Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
227721	7.5	危険	Zen Cart	-	Zen Cart におけるディレクトリトラバーサルの脆弱性	-	CVE-2006-4218	2012-12-20 18:02	2006-08-17	Show	GitHub Exploit DB Packet Storm

227722	7.5	危険	webinsta	-	WEBInsta CMS の modules/usersonline/users.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4217	2012-12-20 18:02	2006-08-17	Show	GitHub Exploit DB Packet Storm

227723	5.1	警告	Zen Cart	-	Zen Cart の index.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2006-4215	2012-12-20 18:02	2006-08-17	Show	GitHub Exploit DB Packet Storm

227724	7.5	危険	Zen Cart	-	Zen Cart における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2006-4214	2012-12-20 18:02	2006-08-17	Show	GitHub Exploit DB Packet Storm

227725	7.5	危険	webinsta	-	WEBInsta Mailing List Manager の install3.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4209	2012-12-20 18:02	2006-08-17	Show	GitHub Exploit DB Packet Storm

227726	5	警告	skippy.net	-	WordPress 用の Skippy WP-DB-Backup プラグインにおけるディレクトリトラバーサルの脆弱性	-	CVE-2006-4208	2012-12-20 18:02	2006-08-17	Show	GitHub Exploit DB Packet Storm

227727	7.5	危険	webdynamite	-	WebDynamite ProjectButler における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4205	2012-12-20 18:02	2006-08-17	Show	GitHub Exploit DB Packet Storm

227728	7.5	危険	phprojekt	-	PHProjekt における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2006-4204	2012-12-20 18:02	2006-08-17	Show	GitHub Exploit DB Packet Storm

227729	7.5	危険	spidey blog	-	Spidey Blog Script の proje_goster.php における SQL インジェクションの脆弱性	-	CVE-2006-4202	2012-12-20 18:02	2006-08-17	Show	GitHub Exploit DB Packet Storm

227730	5.1	警告	wheatblog	-	wB の includes/session.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4198	2012-12-20 18:02	2006-08-17	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 19, 2026, 4:09 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
249451	-	-	-	Missing Authorization vulnerability in Automattic Newspack Newsletters allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Newspack Newsletters: from n/a through 2.13.2.	CWE-862 Missing Authorization	CVE-2024-37475	2024-11-2 00:15	2024-11-2	Show	GitHub Exploit DB Packet Storm

249452	-	-	-	Missing Authorization vulnerability in WofficeIO Woffice Core allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Woffice Core: from n/a through 5.4.8.	CWE-862 Missing Authorization	CVE-2024-37470	2024-11-2 00:15	2024-11-2	Show	GitHub Exploit DB Packet Storm

249453	-	-	-	Missing Authorization vulnerability in blazethemes Newsmatic allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Newsmatic: from n/a through 1.3.1.	CWE-862 Missing Authorization	CVE-2024-37468	2024-11-2 00:15	2024-11-2	Show	GitHub Exploit DB Packet Storm

249454	-	-	-	Missing Authorization vulnerability in CRM Perks CRM Perks Forms allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects CRM Perks Forms: from n/a through 1.1.5.	CWE-862 Missing Authorization	CVE-2024-37463	2024-11-2 00:15	2024-11-2	Show	GitHub Exploit DB Packet Storm

249455	-	-	-	Missing Authorization vulnerability in Noptin Newsletter Noptin allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Noptin: from n/a through 3.4.2.	CWE-862 Missing Authorization	CVE-2024-37456	2024-11-2 00:15	2024-11-2	Show	GitHub Exploit DB Packet Storm

249456	-	-	-	Missing Authorization vulnerability in ProfileGrid User Profiles ProfileGrid allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects ProfileGrid: from n/a through 5…	CWE-862 Missing Authorization	CVE-2024-37453	2024-11-2 00:15	2024-11-2	Show	GitHub Exploit DB Packet Storm

249457	-	-	-	Missing Authorization vulnerability in WPMU DEV Defender Security allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Defender Security: from n/a through 4.7.1.	CWE-862 Missing Authorization	CVE-2024-37444	2024-11-2 00:15	2024-11-2	Show	GitHub Exploit DB Packet Storm

249458	-	-	-	Missing Authorization vulnerability in Automattic WP Job Manager - Resume Manager allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Job Manager - Resume Ma…	CWE-862 Missing Authorization	CVE-2024-37443	2024-11-2 00:15	2024-11-2	Show	GitHub Exploit DB Packet Storm

249459	-	-	-	Missing Authorization vulnerability in Andy Moyle Church Admin allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Church Admin: from n/a through 4.4.4.	CWE-862 Missing Authorization	CVE-2024-37440	2024-11-2 00:15	2024-11-2	Show	GitHub Exploit DB Packet Storm

249460	-	-	-	Missing Authorization vulnerability in Uncanny Owl Uncanny Toolkit Pro for LearnDash allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Uncanny Toolkit Pro for…	CWE-862 Missing Authorization	CVE-2024-37439	2024-11-2 00:15	2024-11-2	Show	GitHub Exploit DB Packet Storm