Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
227061	7.5	危険	portix-php	-	Portix-PHP の login コンポーネントにおける SQL インジェクションの脆弱性	-	CVE-2006-6935	2012-12-20 18:18	2007-01-16	Show	GitHub Exploit DB Packet Storm

227062	6.8	警告	portix-php	-	Portix-PHP におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-6934	2012-12-20 18:18	2007-01-16	Show	GitHub Exploit DB Packet Storm

227063	5	警告	Snort.org	-	Snort におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-6931	2012-12-20 18:18	2007-01-16	Show	GitHub Exploit DB Packet Storm

227064	6.8	警告	sage-mozdev	-	Firefox Sage エクステンションにおけるローカルコンテキストの任意の Javascript を実行される脆弱性	-	CVE-2006-6919	2012-12-20 18:18	2007-01-11	Show	GitHub Exploit DB Packet Storm

227065	7.5	危険	phpMyFAQ	-	phpMyFAQ における任意の PHP スクリプトをアップロードされる脆弱性	-	CVE-2006-6913	2012-12-20 18:18	2006-12-15	Show	GitHub Exploit DB Packet Storm

227066	7.5	危険	phpMyFAQ	-	phpMyFAQ における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2006-6912	2012-12-20 18:02	2006-12-15	Show	GitHub Exploit DB Packet Storm

227067	10	危険	東芝	-	Toshiba Bluetooth スタックにおける管理者アクセス権限を取得される脆弱性	-	CVE-2006-6903	2012-12-20 18:02	2006-12-31	Show	GitHub Exploit DB Packet Storm

227068	5.4	警告	widcomm	-	Widcomm BTW におけるディレクトリトラバーサルの脆弱性	-	CVE-2006-6897	2012-12-20 18:02	2006-12-31	Show	GitHub Exploit DB Packet Storm

227069	5.4	警告	plantronic	-	Plantronic Headset の Bluetooth スタックにおける許可されていない組み合わせ操作を実行される脆弱性	-	CVE-2006-6896	2012-12-20 18:02	2006-12-31	Show	GitHub Exploit DB Packet Storm

227070	2.9	注意	sony ericsson	-	Sony Ericsson T60 の Bluetooth スタックにおける許可されていない問い合わせ応答へのアクセス権を取得される脆弱性	-	CVE-2006-6895	2012-12-20 18:02	2006-12-31	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 24, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
249201	-		-	-	Netgear R8500 v1.0.2.160 was discovered to contain multiple stack overflow vulnerabilities in the component ipv6_fix.cgi via the ipv6_wan_ipaddr, ipv6_lan_ipaddr, ipv6_wan_length, and ipv6_lan_length…	-	CVE-2024-50994	2024-11-6 02:35	2024-11-6	Show	GitHub Exploit DB Packet Storm

249202	-		-	-	Netgear R8500 v1.0.2.160 was discovered to contain a command injection vulnerability in the sysNewPasswd parameter at admin_account.cgi. This vulnerability allows attackers to execute arbitrary OS co…	-	CVE-2024-50993	2024-11-6 02:35	2024-11-6	Show	GitHub Exploit DB Packet Storm

249203	-		-	-	Insufficiently protected credentials in DAV server settings in 1C-Bitrix Bitrix24 23.300.100 allows remote administrators to read Exchange account passwords via HTTP GET request.	-	CVE-2024-34891	2024-11-6 02:35	2024-11-5	Show	GitHub Exploit DB Packet Storm

249204	-		-	-	Insufficiently protected credentials in SMTP server settings in 1C-Bitrix Bitrix24 23.300.100 allows remote administrators to read SMTP accounts passwords via HTTP GET request.	-	CVE-2024-34885	2024-11-6 02:35	2024-11-5	Show	GitHub Exploit DB Packet Storm

249205	-		-	-	Incomplete cleanup in the ASP may expose the Master Encryption Key (MEK) to a privileged attacker with access to the BIOS menu or UEFI shell and a memory exfiltration vulnerability, potentially resul…	-	CVE-2023-20518	2024-11-6 02:35	2024-08-14	Show	GitHub Exploit DB Packet Storm

249206	7.8	HIGH Local	iconics mitsubishielectric	genesis64 mc_works64	Incorrect Default Permissions vulnerability in GenBroker32, which is included in the installers for ICONICS GENESIS64 version 10.97.3 and prior, Mitsubishi Electric GENESIS64 version 10.97.3 and prio…	CWE-276 Incorrect Default Permissions	CVE-2024-7587	2024-11-6 02:24	2024-10-23	Show	GitHub Exploit DB Packet Storm

249207	-		-	-	System logs could be accessed through web management application due to a lack of access control. An attacker can obtain the following sensitive information: • Wi-Fi access point credentials t…	-	CVE-2023-29114	2024-11-6 02:15	2024-11-6	Show	GitHub Exploit DB Packet Storm

249208	7.8	HIGH Local	okta	verify	The Okta Device Access features, provided by the Okta Verify agent for Windows, provides access to the OktaDeviceAccessPipe, which enables attackers in a compromised device to retrieve passwords asso…	CWE-276 Incorrect Default Permissions	CVE-2024-9191	2024-11-6 02:06	2024-11-2	Show	GitHub Exploit DB Packet Storm

249209	8.8	HIGH Network	esafenet	cdg	A vulnerability was found in ESAFENET CDG 5. It has been classified as critical. Affected is the function docHistory of the file /com/esafenet/servlet/fileManagement/FileDirectoryService.java. The ma…	CWE-89 SQL Injection	CVE-2024-10594	2024-11-6 02:05	2024-11-1	Show	GitHub Exploit DB Packet Storm

249210	5.4	MEDIUM Network	webcraftplugins	image_map_pro	The Image Map Pro plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'save_project' function with an arbitrary shortcode in versions up to, and including, 6.0.20 due to insuffi…	CWE-79 Cross-site Scripting	CVE-2024-9585	2024-11-6 02:05	2024-10-26	Show	GitHub Exploit DB Packet Storm