Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227801 6.8 警告 scott weedon - Scott Weedon Ajax Chat の visitor/livesupport/chat.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-3971 2012-12-20 18:02 2006-08-2 Show GitHub Exploit DB Packet Storm
227802 5 警告 サン・マイクロシステムズ - Sun Solaris 10 3/05 HW2 の暗号化プロバイダにおけるアプリケーションがデータ変更を検出しない脆弱性 - CVE-2006-3968 2012-12-20 18:02 2006-08-1 Show GitHub Exploit DB Packet Storm
227803 7.5 危険 x-scripts - X-Scripts X-Poll の top.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2006-3960 2012-12-20 18:02 2006-08-1 Show GitHub Exploit DB Packet Storm
227804 7.5 危険 x-scripts - X-Scripts X-Protection の protect.php における SQL インジェクションの脆弱性 - CVE-2006-3959 2012-12-20 18:02 2006-08-1 Show GitHub Exploit DB Packet Storm
227805 4.3 警告 pkr internet - Taskjitsu におけるクロスサイトスクリプティングの脆弱性 CWE-noinfo
情報不足 		CVE-2006-3958 2012-12-20 18:02 2006-07-6 Show GitHub Exploit DB Packet Storm
227806 4.3 警告 total online solutions - AWBS の contact.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-3956 2012-12-20 18:02 2006-08-1 Show GitHub Exploit DB Packet Storm
227807 7.5 危険 x-scripts - X-Scripts X-Statistics の x-statistics.php における SQL インジェクションの脆弱性 - CVE-2006-3950 2012-12-20 18:02 2006-08-1 Show GitHub Exploit DB Packet Storm
227808 4.3 警告 PHPNUKE - PHP-Nuke INP の modules.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-3948 2012-12-20 18:02 2006-08-1 Show GitHub Exploit DB Packet Storm
227809 5 警告 Opera Software ASA - Windows 上で稼動する Opera の CSS 機能におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-3945 2012-12-20 18:02 2006-07-31 Show GitHub Exploit DB Packet Storm
227810 5 警告 マイクロソフト - Windows 上で稼動する Microsoft Internet Explorer 6 におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-3944 2012-12-20 18:02 2006-07-31 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 23, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
751 6.5 MEDIUM
Network 		- - Due to a missing authorization check in SAP Business Analytics and SAP Content Management, an authenticated user could make unauthorized calls to certain remote function modules, potentially accessin… CWE-862
 Missing Authorization 		CVE-2026-34261 2026-04-18 00:18 2026-04-14 Show GitHub Exploit DB Packet Storm
752 5.0 MEDIUM
Network 		- - Information Disclosure Vulnerability in SAP HANA Cockpit and HANA Database Explorer CWE-522
 Insufficiently Protected Credentials 		CVE-2026-34262 2026-04-18 00:18 2026-04-14 Show GitHub Exploit DB Packet Storm
753 6.5 MEDIUM
Network 		- - During authorization checks in SAP Human Capital Management for SAP S/4HANA, the system returns specific messages. Due to this, an authenticated user with low privileges could guess and enumerate the… CWE-204
 Response Discrepancy Information Exposure 		CVE-2026-34264 2026-04-18 00:18 2026-04-14 Show GitHub Exploit DB Packet Storm
754 3.7 LOW
Network 		- - A vulnerability has been identified in Siemens Software Center (All versions < V3.5.8.2), Simcenter 3D (All versions < V2506.6000), Simcenter Femap (All versions < V2506.0002), Simcenter STAR-CCM+ (A… CWE-295
Improper Certificate Validation  		CVE-2025-40745 2026-04-18 00:18 2026-04-14 Show GitHub Exploit DB Packet Storm
755 7.3 HIGH
Network 		- - A vulnerability has been identified in SINEC NMS (All versions < V4.0 SP3 with UMC). The affected application contains an authentication weakness due to insufficient validation of user identity in th… CWE-347
 Improper Verification of Cryptographic Signature 		CVE-2026-24032 2026-04-18 00:18 2026-04-14 Show GitHub Exploit DB Packet Storm
756 8.8 HIGH
Network 		- - A vulnerability has been identified in SINEC NMS (All versions < V4.0 SP3). Affected products do not properly validate user authorization when processing password reset requests. This could allow an … CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2026-25654 2026-04-18 00:18 2026-04-14 Show GitHub Exploit DB Packet Storm
757 8.8 HIGH
Network 		- - A vulnerability has been identified in RUGGEDCOM CROSSBOW Secure Access Manager Primary (SAM-P) (All versions < V5.8). User Administrators are allowed to administer groups they belong to. This could … CWE-266
 Incorrect Privilege Assignment 		CVE-2026-27668 2026-04-18 00:18 2026-04-14 Show GitHub Exploit DB Packet Storm
758 9.3 CRITICAL
Local 		- - Sandbox Escape Vulnerability in Terrarium allows arbitrary code execution with root privileges on a host process via JavaScript prototype chain traversal. - CVE-2026-5752 2026-04-18 00:17 2026-04-15 Show GitHub Exploit DB Packet Storm
759 6.1 MEDIUM
Network 		- - Reflected Cross-Site Scripting (XSS) Vulnerability in Radware Alteon 34.5.4.0 vADC load-balancer allows an attacker to inject malicious scripts into the website, potentially leading to unauthorized a… - CVE-2026-5754 2026-04-18 00:17 2026-04-15 Show GitHub Exploit DB Packet Storm
760 7.5 HIGH
Network 		- - Unauthenticated Configuration File Modification Vulnerability in DRC Central Office Services (COS) allows an attacker to modify the server's configuration file, potentially leading to mass data exfil… - CVE-2026-5756 2026-04-18 00:17 2026-04-15 Show GitHub Exploit DB Packet Storm