Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
1681	8.8	重要 Network	WPDeveloper	BetterLinks	WPDeveloperのWordPress用BetterLinksにおける認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2023-45104	2026-01-26 19:41	2025-01-2	Show	GitHub Exploit DB Packet Storm

1682	8.8	重要 Network	byconsole	wooodt lite	byconsoleのWordPress用wooodt liteにおける認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2023-47179	2026-01-26 19:41	2025-01-2	Show	GitHub Exploit DB Packet Storm

1683	4.3	警告 Network	WPDeveloper	betterdocs	WPDeveloperのWordPress用betterdocsにおける認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2023-47762	2026-01-26 19:41	2024-12-9	Show	GitHub Exploit DB Packet Storm

1684	8.8	重要 Network	Automattic Inc.	Jetpack	Automattic Inc.のWordPress用Jetpackにおける認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2023-47788	2026-01-26 19:41	2024-06-19	Show	GitHub Exploit DB Packet Storm

1685	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける有効期限後のメモリの解放の欠如に関する脆弱性	CWE-401 有効期限後のメモリの解放の欠如	CVE-2023-53512	2026-01-26 19:41	2025-10-1	Show	GitHub Exploit DB Packet Storm

1686	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける有効期限後のメモリの解放の欠如に関する脆弱性	CWE-401 有効期限後のメモリの解放の欠如	CVE-2023-53514	2026-01-26 19:41	2025-10-1	Show	GitHub Exploit DB Packet Storm

1687	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける有効期限後のメモリの解放の欠如に関する脆弱性	CWE-401 有効期限後のメモリの解放の欠如	CVE-2023-53518	2026-01-26 19:41	2025-10-1	Show	GitHub Exploit DB Packet Storm

1688	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける有効期限後のメモリの解放の欠如に関する脆弱性	CWE-401 有効期限後のメモリの解放の欠如	CVE-2023-53527	2026-01-26 19:41	2025-10-1	Show	GitHub Exploit DB Packet Storm

1689	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux Kernelにおける有効期限後のメモリの解放の欠如に関する脆弱性	CWE-401 有効期限後のメモリの解放の欠如	CVE-2023-53529	2026-01-26 19:41	2025-10-1	Show	GitHub Exploit DB Packet Storm

1690	5.5	警告 Local	Linux	Linux Kernel	LinuxのLinux KernelにおけるNULL ポインタデリファレンスに関する脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2023-53531	2026-01-26 19:41	2025-10-1	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 26, 2026, 4:08 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
282921	-	sitedepth	sitedepth_cms	PHP remote file inclusion vulnerability in constants.php in SiteDepth CMS 3.01 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the SD_DIR parameter.	NVD-CWE-Other	CVE-2006-3793	2018-10-18 06:30	2006-07-24	Show	GitHub Exploit DB Packet Storm

282922	-	deluxebb	deluxebb	Multiple cross-site scripting (XSS) vulnerabilities in DeluxeBB before 1.08 allow remote attackers to inject arbitrary web script or HTML via the (1) membercookie cookie in header.php and the (2) red…	NVD-CWE-Other	CVE-2006-3795	2018-10-18 06:30	2006-07-24	Show	GitHub Exploit DB Packet Storm

282923	-	deluxebb	deluxebb	DeluxeBB 1.07 and earlier does not properly handle a username composed of a single space character, which allows remote authenticated users to login as the "space" user, post as the guest user, and b…	NVD-CWE-Other	CVE-2006-3796	2018-10-18 06:30	2006-07-24	Show	GitHub Exploit DB Packet Storm

282924	-	deluxebb	deluxebb	SQL injection vulnerability in DeluxeBB 1.07 and earlier allows remote attackers to bypass authentication, spoof users, and modify settings via the (1) memberpw and (2) membercookie cookies.	NVD-CWE-Other	CVE-2006-3797	2018-10-18 06:30	2006-07-24	Show	GitHub Exploit DB Packet Storm

282925	-	deluxebb	deluxebb	DeluxeBB 1.07 and earlier allows remote attackers to overwrite the (1) _GET, (2) _POST, (3) _ENV, and (4) _SERVER variables via the _COOKIE (aka COOKIE) variable, which can overwrite the other variab…	NVD-CWE-Other	CVE-2006-3798	2018-10-18 06:30	2006-07-24	Show	GitHub Exploit DB Packet Storm

282926	-	deluxebb	deluxebb	DeluxeBB 1.07 and earlier allows remote attackers to bypass SQL injection protection mechanisms via the login variable and certain other variables, by using lowercase "union select" or possibly other…	NVD-CWE-Other	CVE-2006-3799	2018-10-18 06:30	2006-07-24	Show	GitHub Exploit DB Packet Storm

282927	-	amazing_flash_commerce	afcommerce_shopping_cart	Cross-site scripting (XSS) vulnerability in Amazing Flash AFCommerce Shopping Cart allows remote attackers to inject arbitrary web script or HTML via the "new review" text box.	NVD-CWE-Other	CVE-2006-3800	2018-10-18 06:30	2006-07-24	Show	GitHub Exploit DB Packet Storm

282928	-	mozilla	firefox seamonkey	Mozilla Firefox 1.5 before 1.5.0.5 and SeaMonkey before 1.0.3 does not properly clear a JavaScript reference to a frame or window, which leaves a pointer to a deleted object that allows remote attack…	NVD-CWE-Other	CVE-2006-3801	2018-10-18 06:30	2006-07-28	Show	GitHub Exploit DB Packet Storm

282929	-	mozilla	firefox seamonkey thunderbird	Mozilla Firefox before 1.5.0.5, Thunderbird before 1.5.0.5, and SeaMonkey before 1.0.3 allows remote attackers to hijack native DOM methods from objects in another domain and conduct cross-site scrip…	NVD-CWE-Other	CVE-2006-3802	2018-10-18 06:30	2006-07-28	Show	GitHub Exploit DB Packet Storm

282930	-	mozilla	firefox seamonkey thunderbird	Race condition in the JavaScript garbage collection in Mozilla Firefox 1.5 before 1.5.0.5, Thunderbird before 1.5.0.5, and SeaMonkey before 1.0.3 might allow remote attackers to execute arbitrary cod…	NVD-CWE-Other	CVE-2006-3803	2018-10-18 06:30	2006-07-28	Show	GitHub Exploit DB Packet Storm