Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
241731	5	警告	exv2	-	eXV2 CMS におけるセッションをハイジャックされる脆弱性	CWE-287 不適切な認証	CVE-2007-1966	2012-06-26 15:46	2007-04-11	Show	GitHub Exploit DB Packet Storm

241732	4.3	警告	exv2	-	eXV2 CMS におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-1965	2012-06-26 15:46	2007-04-11	Show	GitHub Exploit DB Packet Storm

241733	6.8	警告	guernion sylvain portail	-	Guernion Sylvain Portail Web Php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-1957	2012-06-26 15:46	2007-04-10	Show	GitHub Exploit DB Packet Storm

241734	7.5	危険	archivexpert	-	ArchiveXpert におけるディレクトリトラバーサルの脆弱性	-	CVE-2007-1954	2012-06-26 15:46	2007-04-10	Show	GitHub Exploit DB Packet Storm

241735	9.3	危険	ACD Systems International	-	ACDSee Photo Manager における整数オーバーフローの脆弱性	-	CVE-2007-1943	2012-06-26 15:46	2007-04-10	Show	GitHub Exploit DB Packet Storm

241736	9.3	危険	FastStone Soft	-	FastStone Image Viewer における整数オーバーフローの脆弱性	-	CVE-2007-1942	2012-06-26 15:46	2007-04-10	Show	GitHub Exploit DB Packet Storm

241737	6.8	警告	daniel naber	-	Daniel Naber LanguageTool の埋め込み Web サーバにおけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-1939	2012-06-26 15:46	2007-04-10	Show	GitHub Exploit DB Packet Storm

241738	6.8	警告	dreamcodes	-	Scorp Book の smilies.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-1937	2012-06-26 15:46	2007-04-10	Show	GitHub Exploit DB Packet Storm

241739	7.5	危険	dreamcodes	-	PcP-Book におけるディレクトリトラバーサルの脆弱性	-	CVE-2007-1933	2012-06-26 15:46	2007-04-10	Show	GitHub Exploit DB Packet Storm

241740	7.8	危険	cattadoc	-	cattaDoc の download2.php におけるディレクトリトラバーサルの脆弱性	-	CVE-2007-1930	2012-06-26 15:46	2007-04-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 18, 2026, 4:11 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
251191	5.4	MEDIUM Adjacent	gotenna	gotenna_pro	The goTenna Pro App does not authenticate public keys which allows an unauthenticated attacker to manipulate messages. It is advised to update your app to the current release for enhanced encryptio…	CWE-287 Improper Authentication	CVE-2024-47125	2024-10-18 03:15	2024-09-27	Show	GitHub Exploit DB Packet Storm

251192	6.5	MEDIUM Adjacent	gotenna	gotenna_pro	The goTenna Pro App does not encrypt callsigns in messages. It is recommended to not use sensitive information in callsigns when using this and previous versions of the app and update your app to t…	CWE-319 Cleartext Transmission of Sensitive Information	CVE-2024-47124	2024-10-18 03:15	2024-09-27	Show	GitHub Exploit DB Packet Storm

251193	6.5	MEDIUM Adjacent	gotenna	gotenna_pro	In the goTenna Pro App, the encryption keys are stored along with a static IV on the End User Device (EUD). This allows for complete decryption of keys stored on the EUD if physically compromised. …	CWE-922 Insecure Storage of Sensitive Information	CVE-2024-47122	2024-10-18 03:15	2024-09-27	Show	GitHub Exploit DB Packet Storm

251194	4.3	MEDIUM Adjacent	gotenna	gotenna	The goTenna Pro ATAK Plugin's default settings are to share Automatic Position, Location, and Information (PLI) updates every 60 seconds once the plugin is active and goTenna is connected. Users th…	NVD-CWE-Other	CVE-2024-43814	2024-10-18 03:15	2024-09-27	Show	GitHub Exploit DB Packet Storm

251195	5.4	MEDIUM Network	cacti	cacti	Cacti is an open source performance and fault management framework. The `fileurl` parameter is not properly sanitized when saving external links in `links.php` . Morever, the said fileurl is placed i…	CWE-79 Cross-site Scripting	CVE-2024-43362	2024-10-18 03:14	2024-10-8	Show	GitHub Exploit DB Packet Storm

251196	9.8	CRITICAL Network	oretnom23	online_veterinary_appointment_system	A vulnerability classified as critical has been found in SourceCodester Online Veterinary Appointment System 1.0. Affected is an unknown function of the file /admin/categories/manage_category.php. Th…	CWE-89 SQL Injection	CVE-2024-9818	2024-10-18 03:13	2024-10-11	Show	GitHub Exploit DB Packet Storm

251197	8.8	HIGH Network	blood_bank_system_project	blood_bank_system	A vulnerability was found in code-projects Blood Bank System 1.0. It has been classified as critical. This affects an unknown part of the file /update.php. The manipulation of the argument name leads…	CWE-89 SQL Injection	CVE-2024-9817	2024-10-18 03:12	2024-10-11	Show	GitHub Exploit DB Packet Storm

251198	9.8	CRITICAL Network	taismartfactory	qplant_sf	SQL injection vulnerability in TAI Smart Factory's QPLANT SF version 1.0. Exploitation of this vulnerability could allow a remote attacker to retrieve all database information by sending a specially …	CWE-89 SQL Injection	CVE-2024-9925	2024-10-18 03:09	2024-10-15	Show	GitHub Exploit DB Packet Storm

251199	8.2	HIGH Network	cacti	cacti	Cacti is an open source performance and fault management framework. The `title` parameter is not properly sanitized when saving external links in links.php . Morever, the said title parameter is stor…	CWE-79 Cross-site Scripting	CVE-2024-43364	2024-10-18 03:09	2024-10-8	Show	GitHub Exploit DB Packet Storm

251200	8.8	HIGH Network	formosasoft	ee-class	The ee-class from FormosaSoft does not properly validate a specific page parameter, allowing remote attackers with regular privileges to upload a malicious PHP file first and then exploit this vulner…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2024-9981	2024-10-18 03:05	2024-10-15	Show	GitHub Exploit DB Packet Storm