Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
227881	6.5	警告	kailash nadh	-	Kailash Nadh boastMachine における SQL インジェクション保護メカニズムを回避される脆弱性	-	CVE-2006-3828	2012-12-20 18:02	2006-07-25	Show	GitHub Exploit DB Packet Storm

227882	6.5	警告	kailash nadh	-	Kailash Nadh boastMachine の bmc/Inc/core/admin/search.inc における SQL インジェクションの脆弱性	-	CVE-2006-3827	2012-12-20 18:02	2006-07-25	Show	GitHub Exploit DB Packet Storm

227883	4.3	警告	kailash nadh	-	Kailash Nadh boastMachine におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-3826	2012-12-20 18:02	2006-07-25	Show	GitHub Exploit DB Packet Storm

227884	5.1	警告	Geodesic Solutions	-	GeodesicSolutions の index.php における SQL インジェクションの脆弱性	-	CVE-2006-3823	2012-12-20 18:02	2006-07-25	Show	GitHub Exploit DB Packet Storm

227885	5.1	警告	Geodesic Solutions	-	GeodesicSolutions GeoAuctions Enterprise の index.php における SQL インジェクションの脆弱性	-	CVE-2006-3822	2012-12-20 18:02	2006-07-25	Show	GitHub Exploit DB Packet Storm

227886	4.3	警告	ATRC	-	ATutor におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-3821	2012-12-20 18:02	2006-07-25	Show	GitHub Exploit DB Packet Storm

227887	7.5	危険	TWiki	-	TWiki の設定スクリプトにおける任意の Perl コードを実行される脆弱性	-	CVE-2006-3819	2012-12-20 18:02	2006-07-21	Show	GitHub Exploit DB Packet Storm

227888	7.5	危険	krusader	-	Krusader におけるパスワードを盗まれる脆弱性	-	CVE-2006-3816	2012-12-20 18:02	2006-07-25	Show	GitHub Exploit DB Packet Storm

227889	5.1	警告	cheese tracker	-	Cheese Tracker の loader_xm.cpp におけるバッファオーバーフローの脆弱性	-	CVE-2006-3814	2012-12-20 18:02	2006-07-25	Show	GitHub Exploit DB Packet Storm

227890	4.3	警告	amazing flash commerce	-	Amazing Flash AFCommerce Shopping Cart におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-3800	2012-12-20 18:02	2006-07-24	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 18, 2026, 4:11 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
249171	9.8	CRITICAL Network	langchain	langchain	A vulnerability in the GraphCypherQAChain class of langchain-ai/langchain version 0.2.5 allows for SQL injection through prompt injection. This vulnerability can lead to unauthorized data manipulatio…	CWE-74 Injection	CVE-2024-8309	2024-11-2 04:19	2024-10-29	Show	GitHub Exploit DB Packet Storm

249172	6.1	MEDIUM Network	campusexplorer	widget	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Campus Explorer Campus Explorer Widget allows Reflected XSS.This issue affects Campus Expl…	CWE-79 Cross-site Scripting	CVE-2024-49660	2024-11-2 04:01	2024-10-29	Show	GitHub Exploit DB Packet Storm

249173	6.1	MEDIUM Network	webgensis	simple_load_more	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Webgensis Simple Load More allows Reflected XSS.This issue affects Simple Load More: from …	CWE-79 Cross-site Scripting	CVE-2024-49662	2024-11-2 03:56	2024-10-29	Show	GitHub Exploit DB Packet Storm

249174	6.1	MEDIUM Network	leenk	leenk.me	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Lew Ayotte leenk.Me allows Reflected XSS.This issue affects leenk.Me: from n/a through 2.1…	CWE-79 Cross-site Scripting	CVE-2024-49661	2024-11-2 03:56	2024-10-29	Show	GitHub Exploit DB Packet Storm

249175	5.4	MEDIUM Network	webbricks	web_bricks_addons	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Web Bricks Web Bricks Addons for Elementor allows Stored XSS.This issue affects Web Bricks…	CWE-79 Cross-site Scripting	CVE-2024-49665	2024-11-2 03:55	2024-10-29	Show	GitHub Exploit DB Packet Storm

249176	6.1	MEDIUM Network	chatplusjp	chatplusjp	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in allows Reflected XSS.This issue affects chatplusjp: from n/a through 1.02.	CWE-79 Cross-site Scripting	CVE-2024-49664	2024-11-2 03:55	2024-10-29	Show	GitHub Exploit DB Packet Storm

249177	6.1	MEDIUM Network	elenazhyvohliad	ucat	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Elena Zhyvohliad uCAT – Next Story allows Reflected XSS.This issue affects uCAT – Next Sto…	CWE-79 Cross-site Scripting	CVE-2024-49663	2024-11-2 03:55	2024-10-29	Show	GitHub Exploit DB Packet Storm

249178	5.4	MEDIUM Network	nervythemes	local_business_addons_for_elementor	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in NervyThemes Local Business Addons For Elementor allows Stored XSS.This issue affects Local…	CWE-79 Cross-site Scripting	CVE-2024-49667	2024-11-2 03:48	2024-10-29	Show	GitHub Exploit DB Packet Storm

249179	4.3	MEDIUM Network	giuliopanda	bulk_images_optimizer	The Bulk images optimizer: Resize, optimize, convert to webp, rename … plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'save_configura…	CWE-862 Missing Authorization	CVE-2024-9361	2024-11-2 03:46	2024-10-18	Show	GitHub Exploit DB Packet Storm

249180	9.8	CRITICAL Network	zte	wrtm326_firmware	The wireless router WRTM326 from SECOM does not properly validate a specific parameter. An unauthenticated remote attacker could execute arbitrary system commands by sending crafted requests.	CWE-78 OS Command	CVE-2024-10119	2024-11-2 03:40	2024-10-18	Show	GitHub Exploit DB Packet Storm