Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
227961	4.6	警告	rocks clusters	-	Rocks Clusters における権限を取得される脆弱性	-	CVE-2006-3693	2012-12-20 18:02	2006-07-21	Show	GitHub Exploit DB Packet Storm

227962	7.5	危険	vbzoom	-	VBZooM における SQL インジェクションの脆弱性	-	CVE-2006-3691	2012-12-20 18:02	2006-07-21	Show	GitHub Exploit DB Packet Storm

227963	7.5	危険	miniBB	-	MiniBB Forum における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-3690	2012-12-20 18:02	2006-07-21	Show	GitHub Exploit DB Packet Storm

227964	7.5	危険	francisco charrua	-	Fransisco Charrua Photo-Gallery の Room.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2006-3688	2012-12-20 18:02	2006-07-21	Show	GitHub Exploit DB Packet Storm

227965	7.5	危険	D-Link Systems, Inc.	-	D-Link DI-524 の UPnP サービス内におけるスタックベースのバッファオーバーフローの脆弱性	-	CVE-2006-3687	2012-12-20 18:02	2006-07-21	Show	GitHub Exploit DB Packet Storm

227966	5	警告	ヒューレット・パッカード	-	HP Open VMS の [SYSEXE]SMPUTIL.EXE におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-3686	2012-12-20 18:02	2006-07-21	Show	GitHub Exploit DB Packet Storm

227967	5.1	警告	czaries network	-	CzarNews における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-3685	2012-12-20 18:02	2006-07-21	Show	GitHub Exploit DB Packet Storm

227968	7.5	危険	softcomplex	-	SoftComplex PHP Event Calendar の calendar.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-3684	2012-12-20 18:02	2006-07-21	Show	GitHub Exploit DB Packet Storm

227969	7.5	危険	flipper poll	-	Flipper Poll の poll.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-3683	2012-12-20 18:02	2006-07-21	Show	GitHub Exploit DB Packet Storm

227970	5	警告	Laurent Destailleur	-	AWStats の awstats.pl におけるインストールパスを取得される脆弱性	-	CVE-2006-3682	2012-12-20 18:02	2006-07-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 18, 2026, 4:11 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
249171	9.8	CRITICAL Network	langchain	langchain	A vulnerability in the GraphCypherQAChain class of langchain-ai/langchain version 0.2.5 allows for SQL injection through prompt injection. This vulnerability can lead to unauthorized data manipulatio…	CWE-74 Injection	CVE-2024-8309	2024-11-2 04:19	2024-10-29	Show	GitHub Exploit DB Packet Storm

249172	6.1	MEDIUM Network	campusexplorer	widget	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Campus Explorer Campus Explorer Widget allows Reflected XSS.This issue affects Campus Expl…	CWE-79 Cross-site Scripting	CVE-2024-49660	2024-11-2 04:01	2024-10-29	Show	GitHub Exploit DB Packet Storm

249173	6.1	MEDIUM Network	webgensis	simple_load_more	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Webgensis Simple Load More allows Reflected XSS.This issue affects Simple Load More: from …	CWE-79 Cross-site Scripting	CVE-2024-49662	2024-11-2 03:56	2024-10-29	Show	GitHub Exploit DB Packet Storm

249174	6.1	MEDIUM Network	leenk	leenk.me	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Lew Ayotte leenk.Me allows Reflected XSS.This issue affects leenk.Me: from n/a through 2.1…	CWE-79 Cross-site Scripting	CVE-2024-49661	2024-11-2 03:56	2024-10-29	Show	GitHub Exploit DB Packet Storm

249175	5.4	MEDIUM Network	webbricks	web_bricks_addons	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Web Bricks Web Bricks Addons for Elementor allows Stored XSS.This issue affects Web Bricks…	CWE-79 Cross-site Scripting	CVE-2024-49665	2024-11-2 03:55	2024-10-29	Show	GitHub Exploit DB Packet Storm

249176	6.1	MEDIUM Network	chatplusjp	chatplusjp	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in allows Reflected XSS.This issue affects chatplusjp: from n/a through 1.02.	CWE-79 Cross-site Scripting	CVE-2024-49664	2024-11-2 03:55	2024-10-29	Show	GitHub Exploit DB Packet Storm

249177	6.1	MEDIUM Network	elenazhyvohliad	ucat	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Elena Zhyvohliad uCAT – Next Story allows Reflected XSS.This issue affects uCAT – Next Sto…	CWE-79 Cross-site Scripting	CVE-2024-49663	2024-11-2 03:55	2024-10-29	Show	GitHub Exploit DB Packet Storm

249178	5.4	MEDIUM Network	nervythemes	local_business_addons_for_elementor	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in NervyThemes Local Business Addons For Elementor allows Stored XSS.This issue affects Local…	CWE-79 Cross-site Scripting	CVE-2024-49667	2024-11-2 03:48	2024-10-29	Show	GitHub Exploit DB Packet Storm

249179	4.3	MEDIUM Network	giuliopanda	bulk_images_optimizer	The Bulk images optimizer: Resize, optimize, convert to webp, rename … plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'save_configura…	CWE-862 Missing Authorization	CVE-2024-9361	2024-11-2 03:46	2024-10-18	Show	GitHub Exploit DB Packet Storm

249180	9.8	CRITICAL Network	zte	wrtm326_firmware	The wireless router WRTM326 from SECOM does not properly validate a specific parameter. An unauthenticated remote attacker could execute arbitrary system commands by sending crafted requests.	CWE-78 OS Command	CVE-2024-10119	2024-11-2 03:40	2024-10-18	Show	GitHub Exploit DB Packet Storm