Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
239441	4.3	警告	goodlyrics	-	buymyscripts Lyrics Script の search_results.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-4672	2012-06-26 16:02	2008-10-22	Show	GitHub Exploit DB Packet Storm

239442	4.3	警告	ed putal	-	Ed Pudol Clickbank Portal の search.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-4670	2012-06-26 16:02	2008-10-22	Show	GitHub Exploit DB Packet Storm

239443	4.3	警告	dan fletcher	-	Dan Fletcher Recipe Script の search.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-4669	2012-06-26 16:02	2008-10-22	Show	GitHub Exploit DB Packet Storm

239444	7.5	危険	arabcms	-	ArabCMS の rss.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-4667	2012-06-26 16:02	2008-10-22	Show	GitHub Exploit DB Packet Storm

239445	6.8	警告	deeserver	-	Ultimate Webboard の webboard.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4666	2012-06-26 16:02	2008-10-22	Show	GitHub Exploit DB Packet Storm

239446	7.5	危険	datingpro	-	PG Matchmaking における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4665	2012-06-26 16:02	2008-10-22	Show	GitHub Exploit DB Packet Storm

239447	9.3	危険	Dart Communications	-	ActiveX 用の Dart Communications PowerTCP FTP の ActiveX コントロールにおけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-4652	2012-06-26 16:02	2008-10-21	Show	GitHub Exploit DB Packet Storm

239448	7.5	危険	Elxis	-	Elxis CMS におけるセッションをハイジャックされる脆弱性	CWE-287 不適切な認証	CVE-2008-4649	2012-06-26 16:02	2008-10-21	Show	GitHub Exploit DB Packet Storm

239449	4.3	警告	Elxis	-	Elxis CMS の index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-4648	2012-06-26 16:02	2008-10-21	Show	GitHub Exploit DB Packet Storm

239450	7.5	危険	astrospaces	-	AstroSPACES の profile.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4642	2012-06-26 16:02	2008-10-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 24, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
257461	-	-	-	Server-Side Request Forgery (SSRF) vulnerability in Jordy Meow AI Engine: ChatGPT Chatbot allows Server Side Request Forgery.This issue affects AI Engine: ChatGPT Chatbot: from n/a through 2.4.7.	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2024-38791	2024-08-2 21:59	2024-08-2	Show	GitHub Exploit DB Packet Storm

257462	-	-	-	Improper Privilege Management vulnerability in WebAppick CTX Feed allows Privilege Escalation.This issue affects CTX Feed: from n/a through 6.5.6.	CWE-269 Improper Privilege Management	CVE-2024-38775	2024-08-2 21:59	2024-08-2	Show	GitHub Exploit DB Packet Storm

257463	-	-	-	Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Crocoblock JetWidgets for Elementor and WooCommerce allows PHP Local File Inclusion.This issue affects …	-	CVE-2024-38772	2024-08-2 21:59	2024-08-2	Show	GitHub Exploit DB Packet Storm

257464	-	-	-	Improper Privilege Management vulnerability in Revmakx Backup and Staging by WP Time Capsule allows Privilege Escalation, Authentication Bypass.This issue affects Backup and Staging by WP Time Capsul…	CWE-269 Improper Privilege Management	CVE-2024-38770	2024-08-2 21:59	2024-08-2	Show	GitHub Exploit DB Packet Storm

257465	-	-	-	Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Webangon The Pack Elementor addons allows PHP Local File Inclusion, Path Traversal.This issue affects T…	CWE-22 Path Traversal	CVE-2024-38768	2024-08-2 21:59	2024-08-2	Show	GitHub Exploit DB Packet Storm

257466	-	-	-	Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in MakeStories Team MakeStories (for Google Web Stories) allows Path Traversal, Server Side Request Forger…	CWE-22 Path Traversal	CVE-2024-38746	2024-08-2 21:59	2024-08-2	Show	GitHub Exploit DB Packet Storm

257467	-	-	-	Under certain circumstances exacqVision Web Services will not enforce secure web communications (HTTPS)	-	CVE-2024-32864	2024-08-2 21:59	2024-08-2	Show	GitHub Exploit DB Packet Storm

257468	-	-	-	Under certain circumstances the exacqVision Web Services may be susceptible to Cross-Site Request Forgery (CSRF)	-	CVE-2024-32863	2024-08-2 21:59	2024-08-2	Show	GitHub Exploit DB Packet Storm

257469	-	-	-	Improper Privilege Management vulnerability in WPForms, LLC. WPForms User Registration allows Privilege Escalation.This issue affects WPForms User Registration: from n/a through 2.1.0.	CWE-269 Improper Privilege Management	CVE-2023-52209	2024-08-2 21:59	2024-08-2	Show	GitHub Exploit DB Packet Storm

257470	-	-	-	A vulnerability was found in SourceCodester Tracking Monitoring Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /manage_establishmen…	CWE-89 SQL Injection	CVE-2024-7365	2024-08-2 21:59	2024-08-2	Show	GitHub Exploit DB Packet Storm