Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
241731	5	警告	exv2	-	eXV2 CMS におけるセッションをハイジャックされる脆弱性	CWE-287 不適切な認証	CVE-2007-1966	2012-06-26 15:46	2007-04-11	Show	GitHub Exploit DB Packet Storm

241732	4.3	警告	exv2	-	eXV2 CMS におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-1965	2012-06-26 15:46	2007-04-11	Show	GitHub Exploit DB Packet Storm

241733	6.8	警告	guernion sylvain portail	-	Guernion Sylvain Portail Web Php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-1957	2012-06-26 15:46	2007-04-10	Show	GitHub Exploit DB Packet Storm

241734	7.5	危険	archivexpert	-	ArchiveXpert におけるディレクトリトラバーサルの脆弱性	-	CVE-2007-1954	2012-06-26 15:46	2007-04-10	Show	GitHub Exploit DB Packet Storm

241735	9.3	危険	ACD Systems International	-	ACDSee Photo Manager における整数オーバーフローの脆弱性	-	CVE-2007-1943	2012-06-26 15:46	2007-04-10	Show	GitHub Exploit DB Packet Storm

241736	9.3	危険	FastStone Soft	-	FastStone Image Viewer における整数オーバーフローの脆弱性	-	CVE-2007-1942	2012-06-26 15:46	2007-04-10	Show	GitHub Exploit DB Packet Storm

241737	6.8	警告	daniel naber	-	Daniel Naber LanguageTool の埋め込み Web サーバにおけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-1939	2012-06-26 15:46	2007-04-10	Show	GitHub Exploit DB Packet Storm

241738	6.8	警告	dreamcodes	-	Scorp Book の smilies.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-1937	2012-06-26 15:46	2007-04-10	Show	GitHub Exploit DB Packet Storm

241739	7.5	危険	dreamcodes	-	PcP-Book におけるディレクトリトラバーサルの脆弱性	-	CVE-2007-1933	2012-06-26 15:46	2007-04-10	Show	GitHub Exploit DB Packet Storm

241740	7.8	危険	cattadoc	-	cattaDoc の download2.php におけるディレクトリトラバーサルの脆弱性	-	CVE-2007-1930	2012-06-26 15:46	2007-04-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 18, 2026, 4:11 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
251071	-		-	-	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in RestaurantConnect, Inc Restaurant Reservations Widget allows Reflected XSS.This issue affe…	CWE-79 Cross-site Scripting	CVE-2024-48023	2024-10-18 21:52	2024-10-17	Show	GitHub Exploit DB Packet Storm

251072	-		-	-	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in SysBasics Shortcode For Elementor Templates allows Stored XSS.This issue affects Shortcode…	CWE-79 Cross-site Scripting	CVE-2024-48022	2024-10-18 21:52	2024-10-17	Show	GitHub Exploit DB Packet Storm

251073	-		-	-	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Scott Paterson Contact Form 7 – PayPal & Stripe Add-on allows Reflected XSS.This issue aff…	CWE-79 Cross-site Scripting	CVE-2024-48021	2024-10-18 21:52	2024-10-17	Show	GitHub Exploit DB Packet Storm

251074	-		-	-	Nokia SR OS routers allow read-write access to the entire file system via SFTP or SCP for users configured with "access console." Consequently, a low privilege authenticated user with "access console…	-	CVE-2023-6729	2024-10-18 21:52	2024-10-17	Show	GitHub Exploit DB Packet Storm

251075	-		-	-	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Dennis Hoppe Encyclopedia / Glossary / Wiki allows Reflected XSS.This issue affects Encycl…	CWE-79 Cross-site Scripting	CVE-2024-49320	2024-10-18 21:52	2024-10-17	Show	GitHub Exploit DB Packet Storm

251076	-		-	-	Cross-Site Request Forgery (CSRF) vulnerability in Razon Komar Pal Linked Variation for WooCommerce allows Cross Site Request Forgery.This issue affects Linked Variation for WooCommerce: from n/a thr…	CWE-352 Origin Validation Error	CVE-2024-48047	2024-10-18 21:52	2024-10-17	Show	GitHub Exploit DB Packet Storm

251077	-		-	-	Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in ShortPixel ShortPixel Image Optimizer allows Blind SQL Injection.This issue affects ShortPixel Im…	CWE-89 SQL Injection	CVE-2024-48043	2024-10-18 21:52	2024-10-17	Show	GitHub Exploit DB Packet Storm

251078	-		-	-	Cross-Site Request Forgery (CSRF) vulnerability in Hans Matzen wp-Monalisa allows Cross Site Request Forgery.This issue affects wp-Monalisa: from n/a through 6.4.	CWE-352 Origin Validation Error	CVE-2024-48038	2024-10-18 21:52	2024-10-17	Show	GitHub Exploit DB Packet Storm

251079	-		-	-	: Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Fahad Mahmood Keep Backup Daily allows Retrieve Embedded Sensitive Data.This issue affects Keep Backup Da…	CWE-497 Exposure of Sensitive System Information to an Unauthorized Control Sphere	CVE-2024-48024	2024-10-18 21:52	2024-10-17	Show	GitHub Exploit DB Packet Storm

251080	6.4	MEDIUM Network	-	-	The Parallax Image plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's dd-parallax shortcode in all versions up to, and including, 1.8 due to insufficient input sanitiz…	-	CVE-2024-9898	2024-10-18 21:52	2024-10-17	Show	GitHub Exploit DB Packet Storm