Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
227421	7.5	危険	web group communication center	-	WGCC の quiz.php における SQL インジェクションの脆弱性	-	CVE-2006-5514	2012-12-20 18:02	2006-10-26	Show	GitHub Exploit DB Packet Storm

227422	4.3	警告	zwahlen informatik	-	Zwahlen Online Shop の article.htm におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-5512	2012-12-20 18:02	2006-10-25	Show	GitHub Exploit DB Packet Storm

227423	7.5	危険	woltlab	-	WoltLab Burning Book の addentry.php における任意の PHP コードを実行される脆弱性	-	CVE-2006-5509	2012-12-20 18:02	2006-10-25	Show	GitHub Exploit DB Packet Storm

227424	7.5	危険	woltlab	-	WoltLab Burning Book の addentry.php における SQL インジェクションの脆弱性	-	CVE-2006-5508	2012-12-20 18:02	2006-10-25	Show	GitHub Exploit DB Packet Storm

227425	7.5	危険	wiclear	-	WiClear における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2006-5506	2012-12-20 18:02	2006-10-25	Show	GitHub Exploit DB Packet Storm

227426	4.3	警告	Simple Machines	-	SMF の index.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-5504	2012-12-20 18:02	2006-10-25	Show	GitHub Exploit DB Packet Storm

227427	4.3	警告	Simple Machines	-	SMF の index.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-5503	2012-12-20 18:02	2006-10-25	Show	GitHub Exploit DB Packet Storm

227428	5.1	警告	xchangeboard	-	XchangeBoard の inc/DBInterface.php における SQL インジェクションの脆弱性	-	CVE-2006-5500	2012-12-20 18:02	2006-10-25	Show	GitHub Exploit DB Packet Storm

227429	6.8	警告	s9y	-	s9y におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-5499	2012-12-20 18:02	2006-10-25	Show	GitHub Exploit DB Packet Storm

227430	4.3	警告	timothy claason	-	Timothy Claason KnowledgeBank におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-5496	2012-12-20 18:02	2006-10-25	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 22, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
249121	7.5	HIGH Network	tp-link	mr200_firmware	TP Link MR200 V4 Firmware version 210201 was discovered to contain a null-pointer-dereference in the web administration panel on /cgi/login via the sign, Action or LoginStatus query parameters which …	CWE-476 NULL Pointer Dereference	CVE-2024-22733	2024-11-6 06:35	2024-11-2	Show	GitHub Exploit DB Packet Storm

249122	-		-	-	A vulnerability in the AWV (Audio, Web and Video Conferencing) component of Mitel MiCollab through 9.8 SP1 FP2 (9.8.1.201) could allow an unauthenticated attacker to conduct a CRLF injection attack d…	-	CVE-2024-47224	2024-11-6 06:35	2024-10-22	Show	GitHub Exploit DB Packet Storm

249123	5.3	MEDIUM Network	vmware	spring_framework	The fix for CVE-2022-22968 made disallowedFields patterns in DataBinder case insensitive. However, String.toLowerCase() has some Locale dependent exceptions that could potentially result in fields no…	NVD-CWE-noinfo	CVE-2024-38820	2024-11-6 06:35	2024-10-18	Show	GitHub Exploit DB Packet Storm

249124	-		-	-	Cross Site Scripting vulnerability in Alinto SOGo before 5.10.0 allows a remote attacker to execute arbitrary code via the import function to the mail component.	-	CVE-2024-24510	2024-11-6 06:35	2024-09-10	Show	GitHub Exploit DB Packet Storm

249125	8.8	HIGH Network	esafenet	cdg	A vulnerability, which was classified as critical, has been found in ESAFENET CDG 5. Affected by this issue is some unknown functionality of the file /com/esafenet/servlet/policy/HookWhiteListService…	CWE-89 SQL Injection	CVE-2024-10500	2024-11-6 06:02	2024-10-30	Show	GitHub Exploit DB Packet Storm

249126	9.8	CRITICAL Network	draytek	vigor3900_firmware	In Draytek Vigor3900 1.5.1.3, attackers can inject malicious commands into mainfunction.cgi and execute arbitrary commands by calling the restore function.	CWE-78 OS Command	CVE-2024-51252	2024-11-6 05:54	2024-11-2	Show	GitHub Exploit DB Packet Storm

249127	-		-	-	Nokia SR OS bof.cfg file encryption is vulnerable to a brute force attack. This weakness allows an attacker in possession of the encrypted file to decrypt the bof.cfg file and obtain the BOF configur…	-	CVE-2023-6728	2024-11-6 05:35	2024-10-17	Show	GitHub Exploit DB Packet Storm

249128	-		-	-	Fujian Kelixin Communication Command and Dispatch Platform <=7.6.6.4391 is vulnerable to SQL Injection via /client/get_gis_fence.php.	-	CVE-2024-45918	2024-11-6 05:35	2024-10-9	Show	GitHub Exploit DB Packet Storm

249129	-		-	-	Sharp NEC Projectors (NP-CB4500UL, NP-CB4500WL, NP-CB4700UL, NP-P525UL, NP-P525UL+, NP-P525ULG, NP-P525ULJL, NP-P525WL, NP-P525WL+, NP-P525WLG, NP-P525WLJL, NP-CG6500UL, NP-CG6500WL, NP-CG6700UL, NP-…	-	CVE-2024-7011	2024-11-6 05:35	2024-09-27	Show	GitHub Exploit DB Packet Storm

249130	9.8	CRITICAL Network	anisha	e-health_care_system	A vulnerability, which was classified as critical, has been found in code-projects E-Health Care System 1.0. Affected by this issue is some unknown functionality of the file /Admin/adminlogin.php. Th…	CWE-89 SQL Injection	CVE-2024-10739	2024-11-6 05:16	2024-11-4	Show	GitHub Exploit DB Packet Storm