Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227821 5.1 警告 gonafish - Gonafish LinksCaffe の links.php における SQL インジェクションの脆弱性 - CVE-2006-3932 2012-12-20 18:02 2006-07-31 Show GitHub Exploit DB Packet Storm
227822 4.6 警告 tuomas airaksinen - Tuomas Airaksinen Midirecord の midirecord.cc におけるバッファオーバーフローの脆弱性 - CVE-2006-3931 2012-12-20 18:02 2006-07-31 Show GitHub Exploit DB Packet Storm
227823 7.5 危険 mamboxchange - a6mambohelpdesk Mambo コンポーネントの admin.a6mambohelpdesk.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-3930 2012-12-20 18:02 2006-07-31 Show GitHub Exploit DB Packet Storm
227824 4.3 警告 ZyXEL - Zyxel Prestige 660H-61 ADSL ルータの Forms/rpSysAdmin スクリプトにおけるクロスサイトスクリプティングの脆弱性 - CVE-2006-3929 2012-12-20 18:02 2006-07-31 Show GitHub Exploit DB Packet Storm
227825 7.5 危険 mikael software - WMNews の index.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-3928 2012-12-20 18:02 2006-07-31 Show GitHub Exploit DB Packet Storm
227826 4.3 警告 phpprobid - PhpProBid の auctionsearch.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-3927 2012-12-20 18:02 2006-07-31 Show GitHub Exploit DB Packet Storm
227827 7.5 危険 phpprobid - PhpProBid における SQL インジェクションの脆弱性 - CVE-2006-3926 2012-12-20 18:02 2006-07-31 Show GitHub Exploit DB Packet Storm
227828 6.4 警告 interactual technologies - InterActual Player の iarecord.dll におけるスタックベースのバッファオーバーフローの脆弱性 - CVE-2006-3925 2012-12-20 18:02 2006-07-28 Show GitHub Exploit DB Packet Storm
227829 2.6 注意 fire-mouse - Fire-Mouse Toplist の add.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-3923 2012-12-20 18:02 2006-07-28 Show GitHub Exploit DB Packet Storm
227830 7.5 危険 portailphp - PortailPHP の mod_membre/inscription.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-3922 2012-12-20 18:02 2006-07-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 24, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
248391 - - - Improper handling of canonical URL-encoding may lead to bypass not properly constrained by request rules. - CVE-2024-23983 2024-11-12 22:55 2024-11-12 Show GitHub Exploit DB Packet Storm
248392 - - - GNOME libsoup before 3.6.1 has an infinite loop, and memory consumption. during the reading of certain patterns of WebSocket data from clients. - CVE-2024-52532 2024-11-12 22:55 2024-11-12 Show GitHub Exploit DB Packet Storm
248393 - - - GNOME libsoup before 3.6.1 allows a buffer overflow in applications that perform conversion to UTF-8 in soup_header_parse_param_list_strict. Input received over the network cannot trigger this. - CVE-2024-52531 2024-11-12 22:55 2024-11-12 Show GitHub Exploit DB Packet Storm
248394 - - - GNOME libsoup before 3.6.0 allows HTTP request smuggling in some configurations because '\0' characters at the end of header names are ignored, i.e., a "Transfer-Encoding\0: chunked" header is treate… - CVE-2024-52530 2024-11-12 22:55 2024-11-12 Show GitHub Exploit DB Packet Storm
248395 - - - libosdp is an implementation of IEC 60839-11-5 OSDP (Open Supervised Device Protocol) and provides a C library with support for C++, Rust and Python3. In affected versions an unexpected `REPLY_CCRYPT… CWE-924
 Improper Enforcement of Message Integrity During Transmission in a Communication Channel 		CVE-2024-52288 2024-11-12 22:55 2024-11-12 Show GitHub Exploit DB Packet Storm
248396 - - - Stirling-PDF is a locally hosted web application that allows you to perform various operations on PDF files. In affected versions the Merge functionality takes untrusted user input (file name) and us… CWE-79
CWE-20
Cross-site Scripting
 Improper Input Validation  		CVE-2024-52286 2024-11-12 22:55 2024-11-12 Show GitHub Exploit DB Packet Storm
248397 - - - Orchid is a @laravel package that allows for rapid application development of back-office applications, admin/user panels, and dashboards. This vulnerability is a method exposure issue (CWE-749: Expo… CWE-749
 Exposed Dangerous Method or Function 		CVE-2024-51992 2024-11-12 22:55 2024-11-12 Show GitHub Exploit DB Packet Storm
248398 - - - D-Link DIR-820L 1.05b03 was discovered to contain a remote code execution (RCE) vulnerability via the ping_addr parameter in the ping_v4 and ping_v6 functions. - CVE-2024-51186 2024-11-12 22:55 2024-11-12 Show GitHub Exploit DB Packet Storm
248399 - - - In Eclipse OpenJ9 versions up to 0.47, the JNI function GetStringUTFLength may return an incorrect value which has wrapped around. From 0.48 the value is correct but may be truncated to include a sma… - CVE-2024-10917 2024-11-12 22:55 2024-11-12 Show GitHub Exploit DB Packet Storm
248400 - - - A Cross Site Scriptng (XSS) vulnerability was found in /omrs/admin/search.php in PHPGurukul Online Marriage Registration System 1.0, which allows remote attackers to execute arbitrary code via the "s… - CVE-2024-51054 2024-11-12 22:55 2024-11-12 Show GitHub Exploit DB Packet Storm