Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
242431	5	警告	crob	-	Crob FTP Server におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-6558	2012-06-26 15:38	2006-12-14	Show	GitHub Exploit DB Packet Storm

242432	7.5	危険	eyeOS Project	-	EyeOS の apps/eyeHome.eyeapp/aplic.php の eyeHome 関数における任意のコードを実行される脆弱性	-	CVE-2006-6556	2012-06-26 15:38	2006-12-14	Show	GitHub Exploit DB Packet Storm

242433	7.5	危険	easyfill	-	EasyFill における SQL インジェクションの脆弱性	-	CVE-2006-6555	2012-06-26 15:38	2006-12-14	Show	GitHub Exploit DB Packet Storm

242434	3.5	注意	cPanel	-	cPanel WHM におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-6548	2012-06-26 15:38	2006-12-14	Show	GitHub Exploit DB Packet Storm

242435	7.5	危険	cutenews aj-fork	-	CN:AJ の inc/shows.inc.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-6546	2012-06-26 15:38	2006-12-13	Show	GitHub Exploit DB Packet Storm

242436	6.8	警告	cm68 news	-	CM68 News におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-6544	2012-06-26 15:38	2006-12-13	Show	GitHub Exploit DB Packet Storm

242437	7.5	危険	appintellect	-	AppIntellect SpotLight CRM の login.asp における SQL インジェクションの脆弱性	-	CVE-2006-6543	2012-06-26 15:38	2006-12-13	Show	GitHub Exploit DB Packet Storm

242438	7.5	危険	fantastic news	-	Falt4Extreme RC4 の index.php における SQL インジェクションの脆弱性	-	CVE-2006-6542	2012-06-26 15:38	2006-12-13	Show	GitHub Exploit DB Packet Storm

242439	6.8	警告	bluetrait	-	Bluetrait の bt-trackback.php における SQL インジェクションの脆弱性	-	CVE-2006-6540	2012-06-26 15:38	2006-12-13	Show	GitHub Exploit DB Packet Storm

242440	10	危険	flippet.org	-	Wawi におけるバッファオーバーフローの脆弱性	-	CVE-2006-6539	2012-06-26 15:38	2006-12-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 26, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
251391	8.8	HIGH Network	fabianros	blood_bank_management_system	A vulnerability was found in code-projects Blood Bank Management System 1.0. It has been classified as critical. Affected is an unknown function of the file /file/delete.php. The manipulation of the …	CWE-89 SQL Injection	CVE-2024-10417	2024-10-30 05:19	2024-10-27	Show	GitHub Exploit DB Packet Storm

251392	-		-	-	An issue was discovered in WTCMS 1.0. In the plupload method in \AssetController.class.php, the app parameters aren't processed, resulting in Cross Site Scripting (XSS).	-	CVE-2024-48239	2024-10-30 04:35	2024-10-26	Show	GitHub Exploit DB Packet Storm

251393	-		-	-	WTCMS 1.0 is vulnerable to SQL Injection in the edit_post method of /Admin\Controller\NavControl.class.php via the parentid parameter.	-	CVE-2024-48238	2024-10-30 04:35	2024-10-26	Show	GitHub Exploit DB Packet Storm

251394	-		-	-	An issue in ofcms 1.1.2 allows a remote attacker to execute arbitrary code via the FileOutputStream function in the write String method of the ofcms-admin\src\main\java\com\ofsoft\cms\core\uitle\File…	-	CVE-2024-48236	2024-10-30 04:35	2024-10-26	Show	GitHub Exploit DB Packet Storm

251395	-		-	-	An issue in ofcms 1.1.2 allows a remote attacker to execute arbitrary code via the save method of the TemplateController.java file.	-	CVE-2024-48235	2024-10-30 04:35	2024-10-26	Show	GitHub Exploit DB Packet Storm

251396	-		-	-	An issue was discovered in mipjz 5.0.5. In the push method of app\tag\controller\ApiAdminTag.php the value of the postAddress parameter is not processed and is directly passed into curl_exec executio…	-	CVE-2024-48234	2024-10-30 04:35	2024-10-26	Show	GitHub Exploit DB Packet Storm

251397	-		-	-	Kliqqi-CMS has a background arbitrary code execution vulnerability that attackers can exploit to implant backdoors or getShell via the edit_page.php component.	-	CVE-2024-48700	2024-10-30 04:35	2024-10-26	Show	GitHub Exploit DB Packet Storm

251398	-		-	-	A SQL Injection vulnerability in ESAFENET CDG 5 and earlier allows an attacker to execute arbitrary code via the id parameter of the dataSearch.jsp page.	-	CVE-2024-48343	2024-10-30 04:35	2024-10-26	Show	GitHub Exploit DB Packet Storm

251399	-		-	-	Cross Site Scripting vulnerability in Sentry v.6.0.9 allows a remote attacker to execute arbitrary code via the z parameter.	-	CVE-2024-48743	2024-10-30 04:35	2024-10-26	Show	GitHub Exploit DB Packet Storm

251400	-		-	-	BTS is affected by information disclosure vulnerability where mobile network operator personnel connected over BTS Web Element Manager, regardless of the access privileges, having a possibility to re…	-	CVE-2023-25189	2024-10-30 04:35	2024-09-26	Show	GitHub Exploit DB Packet Storm