Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227321 7.5 危険 viksoe - viksoe GMail Drive シェルエクステンションにおける仮想ファイルシステムのアクションを実行される脆弱性 - CVE-2006-5902 2012-12-20 18:02 2006-11-15 Show GitHub Exploit DB Packet Storm
227322 6.8 警告 Zend Technologies Ltd. - Zend Framework Preview の incubator/tests/Zend/Http/_files/testRedirections.php サンプルコードにおけるクロスサイトスクリプティングの脆弱性 - CVE-2006-5900 2012-12-20 18:02 2006-11-15 Show GitHub Exploit DB Packet Storm
227323 5 警告 php heaven - PhpMyChat の localization/languages.lib.php3 におけるディレクトリトラバーサルの脆弱性 - CVE-2006-5898 2012-12-20 18:02 2006-11-15 Show GitHub Exploit DB Packet Storm
227324 5 警告 php heaven - PhpMyChat Plus におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2006-5897 2012-12-20 18:02 2006-11-15 Show GitHub Exploit DB Packet Storm
227325 5 警告 remlab - REMLAB Web Mech Designer におけるスクリプトのフルパスを取得される脆弱性 - CVE-2006-5896 2012-12-20 18:02 2006-11-27 Show GitHub Exploit DB Packet Storm
227326 6.8 警告 rama cms - Rama CMS の lang.php におけるディレクトリトラバーサルの脆弱性 - CVE-2006-5894 2012-12-20 18:02 2006-11-14 Show GitHub Exploit DB Packet Storm
227327 7.5 危険 the net guys - The Net Guys ASPired2Poll の MoreInfo.asp における SQL インジェクションの脆弱性 - CVE-2006-5892 2012-12-20 18:02 2006-11-14 Show GitHub Exploit DB Packet Storm
227328 7.5 危険 superfreaker studios - Superfreaker Studios Ustore の detail.asp における SQL インジェクションの脆弱性 - CVE-2006-5891 2012-12-20 18:02 2006-11-14 Show GitHub Exploit DB Packet Storm
227329 7.5 危険 superfreaker studios - Superfreaker Studios Usupport の detail.asp における SQL インジェクションの脆弱性 - CVE-2006-5890 2012-12-20 18:02 2006-11-14 Show GitHub Exploit DB Packet Storm
227330 7.5 危険 superfreaker studios - Superfreaker Studios UPublisher の viewarticle.asp における SQL インジェクションの脆弱性 - CVE-2006-5888 2012-12-20 18:02 2006-11-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 23, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
249581 - - - Access Control vulnerability in TheInnovs EleForms allows . This issue affects EleForms: from n/a through 2.9.9.9. CWE-862
 Missing Authorization 		CVE-2024-38748 2024-11-2 00:15 2024-11-2 Show GitHub Exploit DB Packet Storm
249582 - - - Missing Authorization vulnerability in Rymera Web Co Wholesale Suite allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Wholesale Suite: from n/a through 2.1.12. CWE-862
 Missing Authorization 		CVE-2024-38745 2024-11-2 00:15 2024-11-2 Show GitHub Exploit DB Packet Storm
249583 - - - Missing Authorization vulnerability in Upqode Plum: Spin Wheel & Email Pop-up allows Accessing Functionality Not Properly Constrained by ACLs, Stored XSS.This issue affects Plum: Spin Wheel & Email P… CWE-862
 Missing Authorization 		CVE-2024-38744 2024-11-2 00:15 2024-11-2 Show GitHub Exploit DB Packet Storm
249584 - - - Access Control vulnerability in Upqode Plum: Spin Wheel & Email Pop-up allows . This issue affects Plum: Spin Wheel & Email Pop-up: from n/a through 2.0. CWE-862
 Missing Authorization 		CVE-2024-38743 2024-11-2 00:15 2024-11-2 Show GitHub Exploit DB Packet Storm
249585 - - - Missing Authorization vulnerability in Packlink Shipping S.L. Packlink PRO shipping module allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Packlink PRO ship… CWE-862
 Missing Authorization 		CVE-2024-38740 2024-11-2 00:15 2024-11-2 Show GitHub Exploit DB Packet Storm
249586 - - - Missing Authorization vulnerability in Reservation Diary ReDi Restaurant Reservation allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects ReDi Restaurant Reservation: fr… CWE-862
 Missing Authorization 		CVE-2024-38737 2024-11-2 00:15 2024-11-2 Show GitHub Exploit DB Packet Storm
249587 - - - Missing Authorization vulnerability in Meks Meks Video Importer allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Meks Video Importer: from n/a through 1.0.12. - CVE-2024-38733 2024-11-2 00:15 2024-11-2 Show GitHub Exploit DB Packet Storm
249588 - - - Missing Authorization vulnerability in Seraphinite Solutions Seraphinite Post .DOCX Source allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Seraphinite Post … CWE-862
 Missing Authorization 		CVE-2024-38727 2024-11-2 00:15 2024-11-2 Show GitHub Exploit DB Packet Storm
249589 - - - Missing Authorization vulnerability in PickPlugins Product Designer allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Product Designer: from n/a through 1.0.33. CWE-862
 Missing Authorization 		CVE-2024-38726 2024-11-2 00:15 2024-11-2 Show GitHub Exploit DB Packet Storm
249590 - - - Missing Authorization vulnerability in spider-themes EazyDocs allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects EazyDocs: from n/a through 2.5.0. CWE-862
 Missing Authorization 		CVE-2024-38721 2024-11-2 00:15 2024-11-2 Show GitHub Exploit DB Packet Storm