Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
242411	1.9	注意	GNOME Project	-	GConf の gconfd におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-6698	2012-06-26 15:38	2005-02-11	Show	GitHub Exploit DB Packet Storm

242412	7.2	危険	Comodo	-	Comodo Personal Firewall におけるプロセス上の製品コントロールを回避される脆弱性	-	CVE-2006-6620	2012-06-26 15:38	2006-12-18	Show	GitHub Exploit DB Packet Storm

242413	7.2	危険	AVG Technologies	-	AVG Anti-Virus plus Firewall におけるプロセス上の製品コントロールを回避される脆弱性	-	CVE-2006-6619	2012-06-26 15:38	2006-12-18	Show	GitHub Exploit DB Packet Storm

242414	7.2	危険	infoprocess	-	AntiHook - Desktop におけるプロセス上の製品コントロールを回避される脆弱性	-	CVE-2006-6618	2012-06-26 15:38	2006-12-18	Show	GitHub Exploit DB Packet Storm

242415	7.5	危険	barman	-	Barman の interface.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-6611	2012-06-26 15:38	2006-12-17	Show	GitHub Exploit DB Packet Storm

242416	7.5	危険	alientrap	-	Nexuiz の clientcommands における詳細不明な脆弱性	-	CVE-2006-6610	2012-06-26 15:38	2006-12-17	Show	GitHub Exploit DB Packet Storm

242417	5	警告	alientrap	-	Nexuiz におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-6609	2012-06-26 15:38	2006-12-17	Show	GitHub Exploit DB Packet Storm

242418	7.5	危険	clarens	-	Clarens jclarens における SQL インジェクションの脆弱性	-	CVE-2006-6606	2012-06-26 15:38	2006-12-17	Show	GitHub Exploit DB Packet Storm

242419	7.5	危険	exlor	-	EXlor の fonctions/template.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-6591	2012-06-26 15:38	2006-12-15	Show	GitHub Exploit DB Packet Storm

242420	6.8	警告	Apache Software Foundation	-	Apache OFBiz および Opentaps の ecommerce/control/keywordsearch におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-6589	2012-06-26 15:38	2006-12-15	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 24, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
251251	6.1	MEDIUM Network	-	-	The ReDi Restaurant Reservation plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in all versions up to, and…	-	CVE-2024-9240	2024-10-18 21:53	2024-10-17	Show	GitHub Exploit DB Packet Storm

251252	8.8	HIGH Network	-	-	The Co-Authors, Multiple Authors and Guest Authors in an Author Box with PublishPress Authors plugin for WordPress is vulnerable to Insecure Direct Object Reference to Privilege Escalation/Account Ta…	CWE-639 Authorization Bypass Through User-Controlled Key	CVE-2024-9215	2024-10-18 21:53	2024-10-17	Show	GitHub Exploit DB Packet Storm

251253	-		-	-	Dell OpenManage Enterprise, version(s) OME 4.1 and prior, contain(s) an Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability. A low privileged attacker w…	CWE-89 SQL Injection	CVE-2024-45767	2024-10-18 21:53	2024-10-17	Show	GitHub Exploit DB Packet Storm

251254	-		-	-	Dell OpenManage Enterprise, version(s) OME 4.1 and prior, contain(s) an Improper Control of Generation of Code ('Code Injection') vulnerability. A low privileged attacker with remote access could pot…	CWE-94 Code Injection	CVE-2024-45766	2024-10-18 21:53	2024-10-17	Show	GitHub Exploit DB Packet Storm

251255	-		-	-	dingfanzu CMS V1.0 was discovered to contain a Cross-Site Request Forgery (CSRF) via the addPro parameter of the component doAdminAction.php which allows a remote attacker to execute arbitrary code	-	CVE-2024-48758	2024-10-18 21:53	2024-10-17	Show	GitHub Exploit DB Packet Storm

251256	-		-	-	ClassCMS <=4.8 is vulnerable to file inclusion in the nowView method in/class/cms/cms.php, which can include a file uploaded to the/class/template directory to execute PHP code.	-	CVE-2024-48180	2024-10-18 21:53	2024-10-17	Show	GitHub Exploit DB Packet Storm

251257	-		-	-	REDAXO CMS v2.11.0 was discovered to contain a remote code execution (RCE) vulnerability.	-	CVE-2024-46213	2024-10-18 21:53	2024-10-17	Show	GitHub Exploit DB Packet Storm

251258	-		-	-	An issue in the component /index.php?page=backup/export of REDAXO CMS v5.17.1 allows attackers to execute a directory traversal.	-	CVE-2024-46212	2024-10-18 21:53	2024-10-17	Show	GitHub Exploit DB Packet Storm

251259	-		-	-	A discrepancy in error messages for invalid login attempts in Webmin Usermin v2.100 allows attackers to enumerate valid user accounts.	-	CVE-2024-44762	2024-10-18 21:53	2024-10-17	Show	GitHub Exploit DB Packet Storm

251260	-		-	-	LibHTP is a security-aware parser for the HTTP protocol and the related bits and pieces. Prior to version 0.5.49, unbounded processing of HTTP request and response headers can lead to excessive CPU t…	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2024-45797	2024-10-18 21:53	2024-10-17	Show	GitHub Exploit DB Packet Storm