Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227481 7.5 危険 sh-news - SH-News における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5282 2012-12-20 18:02 2006-10-13 Show GitHub Exploit DB Packet Storm
227482 7.5 危険 phpmyagenda - phpMyAgenda の templates/header.php3 におけるディレクトリトラバーサルの脆弱性 - CVE-2006-5263 2012-12-20 18:02 2006-10-12 Show GitHub Exploit DB Packet Storm
227483 7.5 危険 phpmynews - PHPMyNews における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5261 2012-12-20 18:02 2006-10-12 Show GitHub Exploit DB Packet Storm
227484 5.1 警告 webmedia explorer - Webmedia Explorer の includes/core.lib.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5252 2012-12-20 18:02 2006-10-12 Show GitHub Exploit DB Packet Storm
227485 7.5 危険 tagit - tagit2b の tagmin/delTagUser.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5249 2012-12-20 18:02 2006-10-11 Show GitHub Exploit DB Packet Storm
227486 7.8 危険 Polycom - Polycom SoundPoint IP 301 VoIP Desktop Phone におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-5233 2012-12-20 18:02 2006-10-10 Show GitHub Exploit DB Packet Storm
227487 7.5 危険 rob hensley - Rob Hensley ackerTodo の Google Gadget login.php における SQL インジェクションの脆弱性 - CVE-2006-5228 2012-12-20 18:02 2006-10-10 Show GitHub Exploit DB Packet Storm
227488 6.8 警告 TorrentFlux - TorrentFlux の admin.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-5227 2012-12-20 18:02 2006-10-10 Show GitHub Exploit DB Packet Storm
227489 7.5 危険 sergey lyubka - Sergey Lyubka Simple HTTPD におけるスタックベースのバッファオーバーフローの脆弱性 - CVE-2006-5216 2012-12-20 18:02 2006-10-10 Show GitHub Exploit DB Packet Storm
227490 5 警告 トレンドマイクロ - SMB および OSCE 用の CSM Suite におけるファイルを削除される脆弱性 - CVE-2006-5212 2012-12-20 18:02 2006-04-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 26, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
248561 5.4 MEDIUM
Network 		hoosoft hoo_addons_for_elementor Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Hoosoft Hoo Addons for Elementor allows DOM-Based XSS.This issue affects Hoo Addons for El… CWE-79
Cross-site Scripting 		CVE-2024-51590 2024-11-19 01:44 2024-11-10 Show GitHub Exploit DB Packet Storm
248562 7.2 HIGH
Network 		lopalopa e-learning_management_system A SQL Injection vulnerability was found in /admin/add_content.php in kashipara E-learning Management System Project 1.0 via the title and content parameters. CWE-89
SQL Injection 		CVE-2024-50826 2024-11-19 01:39 2024-11-15 Show GitHub Exploit DB Packet Storm
248563 7.2 HIGH
Network 		lopalopa e-learning_management_system A SQL Injection vulnerability was found in /admin/school_year.php in kashipara E-learning Management System Project 1.0 via the school_year parameter. CWE-89
SQL Injection 		CVE-2024-50825 2024-11-19 01:39 2024-11-15 Show GitHub Exploit DB Packet Storm
248564 7.2 HIGH
Network 		lopalopa e-learning_management_system A SQL Injection vulnerability was found in /admin/class.php in kashipara E-learning Management System Project 1.0 via the class_name parameter. CWE-89
SQL Injection 		CVE-2024-50824 2024-11-19 01:39 2024-11-15 Show GitHub Exploit DB Packet Storm
248565 9.8 CRITICAL
Network 		lopalopa e-learning_management_system A SQL Injection vulnerability was found in /admin/login.php in kashipara E-learning Management System Project 1.0 via the username and password parameters. CWE-89
SQL Injection 		CVE-2024-50823 2024-11-19 01:38 2024-11-15 Show GitHub Exploit DB Packet Storm
248566 7.2 HIGH
Network 		lopalopa e-learning_management_system A SQL Injection vulnerability was found in /admin/edit_student.php in KASHIPARA E-learning Management System Project 1.0 via the cys, un, ln, fn, and id parameters. CWE-89
SQL Injection 		CVE-2024-50835 2024-11-19 01:38 2024-11-15 Show GitHub Exploit DB Packet Storm
248567 7.2 HIGH
Network 		lopalopa e-learning_management_system A SQL Injection was found in /admin/teachers.php in KASHIPARA E-learning Management System Project 1.0 via the firstname and lastname parameters. CWE-89
SQL Injection 		CVE-2024-50834 2024-11-19 01:38 2024-11-15 Show GitHub Exploit DB Packet Storm
248568 9.8 CRITICAL
Network 		lopalopa e-learning_management_system A SQL Injection vulnerability was found in /login.php in KASHIPARA E-learning Management System Project 1.0 via the username and password parameters. CWE-89
SQL Injection 		CVE-2024-50833 2024-11-19 01:38 2024-11-15 Show GitHub Exploit DB Packet Storm
248569 7.2 HIGH
Network 		lopalopa e-learning_management_system A SQL Injection was found in /admin/admin_user.php in kashipara E-learning Management System Project 1.0 via the username and password parameters. CWE-89
SQL Injection 		CVE-2024-50831 2024-11-19 01:37 2024-11-15 Show GitHub Exploit DB Packet Storm
248570 7.2 HIGH
Network 		lopalopa e-learning_management_system A SQL Injection vulnerability was found in /admin/calendar_of_events.php in kashipara E-learning Management System Project 1.0 via the date_start, date_end, and title parameters. CWE-89
SQL Injection 		CVE-2024-50830 2024-11-19 01:37 2024-11-15 Show GitHub Exploit DB Packet Storm