Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1111 5.3 警告
Network 		アップル iOS
iPadOS 		アップルのiPadOS等の複数製品における情報漏えいに関する脆弱性 CWE-200
情報漏えい 		CVE-2025-24089 2026-01-29 16:01 2026-01-16 Show GitHub Exploit DB Packet Storm
1112 3.3
Local 		アップル iOS
iPadOS 		アップルのiPadOS等の複数製品における複数の脆弱性 CWE-200
CWE-284
CVE-2025-24090 2026-01-29 16:01 2026-01-16 Show GitHub Exploit DB Packet Storm
1113 7.3 重要
Network 		Apache Software Foundation Apache Hadoop Apache Software FoundationのApache Hadoopにおける境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2025-27821 2026-01-29 16:01 2026-01-26 Show GitHub Exploit DB Packet Storm
1114 7.5 重要
Network 		Apache Software Foundation Linkis Apache Software FoundationのLinkisにおける複数の脆弱性 CWE-20
CWE-22
CVE-2025-29847 2026-01-29 16:01 2026-01-19 Show GitHub Exploit DB Packet Storm
1115 3.3
Local 		アップル Xcode アップルのXcodeにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2025-31186 2026-01-29 16:01 2026-01-16 Show GitHub Exploit DB Packet Storm
1116 4.3 警告
Network 		webinarpress webinarpress WordPress用webinarpressにおける認証の欠如に関する脆弱性 CWE-862
認証の欠如 		CVE-2025-31882 2026-01-29 16:01 2025-04-1 Show GitHub Exploit DB Packet Storm
1117 4.8 警告
Network 		webinarpress webinarpress WordPress用webinarpressにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2025-31883 2026-01-29 16:01 2025-04-1 Show GitHub Exploit DB Packet Storm
1118 4.7 警告
Network 		webinarpress webinarpress WordPress用webinarpressにおけるオープンリダイレクトの脆弱性 CWE-601
オープンリダイレクト 		CVE-2025-32693 2026-01-29 16:01 2025-04-9 Show GitHub Exploit DB Packet Storm
1119 4.3 警告
Network 		WPDeveloper Essential Addons for Elementor WPDeveloperのWordPress用Essential Addons for Elementorにおける認可されていない制御領域への重要情報の漏えいに関する脆弱性 CWE-497
認可されていない制御領域への重要情報の漏えい 		CVE-2025-39589 2026-01-29 16:01 2025-04-16 Show GitHub Exploit DB Packet Storm
1120 6.5 警告
Network 		WPDeveloper Essential Addons for Elementor WPDeveloperのWordPress用Essential Addons for Elementorにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2025-39590 2026-01-29 16:00 2025-04-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 24, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
283041 - aspindir hazirsite SQL injection vulnerability in giris_yap.asp in Hazir Site 2.0 allows remote attackers to bypass authentication via the (1) k_a class or (2) sifre parameter. NVD-CWE-Other
CVE-2006-7161 2018-10-17 01:29 2007-03-8 Show GitHub Exploit DB Packet Storm
283042 - phpbb dimension PHP remote file inclusion vulnerability in includes/functions.php in the Dimension module of phpBB allows remote attackers to execute arbitrary PHP code via a URL in the phpbb_root_path parameter. N… NVD-CWE-Other
CVE-2006-7174 2018-10-17 01:29 2007-03-22 Show GitHub Exploit DB Packet Storm
283043 - madwifi madwifi MadWifi, when Ad-Hoc mode is used, allows remote attackers to cause a denial of service (system crash) via unspecified vectors that lead to a kernel panic in the ieee80211_input function, related to … NVD-CWE-Other
CVE-2006-7177 2018-10-17 01:29 2007-03-30 Show GitHub Exploit DB Packet Storm
283044 - madwifi madwifi MadWifi before 0.9.3 does not properly handle reception of an AUTH frame by an IBSS node, which allows remote attackers to cause a denial of service (system crash) via a certain AUTH frame. NVD-CWE-Other
CVE-2006-7178 2018-10-17 01:29 2007-03-30 Show GitHub Exploit DB Packet Storm
283045 - madwifi madwifi ieee80211_input.c in MadWifi before 0.9.3 does not properly process Channel Switch Announcement Information Elements (CSA IEs), which allows remote attackers to cause a denial of service (loss of com… NVD-CWE-Other
CVE-2006-7179 2018-10-17 01:29 2007-03-30 Show GitHub Exploit DB Packet Storm
283046 - madwifi madwifi ieee80211_output.c in MadWifi before 0.9.3 sends unencrypted packets before WPA authentication succeeds, which allows remote attackers to obtain sensitive information (related to network structure), … NVD-CWE-Other
CVE-2006-7180 2018-10-17 01:29 2007-03-30 Show GitHub Exploit DB Packet Storm
283047 - mnews mnews PHP remote file inclusion vulnerability in noticias.php in MNews 2.0 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the inc parameter. NVD-CWE-Other
CVE-2006-7182 2018-10-17 01:29 2007-03-30 Show GitHub Exploit DB Packet Storm
283048 - microsoft .net_framework Microsoft ASP .NET Framework 2.0.50727.42 does not properly handle comment (/* */) enclosures, which allows remote attackers to bypass request filtering and conduct cross-site scripting (XSS) attacks… NVD-CWE-Other
CVE-2006-7192 2018-10-17 01:29 2007-04-11 Show GitHub Exploit DB Packet Storm
283049 - adam_van_dongen com_forum
phpbb_component 		PHP remote file inclusion vulnerability in download.php in the Adam van Dongen Forum (com_forum) component (aka phpBB component) 1.2.4RC3 and earlier for Mambo allows remote attackers to execute arbi… CWE-20
 Improper Input Validation  		CVE-2006-7208 2018-10-17 01:29 2007-06-27 Show GitHub Exploit DB Packet Storm
283050 - adam_van_dongen com_forum
phpbb_component 		requires that PHP's 'register_globals' setting be enabled CWE-20
 Improper Input Validation  		CVE-2006-7208 2018-10-17 01:29 2007-06-27 Show GitHub Exploit DB Packet Storm