Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1141	9.1	緊急 Network	mindsdb	MindsDB	MindsDB IncのMindsDBにおける複数の脆弱性	CWE-22 CWE-23 CWE-36	CVE-2025-68472	2026-01-29 16:00	2026-01-12	Show	GitHub Exploit DB Packet Storm

1142	6.1	警告 Network	shopfiles	ebook store	shopfilesのWordPress用ebook storeにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2025-8113	2026-01-29 16:00	2025-08-16	Show	GitHub Exploit DB Packet Storm

1143	8.8	重要 Network	SAP	SAP HANA Database	SAPのSAP HANA Databaseにおける重要な機能に対する認証の欠如に関する脆弱性	CWE-306 重要な機能に対する認証の欠如解説	CVE-2026-0492	2026-01-29 16:00	2026-01-13	Show	GitHub Exploit DB Packet Storm

1144	9.9	緊急 Network	Cloudflare, Inc.	wrangler	Cloudflare, Inc.のwranglerにおける入力確認に関する脆弱性	CWE-20 不適切な入力確認	CVE-2026-0933	2026-01-29 15:59	2026-01-20	Show	GitHub Exploit DB Packet Storm

1145	8.8	重要 Network	PHPGurukul	News Portal Project in PHP and MySql	PHPGurukulのNews Portal Project in PHP and MySqlにおける複数の脆弱性	CWE-266 CWE-285	CVE-2026-1141	2026-01-29 15:59	2026-01-19	Show	GitHub Exploit DB Packet Storm

1146	6.5	警告 Network	PHPGurukul	News Portal Project in PHP and MySql	PHPGurukulのNews Portal Project in PHP and MySqlにおける複数の脆弱性	CWE-352 CWE-862	CVE-2026-1142	2026-01-29 15:59	2026-01-19	Show	GitHub Exploit DB Packet Storm

1147	3.3	低 Local	GPAC	GPAC	GPACにおける複数の脆弱性	CWE-404 CWE-476 CWE-476	CVE-2026-1415	2026-01-29 15:59	2026-01-26	Show	GitHub Exploit DB Packet Storm

1148	3.3	低 Local	GPAC	GPAC	GPACにおける複数の脆弱性	CWE-404 CWE-476 CWE-476	CVE-2026-1416	2026-01-29 15:59	2026-01-26	Show	GitHub Exploit DB Packet Storm

1149	3.3	低 Local	GPAC	GPAC	GPACにおける複数の脆弱性	CWE-404 CWE-476 CWE-476	CVE-2026-1417	2026-01-29 15:59	2026-01-26	Show	GitHub Exploit DB Packet Storm

1150	7.8	重要 Local	GPAC	GPAC	GPACにおける複数の脆弱性	CWE-119 CWE-787 CWE-787	CVE-2026-1418	2026-01-29 15:59	2026-01-26	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 24, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
283041	-	aspindir	hazirsite	SQL injection vulnerability in giris_yap.asp in Hazir Site 2.0 allows remote attackers to bypass authentication via the (1) k_a class or (2) sifre parameter.	NVD-CWE-Other	CVE-2006-7161	2018-10-17 01:29	2007-03-8	Show	GitHub Exploit DB Packet Storm

283042	-	phpbb	dimension	PHP remote file inclusion vulnerability in includes/functions.php in the Dimension module of phpBB allows remote attackers to execute arbitrary PHP code via a URL in the phpbb_root_path parameter. N…	NVD-CWE-Other	CVE-2006-7174	2018-10-17 01:29	2007-03-22	Show	GitHub Exploit DB Packet Storm

283043	-	madwifi	madwifi	MadWifi, when Ad-Hoc mode is used, allows remote attackers to cause a denial of service (system crash) via unspecified vectors that lead to a kernel panic in the ieee80211_input function, related to …	NVD-CWE-Other	CVE-2006-7177	2018-10-17 01:29	2007-03-30	Show	GitHub Exploit DB Packet Storm

283044	-	madwifi	madwifi	MadWifi before 0.9.3 does not properly handle reception of an AUTH frame by an IBSS node, which allows remote attackers to cause a denial of service (system crash) via a certain AUTH frame.	NVD-CWE-Other	CVE-2006-7178	2018-10-17 01:29	2007-03-30	Show	GitHub Exploit DB Packet Storm

283045	-	madwifi	madwifi	ieee80211_input.c in MadWifi before 0.9.3 does not properly process Channel Switch Announcement Information Elements (CSA IEs), which allows remote attackers to cause a denial of service (loss of com…	NVD-CWE-Other	CVE-2006-7179	2018-10-17 01:29	2007-03-30	Show	GitHub Exploit DB Packet Storm

283046	-	madwifi	madwifi	ieee80211_output.c in MadWifi before 0.9.3 sends unencrypted packets before WPA authentication succeeds, which allows remote attackers to obtain sensitive information (related to network structure), …	NVD-CWE-Other	CVE-2006-7180	2018-10-17 01:29	2007-03-30	Show	GitHub Exploit DB Packet Storm

283047	-	mnews	mnews	PHP remote file inclusion vulnerability in noticias.php in MNews 2.0 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the inc parameter.	NVD-CWE-Other	CVE-2006-7182	2018-10-17 01:29	2007-03-30	Show	GitHub Exploit DB Packet Storm

283048	-	microsoft	.net_framework	Microsoft ASP .NET Framework 2.0.50727.42 does not properly handle comment (/* */) enclosures, which allows remote attackers to bypass request filtering and conduct cross-site scripting (XSS) attacks…	NVD-CWE-Other	CVE-2006-7192	2018-10-17 01:29	2007-04-11	Show	GitHub Exploit DB Packet Storm

283049	-	adam_van_dongen	com_forum phpbb_component	PHP remote file inclusion vulnerability in download.php in the Adam van Dongen Forum (com_forum) component (aka phpBB component) 1.2.4RC3 and earlier for Mambo allows remote attackers to execute arbi…	CWE-20 Improper Input Validation	CVE-2006-7208	2018-10-17 01:29	2007-06-27	Show	GitHub Exploit DB Packet Storm

283050	-	adam_van_dongen	com_forum phpbb_component	requires that PHP's 'register_globals' setting be enabled	CWE-20 Improper Input Validation	CVE-2006-7208	2018-10-17 01:29	2007-06-27	Show	GitHub Exploit DB Packet Storm