Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
227791	4.3	警告	VWar	-	Vwar の war.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-4009	2012-12-20 18:02	2006-08-7	Show	GitHub Exploit DB Packet Storm

227792	6.4	警告	vbportal	-	vbPortal の index.php におけるディレクトリトラバーサルの脆弱性	-	CVE-2006-4004	2012-12-20 18:02	2006-08-7	Show	GitHub Exploit DB Packet Storm

227793	7.5	危険	wowroster	-	WoWRoster の conf.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-3998	2012-12-20 18:02	2006-07-17	Show	GitHub Exploit DB Packet Storm

227794	7.5	危険	wowroster	-	WoWRoster の hsList.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-3997	2012-12-20 18:02	2006-07-17	Show	GitHub Exploit DB Packet Storm

227795	6.8	警告	user home pages	-	Mambo または Joomla! 用の User Home Pages コンポーネントにおける PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2006-3995	2012-12-20 18:02	2006-08-4	Show	GitHub Exploit DB Packet Storm

227796	7.5	危険	xmb software	-	XMB の u2u.inc.php における SQL インジェクションの脆弱性	-	CVE-2006-3994	2012-12-20 18:02	2006-08-4	Show	GitHub Exploit DB Packet Storm

227797	5.1	警告	tsep	-	Olaf Noehring TSEP の copyright.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-3993	2012-12-20 18:02	2006-08-4	Show	GitHub Exploit DB Packet Storm

227798	7.5	危険	voc-project	-	Cisco Unified Wireless IP Phone 7921 における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-3991	2012-12-20 18:02	2006-08-4	Show	GitHub Exploit DB Packet Storm

227799	7.5	危険	phpsavant	-	Paul M. Jones Savant2 における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-3990	2012-12-20 18:02	2006-08-4	Show	GitHub Exploit DB Packet Storm

227800	5	警告	scott weedon	-	Scott Weedon Ajax Chat の visitor/livesupport/chat.php におけるディレクトリトラバーサルの脆弱性	-	CVE-2006-3972	2012-12-20 18:02	2006-08-2	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 18, 2026, 4:11 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
249291	-	-	-	Missing Authorization vulnerability in WPMU DEV Hummingbird allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Hummingbird: from n/a through 3.9.1.	CWE-862 Missing Authorization	CVE-2024-43118	2024-11-2 00:15	2024-11-2	Show	GitHub Exploit DB Packet Storm

249292	-	-	-	Missing Authorization vulnerability in YMC Filter & Grids allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Filter & Grids: from n/a through 2.8.33.	-	CVE-2024-39664	2024-11-2 00:15	2024-11-2	Show	GitHub Exploit DB Packet Storm

249293	-	-	-	Missing Authorization vulnerability in Fetch Designs Sign-up Sheets allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Sign-up Sheets: from n/a through 2.2.12.	CWE-862 Missing Authorization	CVE-2024-39654	2024-11-2 00:15	2024-11-2	Show	GitHub Exploit DB Packet Storm

249294	-	-	-	Missing Authorization vulnerability in WPWeb Elite WooCommerce PDF Vouchers allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects WooCommerce PDF Vouchers: from n/a throu…	CWE-862 Missing Authorization	CVE-2024-39650	2024-11-2 00:15	2024-11-2	Show	GitHub Exploit DB Packet Storm

249295	-	-	-	Missing Authorization vulnerability in QuadLayers WP Social Feed Gallery allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Social Feed Gallery: from n/a th…	CWE-862 Missing Authorization	CVE-2024-39640	2024-11-2 00:15	2024-11-2	Show	GitHub Exploit DB Packet Storm

249296	-	-	-	Missing Authorization vulnerability in KaineLabs Youzify allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Youzify: from n/a through 1.2.6.	CWE-862 Missing Authorization	CVE-2024-39635	2024-11-2 00:15	2024-11-2	Show	GitHub Exploit DB Packet Storm

249297	-	-	-	Missing Authorization vulnerability in icegram Icegram allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Icegram: from n/a through 3.1.24.	CWE-862 Missing Authorization	CVE-2024-39625	2024-11-2 00:15	2024-11-2	Show	GitHub Exploit DB Packet Storm

249298	-	-	-	Missing Authorization vulnerability in MediaRon LLC Custom Query Blocks allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Custom Query Blocks: from n/a through 5.2.0.	CWE-862 Missing Authorization	CVE-2024-38794	2024-11-2 00:15	2024-11-2	Show	GitHub Exploit DB Packet Storm

249299	-	-	-	Missing Authorization vulnerability in ConveyThis Translate Team Language Translate Widget for WordPress – ConveyThis allows Accessing Functionality Not Properly Constrained by ACLs.This issue affect…	CWE-862 Missing Authorization	CVE-2024-38792	2024-11-2 00:15	2024-11-2	Show	GitHub Exploit DB Packet Storm

249300	-	-	-	Missing Authorization vulnerability in Tyche Softwares Arconix FAQ allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Arconix FAQ: from n/a through 1.9.4.	CWE-862 Missing Authorization	CVE-2024-38783	2024-11-2 00:15	2024-11-2	Show	GitHub Exploit DB Packet Storm