Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
242321 5 警告 Bitweaver - bitweaver における重要な情報を取得される脆弱性 - CVE-2006-6924 2012-06-26 15:38 2007-01-12 Show GitHub Exploit DB Packet Storm
242322 10 危険 CA Technologies - CA BrightStor ARCserve Backup Server におけるバッファオーバーフローの脆弱性 - CVE-2006-6917 2012-06-26 15:38 2006-12-31 Show GitHub Exploit DB Packet Storm
242323 7.5 危険 Direct Web Remoting - Getahead DWR におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-6916 2012-06-26 15:38 2006-12-31 Show GitHub Exploit DB Packet Storm
242324 6 警告 digitizing quote and ordering system - Digitizing Quote And Ordering System の search.asp における SQL インジェクションの脆弱性 - CVE-2006-6911 2012-06-26 15:38 2006-12-31 Show GitHub Exploit DB Packet Storm
242325 7.8 危険 fersch - Fersch Formbankserver の formbankcgi.exe におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-6910 2012-06-26 15:38 2006-12-31 Show GitHub Exploit DB Packet Storm
242326 10 危険 マイクロソフト
Broadcom		 - Widcomm Bluetooth Stack COM Server におけるバッファオーバーフローの脆弱性 - CVE-2006-6908 2012-06-26 15:38 2006-12-31 Show GitHub Exploit DB Packet Storm
242327 10 危険 bluesoil bluetooth - Bluesoil Bluetooth スタックにおける詳細不明な脆弱性 - CVE-2006-6907 2012-06-26 15:38 2006-12-31 Show GitHub Exploit DB Packet Storm
242328 7.2 危険 アップル - Apple Mac OS 上で稼働する Bluetooth スタックにおける詳細不明な脆弱性 - CVE-2006-6906 2012-06-26 15:38 2006-12-31 Show GitHub Exploit DB Packet Storm
242329 10 危険 Broadcom - Widcomm Bluetooth スタックにおける管理アクセス権を取得される脆弱性 - CVE-2006-6905 2012-06-26 15:38 2006-12-31 Show GitHub Exploit DB Packet Storm
242330 7.9 危険 Broadcom - Broadcom Bluetooth スタックにおける管理アクセス権を取得される脆弱性 - CVE-2006-6904 2012-06-26 15:38 2006-12-31 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 25, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
250351 6.1 MEDIUM
Network 		toshibatec
sharp 		e-studio1058_firmware
e-studio1208_firmware
e-studio908_firmware
bp-90c70_firmware
bp-90c80_firmware
bp-70c65_firmware
bp-70c55_firmware
bp-70c45_firmware
bp-70c36_firmware 		Sharp and Toshiba Tec MFPs improperly process query parameters in HTTP requests, resulting in a reflected cross-site scripting vulnerability. Accessing a crafted URL which points to an affected prod… CWE-79
Cross-site Scripting 		CVE-2024-47801 2024-11-6 04:34 2024-10-25 Show GitHub Exploit DB Packet Storm
250352 8.8 HIGH
Network 		draytek vigor3900_firmware In Draytek Vigor3900 1.5.1.3, attackers can inject malicious commands into mainfunction.cgi and execute arbitrary commands by calling the modifyrow function. CWE-78
OS Command  		CVE-2024-51248 2024-11-6 04:28 2024-11-2 Show GitHub Exploit DB Packet Storm
250353 8.8 HIGH
Network 		draytek vigor3900_firmware In Draytek Vigor3900 1.5.1.3, attackers can inject malicious commands into mainfunction.cgi and execute arbitrary commands by calling the doPPPo function. CWE-78
OS Command  		CVE-2024-51247 2024-11-6 04:28 2024-11-2 Show GitHub Exploit DB Packet Storm
250354 8.8 HIGH
Network 		draytek vigor3900_firmware In DrayTek Vigor3900 1.5.1.3, attackers can inject malicious commands into mainfunction.cgi and execute arbitrary commands by calling the rename_table function. CWE-78
OS Command  		CVE-2024-51245 2024-11-6 04:28 2024-11-2 Show GitHub Exploit DB Packet Storm
250355 8.8 HIGH
Network 		draytek vigor3900_firmware In Draytek Vigor3900 1.5.1.3, attackers can inject malicious commands into mainfunction.cgi and execute arbitrary commands by calling the doIPSec function. CWE-78
OS Command  		CVE-2024-51244 2024-11-6 04:28 2024-11-2 Show GitHub Exploit DB Packet Storm
250356 - - - localai <=2.20.1 is vulnerable to Cross Site Scripting (XSS). When calling the delete model API and passing inappropriate parameters, it can cause a one-time storage XSS, which will trigger the paylo… - CVE-2024-48057 2024-11-6 03:35 2024-11-5 Show GitHub Exploit DB Packet Storm
250357 - - - Chamilo LMS Version 1.11.26 is vulnerable to Incorrect Access Control. A non-authenticated attacker can request the number of messages and the number of online users via "/main/inc/ajax/message.ajax.… - CVE-2024-30619 2024-11-6 03:35 2024-11-5 Show GitHub Exploit DB Packet Storm
250358 - - - A Stored Cross-Site Scripting (XSS) Vulnerability in Chamilo LMS 1.11.26 allows a remote attacker to execute arbitrary JavaScript in a web browser by including a malicious payload in the 'content' pa… - CVE-2024-30618 2024-11-6 03:35 2024-11-5 Show GitHub Exploit DB Packet Storm
250359 - - - Yealink Meeting Server before V26.0.0.67 is vulnerable to sensitive data exposure in the server response via sending HTTP request with enterprise ID. - CVE-2024-48352 2024-11-6 03:35 2024-11-2 Show GitHub Exploit DB Packet Storm
250360 - - - Altai Technologies Ltd Altai IX500 Indoor 22 802.11ac Wave 2 AP After login, there are file reads in the background, and attackers can obtain sensitive information such as user credentials, system co… - CVE-2024-51399 2024-11-6 03:35 2024-11-2 Show GitHub Exploit DB Packet Storm