Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
242221 7.5 危険 geckovich - Geckovich TaskTracker Pro における管理者またはその他のアカウントを追加される脆弱性 - CVE-2007-0049 2012-06-26 15:38 2007-01-4 Show GitHub Exploit DB Packet Storm
242222 9.3 危険 nctsoft products - 複数の製品で使用される NCTAudioFile2.dll におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-0018 2012-06-26 15:38 2007-01-24 Show GitHub Exploit DB Packet Storm
242223 5 警告 シトリックス・システムズ - Citrix Access Gateway の Web ポータルインターフェースにおけるセッションハイジャックの脆弱性 CWE-200
情報漏えい 		CVE-2007-0011 2012-06-26 15:38 2007-07-19 Show GitHub Exploit DB Packet Storm
242224 3.6 注意 gnucash - gnucash における任意のファイルを上書きされる脆弱性 - CVE-2007-0007 2012-06-26 15:38 2007-02-19 Show GitHub Exploit DB Packet Storm
242225 7.2 危険 andrew morgan - Linux-PAM の pam_unix.so におけるアカウントにログインされる脆弱性 - CVE-2007-0003 2012-06-26 15:38 2007-01-23 Show GitHub Exploit DB Packet Storm
242226 5 警告 fsp - fsplib の fsplib.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2006-7221 2012-06-26 15:38 2007-07-23 Show GitHub Exploit DB Packet Storm
242227 5 警告 GNU Project - GnuTLS の lib/gnutls_algorithms.c の _gnutls_x509_oid2mac_algorithm 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-310
暗号の問題 		CVE-2006-7239 2012-06-26 15:38 2006-08-12 Show GitHub Exploit DB Packet Storm
242228 7.5 危険 civica software - Civica Software Civica の display.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2006-7231 2012-06-26 15:38 2006-12-31 Show GitHub Exploit DB Packet Storm
242229 4 警告 eZ - eZ publish における未承認の言語で下書きを作成される脆弱性 - CVE-2006-7219 2012-06-26 15:38 2006-08-9 Show GitHub Exploit DB Packet Storm
242230 4 警告 eZ - eZ Publish における記載されていない言語へ翻訳される脆弱性 - CVE-2006-7218 2012-06-26 15:38 2006-06-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 20, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1 7.3 HIGH
Network 		- - A vulnerability has been found in osuuu LightPicture up to 1.2.2. This issue affects some unknown processing of the file /public/install/lp.sql of the component API Upload Endpoint. Such manipulation… New CWE-259
CWE-798
Use of Hard-coded Password 
 Use of Hard-coded Credentials 		CVE-2026-6574 2026-04-19 23:16 2026-04-19 Show GitHub Exploit DB Packet Storm
2 6.3 MEDIUM
Network 		- - A vulnerability was detected in PHPEMS 11.0. This affects the function temppage of the file /app/exam/controller/exams.master.php of the component Instant Exam Creation Handler. The manipulation of t… New CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2026-6573 2026-04-19 22:16 2026-04-19 Show GitHub Exploit DB Packet Storm
3 5.6 MEDIUM
Network 		- - A security vulnerability has been detected in Collabora KodExplorer up to 4.52. Affected by this issue is some unknown functionality of the file /app/controller/share.class.php of the component fileU… New CWE-266
CWE-285
 Incorrect Privilege Assignment
Improper Authorization 		CVE-2026-6572 2026-04-19 22:16 2026-04-19 Show GitHub Exploit DB Packet Storm
4 6.3 MEDIUM
Network 		- - A weakness has been identified in kodcloud KodExplorer up to 4.52. Affected by this vulnerability is the function roleGroupAction of the file /app/controller/systemRole.class.php. Executing a manipul… New CWE-285
CWE-639
Improper Authorization
 Authorization Bypass Through User-Controlled Key 		CVE-2026-6571 2026-04-19 21:16 2026-04-19 Show GitHub Exploit DB Packet Storm
5 2.7 LOW
Network 		- - A security flaw has been discovered in kodcloud KodExplorer up to 4.52. Affected is the function initInstall of the file /app/controller/systemMember.class.php. Performing a manipulation of the argum… New CWE-285
CWE-639
Improper Authorization
 Authorization Bypass Through User-Controlled Key 		CVE-2026-6570 2026-04-19 21:16 2026-04-19 Show GitHub Exploit DB Packet Storm
6 7.3 HIGH
Network 		- - A vulnerability was identified in kodcloud KodExplorer up to 4.52. This impacts the function fileGet of the file /app/controller/share.class.php of the component fileGet Endpoint. Such manipulation o… New CWE-287
Improper Authentication 		CVE-2026-6569 2026-04-19 20:16 2026-04-19 Show GitHub Exploit DB Packet Storm
7 7.3 HIGH
Network 		- - A vulnerability was determined in kodcloud KodExplorer up to 4.52. This affects the function share.class.php::initShareOld of the file /app/controller/share.class.php of the component Public Share Ha… New CWE-22
Path Traversal 		CVE-2026-6568 2026-04-19 19:16 2026-04-19 Show GitHub Exploit DB Packet Storm
8 4.3 MEDIUM
Network 		- - A vulnerability was found in EMQ EMQX Enterprise up to 6.1.0. The impacted element is an unknown function of the component Session Handling. The manipulation results in improper authorization. It is … New CWE-266
CWE-285
 Incorrect Privilege Assignment
Improper Authorization 		CVE-2026-6564 2026-04-19 19:16 2026-04-19 Show GitHub Exploit DB Packet Storm
9 8.8 HIGH
Network 		- - A vulnerability has been found in H3C Magic B1 up to 100R004. The affected element is the function SetAPWifiorLedInfoById of the file /goform/aspForm. The manipulation of the argument param leads to … New CWE-119
CWE-120
Incorrect Access of Indexable Resource ('Range Error') 
Classic Buffer Overflow 		CVE-2026-6563 2026-04-19 18:16 2026-04-19 Show GitHub Exploit DB Packet Storm
10 7.3 HIGH
Network 		- - A flaw has been found in dameng100 muucmf 1.9.5.20260309. Impacted is the function getListByPage of the file /index/Search/index.html. Executing a manipulation of the argument keyword can lead to sql… New CWE-74
CWE-89
Injection
SQL Injection 		CVE-2026-6562 2026-04-19 18:16 2026-04-19 Show GitHub Exploit DB Packet Storm