Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227761 7.5 危険 phpmyring - Nicolas Grandjean PHPMyRing の view_com.php における SQL インジェクションの脆弱性 - CVE-2006-4114 2012-12-20 18:02 2006-08-14 Show GitHub Exploit DB Packet Storm
227762 7.5 危険 Ruby on Rails project - Ruby on Rails の "依存型分類メカニズム" における任意の Ruby コードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2006-4112 2012-12-20 18:02 2006-08-10 Show GitHub Exploit DB Packet Storm
227763 7.5 危険 Ruby on Rails project - Ruby on Rails における "重大" または "深刻" な影響を引き起こす Ruby コードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2006-4111 2012-12-20 18:02 2006-08-9 Show GitHub Exploit DB Packet Storm
227764 3.6 注意 simpliciti - Simpliciti Locked Browser における許可されていない操作を実行される脆弱性 - CVE-2006-4092 2012-12-20 18:02 2006-08-11 Show GitHub Exploit DB Packet Storm
227765 4.3 警告 webligo - Webligo BlogHoster におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-4090 2012-12-20 18:02 2006-08-11 Show GitHub Exploit DB Packet Storm
227766 5.1 警告 wim fleischhauer - Wim Fleischhauer docpile:we における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4076 2012-12-20 18:02 2006-08-10 Show GitHub Exploit DB Packet Storm
227767 5.1 警告 wim fleischhauer - Wim Fleischhauer docpile:we における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4075 2012-12-20 18:02 2006-08-10 Show GitHub Exploit DB Packet Storm
227768 7.5 危険 phpcc - Fabian Hainz phpCC における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4073 2012-12-20 18:02 2006-08-10 Show GitHub Exploit DB Packet Storm
227769 5 警告 pswd.js - pswd.js スクリプトにおけるオフラインの総当り攻撃を実行される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2006-4068 2012-12-20 18:02 2006-08-9 Show GitHub Exploit DB Packet Storm
227770 7.5 危険 yenerturk - YenerTurk Haber Script の default.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2006-4064 2012-12-20 18:02 2006-08-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 25, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
248401 - - - user_oidc app is an OpenID Connect user backend for Nextcloud. A malicious user could send a malformed login link that would redirect the user to a provided URL after successfully authenticating. It … - CVE-2024-52512 2024-11-19 02:11 2024-11-16 Show GitHub Exploit DB Packet Storm
248402 - - - Nextcloud Tables allows users to to create tables with individual columns. By directly specifying the ID of a table or view, a malicious user could blindly insert new rows into tables they have no ac… CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2024-52511 2024-11-19 02:11 2024-11-16 Show GitHub Exploit DB Packet Storm
248403 - - - The Nextcloud Desktop Client is a tool to synchronize files from Nextcloud Server with your computer. The Desktop client did not stop with an error but allowed by-passing the signature validation, if… CWE-295
Improper Certificate Validation  		CVE-2024-52510 2024-11-19 02:11 2024-11-16 Show GitHub Exploit DB Packet Storm
248404 - - - Nextcloud Mail is the mail app for Nextcloud, a self-hosted productivity platform. The Nextcloud mail app incorrectly allowed attaching shared files without download permissions as attachments. This … CWE-284
Improper Access Control 		CVE-2024-52509 2024-11-19 02:11 2024-11-16 Show GitHub Exploit DB Packet Storm
248405 - - - Nextcloud Mail is the mail app for Nextcloud, a self-hosted productivity platform. When a user is trying to set up a mail account with an email address like user@example.tld that does not support aut… CWE-200
Information Exposure 		CVE-2024-52508 2024-11-19 02:11 2024-11-16 Show GitHub Exploit DB Packet Storm
248406 - - - Nextcloud Tables allows users to to create tables with individual columns. The information which Table (numeric ID) is shared with which groups and users and the respective permissions was not limite… CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2024-52507 2024-11-19 02:11 2024-11-16 Show GitHub Exploit DB Packet Storm
248407 - - - Cross Site Scripting vulnerability in M2000 Smart4Web before v.5.020241004 allows a remote attacker to execute arbitrary code via the error parameter in URL - CVE-2024-50800 2024-11-19 02:11 2024-11-16 Show GitHub Exploit DB Packet Storm
248408 - - - By default, dedicated folders of ZONEPOINT for Windows up to 2024.1 can be accessed by other users to misuse technical files and make them perform tasks with higher privileges. Configuration of ZONEP… - CVE-2024-46467 2024-11-19 02:11 2024-11-16 Show GitHub Exploit DB Packet Storm
248409 - - - By default, dedicated folders of ZONECENTRAL for Windows up to 2024.3 or up to Q.2021.2 (ANSSI qualification submission) can be accessed by other users to misuse technical files and make them perform… - CVE-2024-46466 2024-11-19 02:11 2024-11-16 Show GitHub Exploit DB Packet Storm
248410 - - - By default, dedicated folders of CRYHOD for Windows up to 2024.3 can be accessed by other users to misuse technical files and make them perform tasks with higher privileges. Configuration of CRYHOD h… - CVE-2024-46465 2024-11-19 02:11 2024-11-16 Show GitHub Exploit DB Packet Storm