Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227911 6.8 警告 Joomla! - Joomla! 用の com_performs における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2006-3774 2012-12-20 18:02 2006-07-24 Show GitHub Exploit DB Packet Storm
227912 6.8 警告 Mambo Foundation - Joomla! および Mambo 用の Bridge コンポーネントにおける PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2006-3773 2012-12-20 18:02 2006-07-10 Show GitHub Exploit DB Packet Storm
227913 5.1 警告 php-post - PHP-Post における管理者権限を取得される脆弱性 - CVE-2006-3772 2012-12-20 18:02 2006-07-24 Show GitHub Exploit DB Packet Storm
227914 7.5 危険 imaginex-resource - iManage CMS の component.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-3771 2012-12-20 18:02 2006-07-24 Show GitHub Exploit DB Packet Storm
227915 7.5 危険 phpfaber - phpFaber TopSites の index.php における SQL インジェクションの脆弱性 - CVE-2006-3770 2012-12-20 18:02 2006-07-24 Show GitHub Exploit DB Packet Storm
227916 2.6 注意 top xl - Top XL におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-3769 2012-12-20 18:02 2006-07-24 Show GitHub Exploit DB Packet Storm
227917 6.4 警告 intervations - FileCOPA FTP Server の filecpnt.exe における整数アンダーフローの脆弱性 - CVE-2006-3768 2012-12-20 18:02 2006-07-28 Show GitHub Exploit DB Packet Storm
227918 6.8 警告 darrens 5-dollar script archive - Darren's $5 Script Archive osDate の showprofile.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-3767 2012-12-20 18:02 2006-07-21 Show GitHub Exploit DB Packet Storm
227919 5 警告 darrens 5-dollar script archive - Darren's $5 Script Archive osDate における本人のレートを格上げできる脆弱性 - CVE-2006-3766 2012-12-20 18:02 2006-07-21 Show GitHub Exploit DB Packet Storm
227920 4.3 警告 huttenlocher webdesign - Huttenlocher Webdesign hwdeGUEST におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-3765 2012-12-20 18:02 2006-07-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 20, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
248901 4.8 MEDIUM
Network 		podsfoundation pods The Pods WordPress plugin before 3.2.7.1 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even w… CWE-79
Cross-site Scripting 		CVE-2024-9883 2024-11-7 02:32 2024-11-5 Show GitHub Exploit DB Packet Storm
248902 8.8 HIGH
Network 		esafenet cdg A vulnerability has been found in ESAFENET CDG 5 and classified as critical. This vulnerability affects the function getOneFileDirectory of the file /com/esafenet/servlet/fileManagement/FileDirectory… CWE-89
SQL Injection 		CVE-2024-10502 2024-11-7 02:20 2024-10-30 Show GitHub Exploit DB Packet Storm
248903 8.8 HIGH
Network 		esafenet cdg A vulnerability, which was classified as critical, was found in ESAFENET CDG 5. This affects the function findById of the file /com/esafenet/servlet/document/ExamCDGDocService.java. The manipulation … CWE-89
SQL Injection 		CVE-2024-10501 2024-11-7 02:20 2024-10-30 Show GitHub Exploit DB Packet Storm
248904 5.4 MEDIUM
Network 		neumann n-line N-LINE 2.0.6 and prior versions contain a code injection vulnerability. If this vulnerability is exploited, arbitrary code may be executed on the instructor's browser, or the instructor may be direct… CWE-94
Code Injection 		CVE-2024-47158 2024-11-7 02:10 2024-10-25 Show GitHub Exploit DB Packet Storm
248905 7.5 HIGH
Network 		neumann musasi MUSASI version 3 contains an issue with use of client-side authentication. If this vulnerability is exploited, other users' credential and sensitive information may be retrieved. NVD-CWE-Other
CVE-2024-45785 2024-11-7 02:08 2024-10-25 Show GitHub Exploit DB Packet Storm
248906 9.8 CRITICAL
Network 		lindeni multi_purpose_mail_form Unrestricted Upload of File with Dangerous Type vulnerability in mahlamusa Multi Purpose Mail Form allows Upload a Web Shell to a Web Server.This issue affects Multi Purpose Mail Form: from n/a throu… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2024-50526 2024-11-7 02:07 2024-11-4 Show GitHub Exploit DB Packet Storm
248907 7.5 HIGH
Network 		stacksmarket stacks_mobile_app_builder Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Stacks Stacks Mobile App Builder allows Retrieve Embedded Sensitive Data.This issue affects Stacks Mobile A… NVD-CWE-Other
CVE-2024-50528 2024-11-7 02:06 2024-11-4 Show GitHub Exploit DB Packet Storm
248908 9.8 CRITICAL
Network 		stacksmarket stacks_mobile_app_builder Unrestricted Upload of File with Dangerous Type vulnerability in Stacks Stacks Mobile App Builder allows Upload a Web Shell to a Web Server.This issue affects Stacks Mobile App Builder: from n/a thro… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2024-50527 2024-11-7 02:06 2024-11-4 Show GitHub Exploit DB Packet Storm
248909 8.8 HIGH
Network 		rudrainnovative training_-_courses Unrestricted Upload of File with Dangerous Type vulnerability in Rudra Innnovative Software Training – Courses allows Upload a Web Shell to a Web Server.This issue affects Training – Courses: from n/… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2024-50529 2024-11-7 02:04 2024-11-4 Show GitHub Exploit DB Packet Storm
248910 9.8 CRITICAL
Network 		dfactory responsive_lightbox Missing Authorization vulnerability in dFactory Responsive Lightbox allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Responsive Lightbox: from n/a through 2.4.7. CWE-862
 Missing Authorization 		CVE-2024-43924 2024-11-7 02:03 2024-10-23 Show GitHub Exploit DB Packet Storm