Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228001	4.3	警告	SquirrelMail Project	-	SquirrelMail におけるクッキーをハイジャックされる脆弱性	-	CVE-2006-3665	2012-12-20 18:02	2006-07-18	Show	GitHub Exploit DB Packet Storm

228002	4.6	警告	finjan	-	Finjan Vital Security Appliance における権限を取得される脆弱性	-	CVE-2006-3663	2012-12-20 18:02	2006-07-18	Show	GitHub Exploit DB Packet Storm

228003	5.8	警告	pixelated by lev	-	PBL Guestbook の pblguestbook.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-3617	2012-12-20 18:02	2006-07-18	Show	GitHub Exploit DB Packet Storm

228004	4.3	警告	carbonize	-	Carbonize Lazarus Guestbook におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-3616	2012-12-20 18:02	2006-07-18	Show	GitHub Exploit DB Packet Storm

228005	5.1	警告	Phorum	-	Phorum における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-3615	2012-12-20 18:02	2006-07-13	Show	GitHub Exploit DB Packet Storm

228006	7.5	危険	orbitcoders	-	Orbitcoders OrbitMATRIX の index.php における SQL エラーを誘発される脆弱性	-	CVE-2006-3614	2012-12-20 18:02	2006-07-18	Show	GitHub Exploit DB Packet Storm

228007	5.8	警告	chamberland technology	-	Chamberland Technology ezWaiter Online におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-3613	2012-12-20 18:02	2006-07-18	Show	GitHub Exploit DB Packet Storm

228008	2.6	注意	Phorum	-	Phorum におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-3612	2012-12-20 18:02	2006-07-13	Show	GitHub Exploit DB Packet Storm

228009	5.5	警告	Phorum	-	Phorum の pm.php におけるディレクトリトラバーサルの脆弱性	-	CVE-2006-3611	2012-12-20 18:02	2006-07-13	Show	GitHub Exploit DB Packet Storm

228010	5	警告	orbitcoders	-	Orbitcoders OrbitMATRIX の index.php における重要な情報を取得される脆弱性	-	CVE-2006-3610	2012-12-20 18:02	2006-07-18	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 21, 2026, 4:10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
248781	6.1	MEDIUM Network	flycart	discount_rules_for_woocommerce	The Discount Rules for WooCommerce – Create Smart WooCommerce Coupons & Discounts, Bulk Discount, BOGO Coupons plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of a…	CWE-79 Cross-site Scripting	CVE-2024-8541	2024-11-9 00:07	2024-10-16	Show	GitHub Exploit DB Packet Storm

248782	8.8	HIGH Network	ibm	watson_studio_local	IBM Watson Studio Local 1.2.3 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts.	CWE-352 Origin Validation Error	CVE-2024-49340	2024-11-9 00:06	2024-10-16	Show	GitHub Exploit DB Packet Storm

248783	7.2	HIGH Network	davidlingren	media_library_assistant	Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability in David Lingren Media Library Assistant allows Command Injection.This issue affects Media Lib…	CWE-78 OS Command	CVE-2024-51661	2024-11-9 00:02	2024-11-4	Show	GitHub Exploit DB Packet Storm

248784	4.6	MEDIUM Network	mattermost	mattermost_server	Mattermost versions 9.10.x <= 9.10.2, 9.11.x <= 9.11.1, 9.5.x <= 9.5.9 fail to sanitize user inputs in the frontend that are used for redirection which allows for a one-click client-side path travers…	CWE-352 Origin Validation Error	CVE-2024-46872	2024-11-9 00:00	2024-10-29	Show	GitHub Exploit DB Packet Storm

248785	6.1	MEDIUM Network	latex2html	latex2html	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Van Abel LaTeX2HTML allows Reflected XSS.This issue affects LaTeX2HTML: from n/a through 2…	CWE-79 Cross-site Scripting	CVE-2024-49673	2024-11-8 23:57	2024-10-29	Show	GitHub Exploit DB Packet Storm

248786	6.1	MEDIUM Network	samglover	client_power_tools	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Sam Glover Client Power Tools Portal allows Reflected XSS.This issue affects Client Power …	CWE-79 Cross-site Scripting	CVE-2024-49670	2024-11-8 23:57	2024-10-29	Show	GitHub Exploit DB Packet Storm

248787	5.4	MEDIUM Network	affiliatexblocks	affiliatex	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in AffiliateX allows Stored XSS.This issue affects AffiliateX: from n/a through 1.2.9.	CWE-79 Cross-site Scripting	CVE-2024-49692	2024-11-8 23:55	2024-10-29	Show	GitHub Exploit DB Packet Storm

248788	5.4	MEDIUM Network	brainstormforce	astra_widgets	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Brainstorm Force Astra Widgets allows Stored XSS.This issue affects Astra Widgets: from n/…	CWE-79 Cross-site Scripting	CVE-2024-50439	2024-11-8 23:53	2024-10-29	Show	GitHub Exploit DB Packet Storm

248789	5.4	MEDIUM Network	wpkoi	wpkoi_templates_for_elementor	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in WPKoi WPKoi Templates for Elementor allows Stored XSS.This issue affects WPKoi Templates f…	CWE-79 Cross-site Scripting	CVE-2024-49679	2024-11-8 23:52	2024-10-29	Show	GitHub Exploit DB Packet Storm

248790	6.1	MEDIUM Network	themoyles	church_admin	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Andy Moyle Church Admin allows Reflected XSS.This issue affects Church Admin: from n/a bef…	CWE-79 Cross-site Scripting	CVE-2024-50438	2024-11-8 23:52	2024-10-29	Show	GitHub Exploit DB Packet Storm