Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
242271	7.5	危険	Claroline Consortium	-	Claroline における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-7048	2012-06-26 15:38	2007-02-23	Show	GitHub Exploit DB Packet Storm

242272	9.3	危険	clan manager pro	-	CMPRO 用 cmpro.intern/login.inc.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2006-7046	2012-06-26 15:38	2007-02-23	Show	GitHub Exploit DB Packet Storm

242273	7.5	危険	cmpro team	-	CMPRO における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-7045	2012-06-26 15:38	2007-02-23	Show	GitHub Exploit DB Packet Storm

242274	7.5	危険	cmpro team	-	CMPRO の comment.core.inc.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-7044	2012-06-26 15:38	2007-02-23	Show	GitHub Exploit DB Packet Storm

242275	3.5	注意	Chipmunk Scripts	-	Chipmunk Blogger におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-7043	2012-06-26 15:38	2007-02-23	Show	GitHub Exploit DB Packet Storm

242276	6.8	警告	Chipmunk Scripts	-	Chipmunk ディレクトリの directory/index.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-7042	2012-06-26 15:38	2007-02-23	Show	GitHub Exploit DB Packet Storm

242277	7.8	危険	atrium software	-	MERCUR Messaging 2005 の SMTP サービスにおけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-7041	2012-06-26 15:38	2007-02-22	Show	GitHub Exploit DB Packet Storm

242278	7.8	危険	atrium software	-	MERCUR Messaging 2005 の SMTP サービスにおけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-7040	2012-06-26 15:38	2007-02-22	Show	GitHub Exploit DB Packet Storm

242279	5	警告	atrium software	-	MERCUR Messaging 2005 の IMAP4 サービスにおけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-7039	2012-06-26 15:38	2007-02-22	Show	GitHub Exploit DB Packet Storm

242280	7.8	危険	atrium software	-	MERCUR Messaging 2005 におけるバッファオーバーフローの脆弱性	-	CVE-2006-7038	2012-06-26 15:38	2007-02-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 25, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
250281	9.8	CRITICAL Network	codezips	online_institute_management_system	A vulnerability classified as critical was found in Codezips Online Institute Management System up to 1.0. This vulnerability affects unknown code of the file /profile.php. The manipulation of the ar…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2024-10765	2024-11-6 23:45	2024-11-5	Show	GitHub Exploit DB Packet Storm

250282	9.8	CRITICAL Network	codezips	online_institute_management_system	A vulnerability classified as critical has been found in Codezips Online Institute Management System 1.0. This affects an unknown part of the file /pages/save_user.php. The manipulation of the argume…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2024-10764	2024-11-6 23:44	2024-11-5	Show	GitHub Exploit DB Packet Storm

250283	7.1	HIGH Local	apple	iphone_os ipados visionos tvos	This issue was addressed with improved handling of symlinks. This issue is fixed in iOS 18.1 and iPadOS 18.1, iOS 17.7.1 and iPadOS 17.7.1, visionOS 2.1, tvOS 18.1. Restoring a maliciously crafted ba…	CWE-59 Link Following	CVE-2024-44258	2024-11-6 23:35	2024-10-29	Show	GitHub Exploit DB Packet Storm

250284	8.8	HIGH Network	combodo	itop	Combodo iTop is a simple, web based IT Service Management tool. A CSRF can be performed on CSV import simulation. This issue has been fixed in versions 3.1.2 and 3.2.0. All users are advised to upgra…	CWE-352 Origin Validation Error	CVE-2024-31998	2024-11-6 23:31	2024-11-5	Show	GitHub Exploit DB Packet Storm

250285	6.1	MEDIUM Network	combodo	itop	Combodo iTop is a simple, web based IT Service Management tool. By filling malicious code in a CSV content, an Cross-site Scripting (XSS) attack can be performed when importing this content. This iss…	CWE-79 Cross-site Scripting	CVE-2024-31448	2024-11-6 23:31	2024-11-5	Show	GitHub Exploit DB Packet Storm

250286	6.1	MEDIUM Network	combodo	itop	Combodo iTop is a simple, web based IT Service Management tool. When displaying pages/ajax.render.php XSS are possible for scripts outside of script tags. This issue has been fixed in versions 2.7.9,…	CWE-79 Cross-site Scripting	CVE-2023-34445	2024-11-6 23:29	2024-11-5	Show	GitHub Exploit DB Packet Storm

250287	6.1	MEDIUM Network	combodo	itop	Combodo iTop is a simple, web based IT Service Management tool. When displaying pages/ajax.searchform.php XSS are possible for scripts outside of script tags. This issue has been fixed in versions 2.…	CWE-79 Cross-site Scripting	CVE-2023-34444	2024-11-6 23:28	2024-11-5	Show	GitHub Exploit DB Packet Storm

250288	6.1	MEDIUM Network	combodo	itop	Combodo iTop is a simple, web based IT Service Management tool. When displaying page Run queries Cross-site Scripting (XSS) are possible for scripts outside of script tags. This has been fixed in ver…	CWE-79 Cross-site Scripting	CVE-2023-34443	2024-11-6 23:25	2024-11-5	Show	GitHub Exploit DB Packet Storm

250289	6.3	MEDIUM Network	-	-	A vulnerability was found in Foreman's loader macros introduced with report templates. These macros may allow an authenticated user with permissions to view and create templates to read any field fro…	CWE-200 Information Exposure	CVE-2024-8553	2024-11-6 18:15	2024-11-1	Show	GitHub Exploit DB Packet Storm

250290	9.8	CRITICAL Network	redhat	satellite	An authentication bypass vulnerability has been identified in Foreman when deployed with External Authentication, due to the puppet-foreman configuration. This issue arises from Apache's mod_proxy no…	CWE-287 Improper Authentication	CVE-2024-7012	2024-11-6 18:15	2024-09-4	Show	GitHub Exploit DB Packet Storm