Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
242481 10 危険 bitflux - Bitflux Upload Progress Meter の uploadprogress_php_rfc1867_file 関数におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2006-6361 2012-06-26 15:38 2006-12-7 Show GitHub Exploit DB Packet Storm
242482 10 危険 duware - DuWare DuClassmate の default.asp における SQL インジェクションの脆弱性 - CVE-2006-6355 2012-06-26 15:38 2006-12-6 Show GitHub Exploit DB Packet Storm
242483 7.5 危険 duware - DuWare DuNews の detail.asp における SQL インジェクションの脆弱性 - CVE-2006-6354 2012-06-26 15:38 2006-12-6 Show GitHub Exploit DB Packet Storm
242484 5 警告 アップル - Mac OS X の BOMArchiveHelper におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-6353 2012-06-26 15:38 2006-12-6 Show GitHub Exploit DB Packet Storm
242485 5 警告 frisk software - FRISK Software F-Prot Antivirus におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-6352 2012-06-26 15:38 2006-12-1 Show GitHub Exploit DB Packet Storm
242486 6.8 警告 deV!L'z Clanportal - DZCP の sites/index.php における SQL インジェクションの脆弱性 - CVE-2006-6339 2012-06-26 15:38 2006-12-6 Show GitHub Exploit DB Packet Storm
242487 5 警告 deV!L'z Clanportal - DZCP の upload/index.php における任意の .php ファイルをアップロードおよび実行される脆弱性 - CVE-2006-6338 2012-06-26 15:38 2006-12-6 Show GitHub Exploit DB Packet Storm
242488 7.5 危険 ASP indir - Aspee Ziyaretci Defteri の giris.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2006-6337 2012-06-26 15:38 2006-12-6 Show GitHub Exploit DB Packet Storm
242489 10 危険 ライブドア - Eudora WorldMail の MAILMA.exe におけるヒープベースのバッファオーバーフローの脆弱性 - CVE-2006-6336 2012-06-26 15:38 2006-12-31 Show GitHub Exploit DB Packet Storm
242490 6.8 警告 シトリックス・システムズ - Citrix Presentation Server Client の SendChannelData 関数におけるヒープベースのバッファオーバーフローの脆弱性 - CVE-2006-6334 2012-06-26 15:38 2006-12-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 25, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
251251 - - - An Information Disclosure vulnerability in the Telemetry component in TP-Link Kasa KP125M V1.0.0 and Tapo P125M 1.0.0 Build 220930 Rel.143947 allows attackers to observe device state via observing ne… - CVE-2024-35495 2024-10-31 00:35 2024-10-1 Show GitHub Exploit DB Packet Storm
251252 7.5 HIGH
Network 		mozilla firefox An attacker could write data to the user's clipboard, bypassing the user prompt, during a certain sequence of navigational events. This vulnerability affects Firefox < 129, Firefox ESR < 128.3, and T… NVD-CWE-noinfo
CVE-2024-8900 2024-10-31 00:35 2024-09-18 Show GitHub Exploit DB Packet Storm
251253 - - - The stripImages and stripIframes methods didn't properly process inputs, leading to XSS vectors. - CVE-2024-40743 2024-10-31 00:35 2024-08-21 Show GitHub Exploit DB Packet Storm
251254 - - - A stored cross-site scripting (XSS) vulnerability in October CMS Bloghub Plugin v1.3.8 and lower allows attackers to execute arbitrary web scripts or HTML via a crafted payload into the Comments sect… - CVE-2024-25837 2024-10-31 00:35 2024-08-17 Show GitHub Exploit DB Packet Storm
251255 8.8 HIGH
Network 		hitachienergy microscada_x_sys600
microscada_pro_sys600 		The MicroSCADA Pro/X SYS600 product allows an authenticated user input to control or influence paths or file names that are used in filesystem operations. If exploited the vulnerability allows the at… CWE-22
Path Traversal 		CVE-2024-3980 2024-10-31 00:33 2024-08-27 Show GitHub Exploit DB Packet Storm
251256 8.2 HIGH
Local 		hitachienergy microscada_x_sys600 An attacker with local access to machine where MicroSCADA X SYS600 is installed, could enable the session logging supporting the product and try to exploit a session hijacking of an already establish… CWE-294
Authentication Bypass by Capture-replay  		CVE-2024-3982 2024-10-31 00:32 2024-08-27 Show GitHub Exploit DB Packet Storm
251257 8.8 HIGH
Network 		hitachienergy microscada_x_sys600
microscada_pro_sys600 		A vulnerability exists in the query validation of the MicroSCADA Pro/X SYS600 product. If exploited this could allow an authenticated attacker to inject code towards persistent data. Note that to suc… NVD-CWE-Other
CVE-2024-4872 2024-10-31 00:31 2024-08-27 Show GitHub Exploit DB Packet Storm
251258 4.3 MEDIUM
Network 		hitachienergy microscada_x_sys600 An HTTP parameter may contain a URL value and could cause the web application to redirect the request to the specified URL. By modifying the URL value to a malicious site, an attacker may successfull… CWE-601
Open Redirect 		CVE-2024-7941 2024-10-31 00:29 2024-08-27 Show GitHub Exploit DB Packet Storm
251259 7.2 HIGH
Network 		anujkumar medical_card_generation_system A vulnerability was found in PHPGurukul Medical Card Generation System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /admin/card-bwdate… CWE-89
SQL Injection 		CVE-2024-10296 2024-10-31 00:13 2024-10-24 Show GitHub Exploit DB Packet Storm
251260 7.5 HIGH
Network 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: tcp: fix mptcp DSS corruption due to large pmtu xmit Syzkaller was able to trigger a DSS corruption: TCP: request_sock_subflow… NVD-CWE-noinfo
CVE-2024-50083 2024-10-31 00:07 2024-10-29 Show GitHub Exploit DB Packet Storm