Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
242421	7.5	危険	Apache Software Foundation	-	Apache OFBiz のフォーラム実装におけるコンテンツを改ざんされる脆弱性	-	CVE-2006-6588	2012-06-26 15:38	2006-12-15	Show	GitHub Exploit DB Packet Storm

242422	6.8	警告	Apache Software Foundation	-	Apache OFBiz の ecommerce コンポーネントにおけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-6587	2012-06-26 15:38	2006-12-15	Show	GitHub Exploit DB Packet Storm

242423	7.5	危険	brian drawert	-	Brian Drawert yaplap の ldap.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-6575	2012-06-26 15:38	2006-12-15	Show	GitHub Exploit DB Packet Storm

242424	6	警告	シトリックス・システムズ	-	Citrix Access Gateway Advanced Edition および Citrix Access Gateway Advanced Edition with AAC におけるデータへのアクセス権を取得される脆弱性	-	CVE-2006-6573	2012-06-26 15:38	2006-11-4	Show	GitHub Exploit DB Packet Storm

242425	6.5	警告	シトリックス・システムズ	-	Citrix AAC Option および Access Gateway with Advanced Access Control におけるアクセスポリシーを回避される脆弱性	-	CVE-2006-6572	2012-06-26 15:38	2006-11-4	Show	GitHub Exploit DB Packet Storm

242426	6.8	警告	genesistrader	-	GenesisTrader の form.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-6571	2012-06-26 15:38	2006-12-15	Show	GitHub Exploit DB Packet Storm

242427	7.5	危険	genesistrader	-	GenesisTrader の upload.php における任意のファイルをアップロードされる脆弱性	-	CVE-2006-6570	2012-06-26 15:38	2006-12-15	Show	GitHub Exploit DB Packet Storm

242428	7.8	危険	genesistrader	-	GenesisTrader の form.php における重要な情報を取得される脆弱性	-	CVE-2006-6569	2012-06-26 15:38	2006-12-15	Show	GitHub Exploit DB Packet Storm

242429	4	警告	FileZilla	-	FileZilla Server におけるサービス運用妨害 (DoS) の脆弱性	CWE-DesignError	CVE-2006-6565	2012-06-26 15:38	2006-12-15	Show	GitHub Exploit DB Packet Storm

242430	4	警告	FileZilla	-	FileZilla Server におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2006-6564	2012-06-26 15:38	2006-12-15	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 25, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
250451	6.1	MEDIUM Network	cisco	firepower_management_center	A vulnerability in the web-based management interface of Cisco Firepower Management Center (FMC) Software could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attac…	CWE-79 Cross-site Scripting	CVE-2024-20410	2024-11-6 01:08	2024-10-24	Show	GitHub Exploit DB Packet Storm

250452	5.3	MEDIUM Network	cisco	firepower_management_center firepower_threat_defense	A vulnerability in the password change feature of Cisco Firepower Management Center (FMC) software could allow an unauthenticated, remote attacker to determine valid user names on an affected device.…	NVD-CWE-Other	CVE-2024-20388	2024-11-6 01:07	2024-10-24	Show	GitHub Exploit DB Packet Storm

250453	6.1	MEDIUM Network	cisco	firepower_management_center	A vulnerability in the web-based management interface of Cisco Firepower Management Center (FMC) Software could allow an unauthenticated, remote attacker to conduct a stored cross-site scripting (XSS…	CWE-79 Cross-site Scripting	CVE-2024-20386	2024-11-6 01:05	2024-10-24	Show	GitHub Exploit DB Packet Storm

250454	-		-	-	D-Link DIR_823G 1.0.2B05 was discovered to contain a command injection vulnerability via the HostName parameter in the SetWanSettings function. This vulnerability allows attackers to execute arbitrar…	-	CVE-2024-51024	2024-11-6 01:04	2024-11-6	Show	GitHub Exploit DB Packet Storm

250455	-		-	-	D-Link DIR_823G 1.0.2B05 was discovered to contain a command injection vulnerability via the Address parameter in the SetNetworkTomographySettings function. This vulnerability allows attackers to exe…	-	CVE-2024-51023	2024-11-6 01:04	2024-11-6	Show	GitHub Exploit DB Packet Storm

250456	-		-	-	Zope AccessControl provides a general security framework for use in Zope. In affected versions anonymous users can delete the user data maintained by an `AccessControl.userfolder.UserFolder` which ma…	CWE-284 Improper Access Control	CVE-2024-51734	2024-11-6 01:04	2024-11-5	Show	GitHub Exploit DB Packet Storm

250457	-		-	-	Meshtastic firmware is a device firmware for the Meshtastic project. The Meshtastic firmware does not check for packets claiming to be from the special broadcast address (0xFFFFFFFF) which could resu…	CWE-138 CWE-159 Improper Neutralization of Special Elements Improper Handling of Invalid Use of Special Elements	CVE-2024-51500	2024-11-6 01:04	2024-11-5	Show	GitHub Exploit DB Packet Storm

250458	-		-	-	gaizhenbiao/chuanhuchatgpt project, version <=20240802 is vulnerable to stored Cross-Site Scripting (XSS) in WebSocket session transmission. An attacker can inject malicious content into a WebSocket …	-	CVE-2024-48059	2024-11-6 01:04	2024-11-5	Show	GitHub Exploit DB Packet Storm

250459	-		-	-	golang-jwt is a Go implementation of JSON Web Tokens. Unclear documentation of the error behavior in `ParseWithClaims` can lead to situation where users are potentially not checking errors in the way…	CWE-755 Improper Handling of Exceptional Conditions	CVE-2024-51744	2024-11-6 01:04	2024-11-5	Show	GitHub Exploit DB Packet Storm

250460	-		-	-	A Cross-Site Request Forgery (CSRF) vulnerability in Chamilo LMS 1.11.26 "/main/social/home.php," allows attackers to initiate a request that posts a fake post onto the user's social wall without the…	-	CVE-2024-30617	2024-11-6 01:04	2024-11-5	Show	GitHub Exploit DB Packet Storm