Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
242401 6.8 警告 Drupal - Drupal 用の MySite モジュールにおけるクロスサイトスクリプティングの脆弱性 - CVE-2006-6647 2012-06-26 15:38 2006-12-18 Show GitHub Exploit DB Packet Storm
242402 6.8 警告 Drupal - Drupal Project Issue Tracking および Drupal Project におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-6646 2012-06-26 15:38 2006-12-18 Show GitHub Exploit DB Packet Storm
242403 5 警告 fightersoft multimedia - Fightersoft Multimedia Star FTP サーバにおけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-6643 2012-06-26 15:38 2006-12-19 Show GitHub Exploit DB Packet Storm
242404 7.5 危険 contra haber sistemi - Contra Haber Sistemi の haber.asp における SQL インジェクションの脆弱性 - CVE-2006-6642 2012-06-26 15:38 2006-12-19 Show GitHub Exploit DB Packet Storm
242405 7.5 危険 etrust
cleverpath
Arcserve
unicenter
CA Technologies		 - BrightStor Portal などで使用される CA CleverPath Portal における異なる Portal サーバのユーザのセッションおよび資格情報を継承される脆弱性 - CVE-2006-6641 2012-06-26 15:38 2006-12-19 Show GitHub Exploit DB Packet Storm
242406 4.6 警告 chetcpasswd - chetcpasswd における権限を取得される脆弱性 - CVE-2006-6639 2012-06-26 15:38 2006-12-19 Show GitHub Exploit DB Packet Storm
242407 6.8 警告 genepi - Genepi の genepi.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-6632 2012-06-26 15:38 2006-12-18 Show GitHub Exploit DB Packet Storm
242408 7.2 危険 シマンテック - Sygate Personal Firewall における実行中の製品コントロールを回避される脆弱性 - CVE-2006-6623 2012-06-26 15:38 2006-12-18 Show GitHub Exploit DB Packet Storm
242409 7.2 危険 soft4ever - Soft4Ever LnS における実行中の製品コントロールを回避される脆弱性 - CVE-2006-6622 2012-06-26 15:38 2006-12-18 Show GitHub Exploit DB Packet Storm
242410 7.2 危険 filseclab - Filseclab Personal Firewall における実行中の製品コントロールを回避される脆弱性 - CVE-2006-6621 2012-06-26 15:38 2006-12-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 24, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
251271 - - - Buffer Overflow vulnerability in esp-idf v.5.1 allows a remote attacker to obtain sensitive information via the externalId component. - CVE-2024-33453 2024-10-18 21:52 2024-10-18 Show GitHub Exploit DB Packet Storm
251272 - - - Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in VillaTheme CURCY allows Reflected XSS.This issue affects CURCY: from n/a through 2.2.3. CWE-79
Cross-site Scripting 		CVE-2024-49283 2024-10-18 21:52 2024-10-18 Show GitHub Exploit DB Packet Storm
251273 - - - Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in dFactory Responsive Lightbox allows Stored XSS.This issue affects Responsive Lightbox: fro… CWE-79
Cross-site Scripting 		CVE-2024-49282 2024-10-18 21:52 2024-10-18 Show GitHub Exploit DB Packet Storm
251274 - - - ### Impact When this library is used to deserialize messagepack data from an untrusted source, there is a risk of a denial of service attack by an attacker that sends data contrived to produce hash … CWE-328
 Use of Weak Hash 		CVE-2024-48924 2024-10-18 21:52 2024-10-18 Show GitHub Exploit DB Packet Storm
251275 - - - Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Weblizar Lightbox slider – Responsive Lightbox Gallery allows Stored XSS.This issue affect… CWE-79
Cross-site Scripting 		CVE-2024-49280 2024-10-18 21:52 2024-10-18 Show GitHub Exploit DB Packet Storm
251276 - - - Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in TipTopPress Hyperlink Group Block allows Stored XSS.This issue affects Hyperlink Group Blo… CWE-79
Cross-site Scripting 		CVE-2024-49279 2024-10-18 21:52 2024-10-18 Show GitHub Exploit DB Packet Storm
251277 - - - Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in omnipressteam Omnipress allows Stored XSS.This issue affects Omnipress: from n/a through 1… CWE-79
Cross-site Scripting 		CVE-2024-49278 2024-10-18 21:52 2024-10-18 Show GitHub Exploit DB Packet Storm
251278 - - - Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in CodeAstrology Team UltraAddons Elementor Lite allows Stored XSS.This issue affects UltraAd… - CVE-2024-49277 2024-10-18 21:52 2024-10-18 Show GitHub Exploit DB Packet Storm
251279 - - - Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Themis Solutions, Inc. Clio Grow allows Reflected XSS.This issue affects Clio Grow: from n… CWE-79
Cross-site Scripting 		CVE-2024-49276 2024-10-18 21:52 2024-10-18 Show GitHub Exploit DB Packet Storm
251280 - - - Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in NicheAddons Events Addon for Elementor allows Stored XSS.This issue affects Events Addon f… CWE-79
Cross-site Scripting 		CVE-2024-49264 2024-10-18 21:52 2024-10-18 Show GitHub Exploit DB Packet Storm