Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
227501	6.8	警告	wheatblog	-	Wheatblog におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-5195	2012-12-20 18:02	2006-10-10	Show	GitHub Exploit DB Packet Storm

227502	7.5	危険	wikyblog	-	Josh Schmidt WikyBlog の index.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5193	2012-12-20 18:02	2006-10-10	Show	GitHub Exploit DB Packet Storm

227503	7.5	危険	phpgreetz	-	phpGreetz の includes/footer.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5192	2012-12-20 18:02	2006-10-10	Show	GitHub Exploit DB Packet Storm

227504	5.1	警告	phpBB	-	phpBB 用の Nivisec Static Topics モジュールにおける PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2006-5191	2012-12-20 18:02	2006-10-10	Show	GitHub Exploit DB Packet Storm

227505	5	警告	webgeneius	-	webGENEius GOOP Gallery の download.php におけるディレクトリトラバーサルの脆弱性	-	CVE-2006-5188	2012-12-20 18:02	2006-10-10	Show	GitHub Exploit DB Packet Storm

227506	5.1	警告	phpmyprofiler	-	phpMyProfiler の functions.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5186	2012-12-20 18:02	2006-10-10	Show	GitHub Exploit DB Packet Storm

227507	7.5	危険	pkr internet	-	PKR Internet Taskjitsu における SQL インジェクションの脆弱性	-	CVE-2006-5184	2012-12-20 18:02	2006-09-27	Show	GitHub Exploit DB Packet Storm

227508	5.1	警告	powerportal	-	John Himmelman PowerPortal におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-5169	2012-12-20 18:02	2006-10-10	Show	GitHub Exploit DB Packet Storm

227509	4.3	警告	Pebble	-	Simon Brown Pebble の検索機能におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2006-5168	2012-12-20 18:02	2006-10-10	Show	GitHub Exploit DB Packet Storm

227510	5.1	警告	skrypty	-	Skrypty PPA Gallery の inc/functions.inc.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5165	2012-12-20 18:02	2006-10-5	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 25, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
248611	7.2	HIGH Network	dlink	dsl6740c_firmware	The D-Link DSL6740C modem has an OS Command Injection vulnerability, allowing remote attackers with administrator privileges to inject and execute arbitrary system commands through a specific functio…	CWE-78 OS Command	CVE-2024-11065	2024-11-16 03:22	2024-11-11	Show	GitHub Exploit DB Packet Storm

248612	7.2	HIGH Network	dlink	dsl6740c_firmware	The D-Link DSL6740C modem has an OS Command Injection vulnerability, allowing remote attackers with administrator privileges to inject and execute arbitrary system commands through a specific functio…	CWE-78 OS Command	CVE-2024-11064	2024-11-16 03:22	2024-11-11	Show	GitHub Exploit DB Packet Storm

248613	7.2	HIGH Network	dlink	dsl6740c_firmware	The D-Link DSL6740C modem has an OS Command Injection vulnerability, allowing remote attackers with administrator privileges to inject and execute arbitrary system commands through a specific functio…	CWE-78 OS Command	CVE-2024-11063	2024-11-16 03:21	2024-11-11	Show	GitHub Exploit DB Packet Storm

248614	7.2	HIGH Network	dlink	dsl6740c_firmware	The D-Link DSL6740C modem has an OS Command Injection vulnerability, allowing remote attackers with administrator privileges to inject and execute arbitrary system commands through a specific functio…	CWE-78 OS Command	CVE-2024-11062	2024-11-16 03:21	2024-11-11	Show	GitHub Exploit DB Packet Storm

248615	5.3	MEDIUM Network	expressjs	basic-auth-connect	basic-auth-connect is Connect's Basic Auth middleware in its own module. basic-auth-connect < 1.1.0 uses a timing-unsafe equality comparison that can leak timing information. This issue has been fixe…	NVD-CWE-Other	CVE-2024-47178	2024-11-16 03:05	2024-10-1	Show	GitHub Exploit DB Packet Storm

248616	6.1	MEDIUM Network	clinical-genomics	scout	Scout is a web-based visualizer for VCF-files. Open redirect vulnerability allows performing phishing attacks on users by redirecting them to malicious page. /login API endpoint is vulnerable to open…	CWE-601 Open Redirect	CVE-2024-47530	2024-11-16 03:03	2024-10-1	Show	GitHub Exploit DB Packet Storm

248617	3.5	LOW Network	clinical-genomics	scout	Scout is a web-based visualizer for VCF-files. Due to the lack of sanitization in the filename, it is possible bypass intended file extension and make users download malicious files with any extensio…	CWE-116 Improper Encoding or Escaping of Output	CVE-2024-47531	2024-11-16 03:02	2024-10-1	Show	GitHub Exploit DB Packet Storm

248618	6.5	MEDIUM Network	zope	restrictedpython	RestrictedPython is a restricted execution environment for Python to run untrusted code. A user can gain access to protected (and potentially sensible) information indirectly via AttributeError.obj a…	NVD-CWE-noinfo	CVE-2024-47532	2024-11-16 02:59	2024-10-1	Show	GitHub Exploit DB Packet Storm

248619	4.8	MEDIUM Network	zzcms	zzcms	A vulnerability was found in ZZCMS up to 2023. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /admin/msg.php. The manipulation of the argument keyw…	CWE-79 Cross-site Scripting	CVE-2024-11130	2024-11-16 02:57	2024-11-13	Show	GitHub Exploit DB Packet Storm

248620	5.4	MEDIUM Network	hyumika	openstreetmap	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Hyumika OSM – OpenStreetMap allows Stored XSS.This issue affects OSM – OpenStreetMap: from…	CWE-79 Cross-site Scripting	CVE-2024-52355	2024-11-16 02:51	2024-11-11	Show	GitHub Exploit DB Packet Storm