbcentral ubb.threads SQL injection vulnerability in showflat.php in Groupee (formerly known as Infopop) UBB.threads 6.3 and earlier allows remote attackers to execute arbitrary SQL commands via the Number parameter. NVD-CWE-Other
CVE-2006-0545 2017-07-20 10:29 2006-02-4 Show GitHub Exploit DB Packet Storm
345818 - oracle database_server Oracle Database 8i, 9i, and 10g allow remote authenticated users to execute arbitrary SQL statements in the context of the SYS user and bypass audit logging, including statements to create new privil… NVD-CWE-Other
CVE-2006-0547 2017-07-20 10:29 2006-02-4 Show GitHub Exploit DB Packet Storm
345819 - oracle database_server SQL injection vulnerability in the Oracle Text component of Oracle Database 10g, and possibly earlier versions, might allow remote attackers to execute arbitrary SQL commands via unknown vectors. NOT… NVD-CWE-Other
CVE-2006-0548 2017-07-20 10:29 2006-02-4 Show GitHub Exploit DB Packet Storm
345820 - oracle oracle_client Buffer overflow in an unspecified Oracle Client utility might allow remote attackers to execute arbitrary code or cause a denial of service. NOTE: due to the lack of relevant details from the Oracle… NVD-CWE-Other
CVE-2006-0550 2017-07-20 10:29 2006-02-4 Show GitHub Exploit DB Packet Storm