Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
211531 5 警告 Bulb Security LLC - Bulb Security Smartphone Pentest Framework における平文のデータベースパスワードを取得される脆弱性 CWE-255
CWE-264
CVE-2012-5696 2014-10-27 16:49 2012-11-15 Show GitHub Exploit DB Packet Storm
211532 6.8 警告 Bulb Security LLC - Bulb Security Smartphone Pentest Framework におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-5695 2014-10-27 16:49 2012-11-15 Show GitHub Exploit DB Packet Storm
211533 6.8 警告 Bulb Security LLC - Bulb Security Smartphone Pentest Framework における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-5694 2014-10-27 16:48 2012-11-15 Show GitHub Exploit DB Packet Storm
211534 3.5 注意 EspoCRM - EspoCRM におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-8330 2014-10-27 16:42 2014-08-10 Show GitHub Exploit DB Packet Storm
211535 10 危険 Schrack - Schrack Technik microControl のファームウェアにおけるアクセスデータを取得される脆弱性 CWE-287
不適切な認証 		CVE-2014-8329 2014-10-27 16:05 2014-07-10 Show GitHub Exploit DB Packet Storm
211536 7.5 危険 (複数のベンダ) - 複数の NAT-PMP デバイスが WAN 側から操作可能な問題 - - 2014-10-27 14:46 2014-10-23 Show GitHub Exploit DB Packet Storm
211537 4.3 警告 The Jamroom Network - Jamroom の Search モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-5098 2014-10-27 14:43 2014-07-23 Show GitHub Exploit DB Packet Storm
211538 5 警告 Status2K.com - Status2k における設定情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2014-5094 2014-10-27 14:42 2014-06-20 Show GitHub Exploit DB Packet Storm
211539 7.5 危険 Innovative Interfaces Inc. - Innovative vtls-Virtua の web_reports/cgi-bin/InfoStation.cgi のログインにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-2081 2014-10-27 14:42 2014-08-22 Show GitHub Exploit DB Packet Storm
211540 4.3 警告 Achievo - Achievo の include.php における クロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-5866 2014-10-27 14:41 2012-12-5 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 23, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
251 6.5 MEDIUM
Network 		- - A weakness has been identified in liangliangyy DjangoBlog up to 2.1.0.0. This impacts an unknown function of the file blog/views.py of the component Clean Endpoint. This manipulation causes missing a… CWE-287
CWE-306
Improper Authentication
Missing Authentication for Critical Function 		CVE-2026-6579 2026-04-20 07:16 2026-04-20 Show GitHub Exploit DB Packet Storm
252 5.6 MEDIUM
Network 		- - A security flaw has been discovered in liangliangyy DjangoBlog up to 2.1.0.0. This affects an unknown function of the file djangoblog/settings.py of the component Setting Handler. The manipulation of… CWE-259
CWE-798
Use of Hard-coded Password 
 Use of Hard-coded Credentials 		CVE-2026-6578 2026-04-20 07:16 2026-04-20 Show GitHub Exploit DB Packet Storm
253 7.3 HIGH
Network 		- - A vulnerability was identified in liangliangyy DjangoBlog up to 2.1.0.0. The impacted element is an unknown function of the file owntracks/views.py of the component logtracks Endpoint. The manipulati… CWE-287
CWE-306
Improper Authentication
Missing Authentication for Critical Function 		CVE-2026-6577 2026-04-20 05:16 2026-04-20 Show GitHub Exploit DB Packet Storm
254 6.3 MEDIUM
Network 		- - A vulnerability was determined in liangliangyy DjangoBlog up to 2.1.0.0. The affected element is the function CommandHandler of the file servermanager/api/commonapi.py of the component WeChat Bot Int… CWE-74
CWE-77
Injection
Command Injection 		CVE-2026-6576 2026-04-20 04:16 2026-04-20 Show GitHub Exploit DB Packet Storm
255 7.3 HIGH
Network 		- - A vulnerability has been found in osuuu LightPicture up to 1.2.2. This issue affects some unknown processing of the file /public/install/lp.sql of the component API Upload Endpoint. Such manipulation… CWE-259
CWE-798
Use of Hard-coded Password 
 Use of Hard-coded Credentials 		CVE-2026-6574 2026-04-19 23:16 2026-04-19 Show GitHub Exploit DB Packet Storm
256 6.3 MEDIUM
Network 		- - A vulnerability was detected in PHPEMS 11.0. This affects the function temppage of the file /app/exam/controller/exams.master.php of the component Instant Exam Creation Handler. The manipulation of t… CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2026-6573 2026-04-19 22:16 2026-04-19 Show GitHub Exploit DB Packet Storm
257 5.6 MEDIUM
Network 		- - A security vulnerability has been detected in Collabora KodExplorer up to 4.52. Affected by this issue is some unknown functionality of the file /app/controller/share.class.php of the component fileU… CWE-266
CWE-285
 Incorrect Privilege Assignment
Improper Authorization 		CVE-2026-6572 2026-04-19 22:16 2026-04-19 Show GitHub Exploit DB Packet Storm
258 6.3 MEDIUM
Network 		- - A weakness has been identified in kodcloud KodExplorer up to 4.52. Affected by this vulnerability is the function roleGroupAction of the file /app/controller/systemRole.class.php. Executing a manipul… CWE-285
CWE-639
Improper Authorization
 Authorization Bypass Through User-Controlled Key 		CVE-2026-6571 2026-04-19 21:16 2026-04-19 Show GitHub Exploit DB Packet Storm
259 2.7 LOW
Network 		- - A security flaw has been discovered in kodcloud KodExplorer up to 4.52. Affected is the function initInstall of the file /app/controller/systemMember.class.php. Performing a manipulation of the argum… CWE-285
CWE-639
Improper Authorization
 Authorization Bypass Through User-Controlled Key 		CVE-2026-6570 2026-04-19 21:16 2026-04-19 Show GitHub Exploit DB Packet Storm
260 7.3 HIGH
Network 		- - A vulnerability was identified in kodcloud KodExplorer up to 4.52. This impacts the function fileGet of the file /app/controller/share.class.php of the component fileGet Endpoint. Such manipulation o… CWE-287
Improper Authentication 		CVE-2026-6569 2026-04-19 20:16 2026-04-19 Show GitHub Exploit DB Packet Storm