Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
227921	5	警告	till gerken	-	Till Gerken phpPolls における新規の世論調査を作成される脆弱性	-	CVE-2006-3764	2012-12-20 18:02	2006-07-21	Show	GitHub Exploit DB Packet Storm

227922	7.5	危険	dieselscripts	-	Diesel Joke Site の category.php における SQL インジェクションの脆弱性	-	CVE-2006-3763	2012-12-20 18:02	2006-07-21	Show	GitHub Exploit DB Packet Storm

227923	7.5	危険	touch control	-	Touch Control ActiveX コントロールにおける任意のファイルを実行される脆弱性	-	CVE-2006-3762	2012-12-20 18:02	2006-07-21	Show	GitHub Exploit DB Packet Storm

227924	4.3	警告	mybulletinboard	-	MyBB の inc/functions_post.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2006-3761	2012-12-20 18:02	2006-06-27	Show	GitHub Exploit DB Packet Storm

227925	7.5	危険	mybulletinboard	-	MyBB における SQL インジェクションの脆弱性	-	CVE-2006-3760	2012-12-20 18:02	2006-06-27	Show	GitHub Exploit DB Packet Storm

227926	5	警告	mybulletinboard	-	MyBB における脆弱性	-	CVE-2006-3759	2012-12-20 18:02	2006-06-27	Show	GitHub Exploit DB Packet Storm

227927	7.5	危険	mybulletinboard	-	MyBB の Archive Model の inc/init.php における任意の変数を上書きされる脆弱性	-	CVE-2006-3758	2012-12-20 18:02	2006-06-27	Show	GitHub Exploit DB Packet Storm

227928	5	警告	Zen Cart	-	Zen Cart の index.php における重要な情報を取得される脆弱性	-	CVE-2006-3757	2012-12-20 18:02	2006-07-21	Show	GitHub Exploit DB Packet Storm

227929	7.5	危険	flushcms	-	FlushCMS の Include/editor/class.rich.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-3755	2012-12-20 18:02	2006-07-21	Show	GitHub Exploit DB Packet Storm

227930	7.5	危険	flushcms	-	FlushCMS の Include/editor/rich_files/class.rich.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-3754	2012-12-20 18:02	2006-07-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 24, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
250191	9.8	CRITICAL Network	acnoo	flutter_api	Authentication Bypass Using an Alternate Path or Channel vulnerability in Acnoo Acnoo Flutter API allows Authentication Bypass.This issue affects Acnoo Flutter API: from n/a through 1.0.5.	CWE-306 Missing Authentication for Critical Function	CVE-2024-50486	2024-10-30 01:07	2024-10-28	Show	GitHub Exploit DB Packet Storm

250192	4.8	MEDIUM Network	aftabhusain	category_and_taxonomy_meta_fields	The Category and Taxonomy Meta Fields plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the image meta field value in the 'wpaft_add_meta_textinput' function in versions up to, an…	CWE-79 Cross-site Scripting	CVE-2024-9590	2024-10-30 01:07	2024-10-22	Show	GitHub Exploit DB Packet Storm

250193	4.8	MEDIUM Network	aftabhusain	category_and_taxonomy_meta_fields	The Category and Taxonomy Meta Fields plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'new_meta_name' parameter in the 'wpaft_option_page' function in versions up to, and in…	CWE-79 Cross-site Scripting	CVE-2024-9589	2024-10-30 01:07	2024-10-22	Show	GitHub Exploit DB Packet Storm

250194	9.8	CRITICAL Network	pluginus	wordpress_meta_data_and_taxonomies_filter	Improper Control of Generation of Code ('Code Injection') vulnerability in realmag777 WordPress Meta Data and Taxonomies Filter (MDTF) allows Code Injection.This issue affects WordPress Meta Data and…	CWE-94 Code Injection	CVE-2024-50450	2024-10-30 01:05	2024-10-28	Show	GitHub Exploit DB Packet Storm

250195	7.2	HIGH Network	royal-elementor-addons	royal_elementor_addons	Improper Restriction of XML External Entity Reference vulnerability in WP Royal Royal Elementor Addons allows XML Injection.This issue affects Royal Elementor Addons: from n/a through 1.3.980.	CWE-611 XXE	CVE-2024-50442	2024-10-30 01:04	2024-10-28	Show	GitHub Exploit DB Packet Storm

250196	4.8	MEDIUM Network	aftabhusain	category_and_taxonomy_image	The Category and Taxonomy Image plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the '_category_image' parameter in versions up to, and including, 1.0.0 due to insufficient input…	CWE-79 Cross-site Scripting	CVE-2024-9591	2024-10-30 01:04	2024-10-22	Show	GitHub Exploit DB Packet Storm

250197	8.8	HIGH Network	wpclever	wpc_shop_as_a_customer_for_woocommerce	Deserialization of Untrusted Data vulnerability in WPClever WPC Shop as a Customer for WooCommerce allows Object Injection.This issue affects WPC Shop as a Customer for WooCommerce: from n/a through …	CWE-502 Deserialization of Untrusted Data	CVE-2024-50416	2024-10-30 01:02	2024-10-28	Show	GitHub Exploit DB Packet Storm

250198	8.8	HIGH Network	kibokolabs	namaste\!_lms	Deserialization of Untrusted Data vulnerability in Kiboko Labs Namaste! LMS allows Object Injection.This issue affects Namaste! LMS: from n/a through 2.6.3.	CWE-502 Deserialization of Untrusted Data	CVE-2024-50408	2024-10-30 01:01	2024-10-28	Show	GitHub Exploit DB Packet Storm

250199	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Implement bounds check for stream encoder creation in DCN401 'stream_enc_regs' array is an array of dcn10_stream…	CWE-129 Improper Validation of Array Index	CVE-2024-49970	2024-10-30 00:57	2024-10-22	Show	GitHub Exploit DB Packet Storm

250200	6.5	MEDIUM Network	metagauss	profilegrid	Missing Authorization vulnerability in ProfileGrid User Profiles ProfileGrid.This issue affects ProfileGrid: from n/a through 5.9.3.	CWE-862 Missing Authorization	CVE-2024-49273	2024-10-30 00:48	2024-10-21	Show	GitHub Exploit DB Packet Storm