Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
241751	4.3	警告	drake team	-	Drake CMS の admin/classes/ui.dta.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-1848	2012-06-26 15:46	2007-04-3	Show	GitHub Exploit DB Packet Storm

241752	7.5	危険	avatic	-	Aardvark Topsites PHP における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-1844	2012-06-26 15:46	2007-04-3	Show	GitHub Exploit DB Packet Storm

241753	7.5	危険	codebb	-	CodeBB における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-1839	2012-06-26 15:46	2007-04-2	Show	GitHub Exploit DB Packet Storm

241754	9	危険	data domain	-	Data Domain OS のコマンドライン管理インターフェースにおける任意のコマンドを実行される脆弱性	-	CVE-2007-1836	2012-06-26 15:46	2007-04-2	Show	GitHub Exploit DB Packet Storm

241755	7.8	危険	シスコシステムズ	-	CUCM におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-1834	2012-06-26 15:46	2007-03-28	Show	GitHub Exploit DB Packet Storm

241756	5	警告	シスコシステムズ	-	CUCM の SCCP 実装におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-1833	2012-06-26 15:46	2007-03-28	Show	GitHub Exploit DB Packet Storm

241757	7.8	危険	シスコシステムズ	-	CUCM の IPSec Manager Service におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-1826	2012-06-26 15:46	2007-03-28	Show	GitHub Exploit DB Packet Storm

241758	10	危険	Alcatel-Lucent	-	Alcatel-Lucent Lucent Technologies ボイスメールシステムにおけるメールボックスを再設定される脆弱性	-	CVE-2007-1822	2012-06-26 15:46	2007-04-2	Show	GitHub Exploit DB Packet Storm

241759	10	危険	dproxy	-	dproxy-nexgen の dns_decode_reverse_name 関数におけるスタックベースのバッファオーバーフローの脆弱性	-	CVE-2007-1866	2012-06-26 15:46	2004-06-24	Show	GitHub Exploit DB Packet Storm

241760	7.5	危険	forum picture and meta tags	-	phpBB の Forum ピクチャなどの MOD_forum_fields_parse.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-1818	2012-06-26 15:46	2007-04-2	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 24, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
250141	8.8	HIGH Network	fabianros	blood_bank_management_system	A vulnerability was found in code-projects Blood Bank Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /file/cancel.php. The manipulation of th…	CWE-89 SQL Injection	CVE-2024-10416	2024-10-30 05:21	2024-10-27	Show	GitHub Exploit DB Packet Storm

250142	8.8	HIGH Network	fabianros	blood_bank_management_system	A vulnerability was found in code-projects Blood Bank Management System 1.0. It has been classified as critical. Affected is an unknown function of the file /file/delete.php. The manipulation of the …	CWE-89 SQL Injection	CVE-2024-10417	2024-10-30 05:19	2024-10-27	Show	GitHub Exploit DB Packet Storm

250143	-		-	-	An issue was discovered in WTCMS 1.0. In the plupload method in \AssetController.class.php, the app parameters aren't processed, resulting in Cross Site Scripting (XSS).	-	CVE-2024-48239	2024-10-30 04:35	2024-10-26	Show	GitHub Exploit DB Packet Storm

250144	-		-	-	WTCMS 1.0 is vulnerable to SQL Injection in the edit_post method of /Admin\Controller\NavControl.class.php via the parentid parameter.	-	CVE-2024-48238	2024-10-30 04:35	2024-10-26	Show	GitHub Exploit DB Packet Storm

250145	-		-	-	An issue in ofcms 1.1.2 allows a remote attacker to execute arbitrary code via the FileOutputStream function in the write String method of the ofcms-admin\src\main\java\com\ofsoft\cms\core\uitle\File…	-	CVE-2024-48236	2024-10-30 04:35	2024-10-26	Show	GitHub Exploit DB Packet Storm

250146	-		-	-	An issue in ofcms 1.1.2 allows a remote attacker to execute arbitrary code via the save method of the TemplateController.java file.	-	CVE-2024-48235	2024-10-30 04:35	2024-10-26	Show	GitHub Exploit DB Packet Storm

250147	-		-	-	An issue was discovered in mipjz 5.0.5. In the push method of app\tag\controller\ApiAdminTag.php the value of the postAddress parameter is not processed and is directly passed into curl_exec executio…	-	CVE-2024-48234	2024-10-30 04:35	2024-10-26	Show	GitHub Exploit DB Packet Storm

250148	-		-	-	Kliqqi-CMS has a background arbitrary code execution vulnerability that attackers can exploit to implant backdoors or getShell via the edit_page.php component.	-	CVE-2024-48700	2024-10-30 04:35	2024-10-26	Show	GitHub Exploit DB Packet Storm

250149	-		-	-	A SQL Injection vulnerability in ESAFENET CDG 5 and earlier allows an attacker to execute arbitrary code via the id parameter of the dataSearch.jsp page.	-	CVE-2024-48343	2024-10-30 04:35	2024-10-26	Show	GitHub Exploit DB Packet Storm

250150	-		-	-	Cross Site Scripting vulnerability in Sentry v.6.0.9 allows a remote attacker to execute arbitrary code via the z parameter.	-	CVE-2024-48743	2024-10-30 04:35	2024-10-26	Show	GitHub Exploit DB Packet Storm