Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
227901	7.5	危険	ufo2000	-	UFO2000 の multiplay.cpp におけるバッファオーバーフローの脆弱性	-	CVE-2006-3788	2012-12-20 18:02	2006-07-24	Show	GitHub Exploit DB Packet Storm

227902	2.1	注意	Kerio Technologies	-	Sunbelt Kerio Personal Firewall の kpf4ss.exe におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-3787	2012-12-20 18:02	2006-07-24	Show	GitHub Exploit DB Packet Storm

227903	3.6	注意	シマンテック	-	Symantec pcAnywhere におけるカスタム .cif ファイルを生成される脆弱性	-	CVE-2006-3786	2012-12-20 18:02	2006-07-24	Show	GitHub Exploit DB Packet Storm

227904	2.1	注意	シマンテック	-	Symantec pcAnywhere におけるパスワードを取得される脆弱性	-	CVE-2006-3785	2012-12-20 18:02	2006-07-24	Show	GitHub Exploit DB Packet Storm

227905	7.2	危険	シマンテック	-	Symantec pcAnywhere における権限を取得される脆弱性	-	CVE-2006-3784	2012-12-20 18:02	2006-07-24	Show	GitHub Exploit DB Packet Storm

227906	5	警告	keyifweb	-	Keyifweb Keyif Portal におけるデータベースをダウンロードされる脆弱性	-	CVE-2006-3780	2012-12-20 18:02	2006-07-24	Show	GitHub Exploit DB Packet Storm

227907	6.5	警告	シトリックス・システムズ	-	Citrix MetaFrame における権限を取得される脆弱性	-	CVE-2006-3779	2012-12-20 18:02	2006-07-24	Show	GitHub Exploit DB Packet Storm

227908	7.5	危険	idevSpot	-	IDevSpot PhpLinkExchange の index.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2006-3777	2012-12-20 18:02	2006-07-24	Show	GitHub Exploit DB Packet Storm

227909	7.5	危険	idevSpot	-	IDevSpot PhpHostBot および AutoHost の order/index.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2006-3776	2012-12-20 18:02	2006-07-24	Show	GitHub Exploit DB Packet Storm

227910	7.5	危険	mybulletinboard	-	MyBB の class_session.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2006-3775	2012-12-20 18:02	2006-07-24	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 20, 2026, 4:09 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
248821	-		-	-	In gradio <=4.42.0, the gr.DownloadButton function has a hidden server-side request forgery (SSRF) vulnerability. The reason is that within the save_url_to_cache function, there are no restrictions o…	-	CVE-2024-48052	2024-11-7 05:35	2024-11-5	Show	GitHub Exploit DB Packet Storm

248822	-		-	-	An issue was discovered in Infinera hiT 7300 5.60.50. Hidden functionality in the web interface allows a remote authenticated attacker to access reserved information by accessing undocumented web app…	-	CVE-2024-28808	2024-11-7 05:35	2024-10-1	Show	GitHub Exploit DB Packet Storm

248823	-		-	-	A vulnerability has been discovered in all versions of Smartplay headunits, which are widely used in Suzuki and Toyota cars. This misconfiguration can lead to information disclosure, leaking sensitiv…	-	CVE-2024-39339	2024-11-7 05:35	2024-09-19	Show	GitHub Exploit DB Packet Storm

248824	-		-	-	An issue was discovered in Atos Eviden SMC xScale before 1.6.6. During initialization of nodes, some configuration parameters are retrieved from management nodes. These parameters embed credentials w…	-	CVE-2024-42018	2024-11-7 05:35	2024-10-12	Show	GitHub Exploit DB Packet Storm

248825	6.1	MEDIUM Network	ahmetimamoglu	ahmeti_wp_timeline	Cross-Site Request Forgery (CSRF) vulnerability in Ahmet Imamoglu Ahmeti Wp Timeline allows Stored XSS.This issue affects Ahmeti Wp Timeline: from n/a through 5.1.	CWE-352 Origin Validation Error	CVE-2024-49237	2024-11-7 05:33	2024-10-18	Show	GitHub Exploit DB Packet Storm

248826	-		-	-	Bruno before 1.29.1 uses Electron shell.openExternal without validation (of http or https) for opening windows within the Markdown docs viewer.	-	CVE-2024-48463	2024-11-7 04:35	2024-11-5	Show	GitHub Exploit DB Packet Storm

248827	-		-	-	An issue was discovered in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 9820, 9825, 980, 990, 850, 1080, 2100, 1280, 2200, 1330, 1380, 1480, 2400, 9110, W920, W930, Modem 5123, Mode…	-	CVE-2024-45185	2024-11-7 04:35	2024-11-5	Show	GitHub Exploit DB Packet Storm

248828	-		-	-	This High severity Reflected XSS and CSRF (Cross-Site Request Forgery) vulnerability was introduced in versions 7.19.0, 7.20.0, 8.0.0, 8.1.0, 8.2.0, 8.3.0, 8.4.0, 8.5.0, 8.6.0, 8.7.1, 8.8.0, and 8.9.…	-	CVE-2024-21690	2024-11-7 04:35	2024-08-22	Show	GitHub Exploit DB Packet Storm

248829	4.8	MEDIUM Network	migaweb	accordion_title_for_elementor	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Michael Gangolf Accordion title for Elementor allows Stored XSS.This issue affects Accordi…	CWE-79 Cross-site Scripting	CVE-2024-51685	2024-11-7 04:34	2024-11-5	Show	GitHub Exploit DB Packet Storm

248830	7.5	HIGH Network	aetherproject	onos-a1t sdran-in-a-box	An issue in Open Networking Foundations sdran-in-a-box v.1.4.3 and onos-a1t v.0.2.3 allows a remote attacker to cause a denial of service via the onos-a1t component of the sdran-in-a-box, specificall…	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2024-48809	2024-11-7 04:33	2024-11-5	Show	GitHub Exploit DB Packet Storm