Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
242661	7.5	危険	aiocp	-	AIOCP の admin/code/index.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5831	2012-06-26 15:37	2006-11-9	Show	GitHub Exploit DB Packet Storm

242662	6.8	警告	aiocp	-	AIOCP におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-5830	2012-06-26 15:37	2006-11-9	Show	GitHub Exploit DB Packet Storm

242663	6.8	警告	aiocp	-	AIOCP における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2006-5829	2012-06-26 15:37	2006-11-9	Show	GitHub Exploit DB Packet Storm

242664	7.5	危険	DeltaScripts	-	DeltaScripts PHP Classifieds の detail.php における SQL インジェクションの脆弱性	-	CVE-2006-5828	2012-06-26 15:37	2006-11-9	Show	GitHub Exploit DB Packet Storm

242665	4.9	警告	FreeBSD	-	FreeBSD の ffs_rdextattr 関数における整数オーバーフローの脆弱性	-	CVE-2006-5824	2012-06-26 15:37	2006-11-9	Show	GitHub Exploit DB Packet Storm

242666	7.5	危険	シトリックス・システムズ	-	ImaSystem.dll for Citrix MetaFrame XP および Presentation Server におけるヒープベースのバッファオーバーフローの脆弱性	-	CVE-2006-5821	2012-06-26 15:37	2006-11-8	Show	GitHub Exploit DB Packet Storm

242667	9.3	危険	AOL	-	America Online Security Edition の Sb.SuperBuddy.1 の LinkSBIcons メソッドにおける任意のコードを実行される脆弱性	-	CVE-2006-5820	2012-06-26 15:37	2007-04-2	Show	GitHub Exploit DB Packet Storm

242668	7.5	危険	dmitry sheiko	-	BCWB における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5816	2012-06-26 15:37	2006-11-8	Show	GitHub Exploit DB Packet Storm

242669	4.6	警告	シスコシステムズ	-	CSD のインストールにおける権限を取得される脆弱性	-	CVE-2006-5808	2012-06-26 15:37	2006-11-8	Show	GitHub Exploit DB Packet Storm

242670	4.6	警告	シスコシステムズ	-	CSD における安全なデスクトップ環境から逃避される脆弱性	-	CVE-2006-5807	2012-06-26 15:37	2006-11-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 25, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
250981	6.1	MEDIUM Network	cisco	secure_firewall_management_center	A vulnerability in the web-based management interface of Cisco Firepower Management Center (FMC) Software could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attac…	CWE-79 Cross-site Scripting	CVE-2024-20273	2024-11-1 04:09	2024-10-24	Show	GitHub Exploit DB Packet Storm

250982	5.4	MEDIUM Network	cisco	secure_firewall_management_center	A vulnerability in the web-based management interface of Cisco Firepower Management Center (FMC) Software could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) attack …	CWE-79 Cross-site Scripting	CVE-2024-20264	2024-11-1 04:04	2024-10-24	Show	GitHub Exploit DB Packet Storm

250983	6.1	MEDIUM Network	abdullahirfan	whitelist	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Abdullah Irfan Whitelist allows Reflected XSS.This issue affects Whitelist: from n/a throu…	CWE-79 Cross-site Scripting	CVE-2024-49643	2024-11-1 03:48	2024-10-29	Show	GitHub Exploit DB Packet Storm

250984	6.5	MEDIUM Network	lunary	lunary	lunary-ai/lunary v1.2.26 contains an email injection vulnerability in the Send email verification API (/v1/users/send-verification) and Sign up API (/auth/signup). An unauthenticated attacker can inj…	CWE-74 Injection	CVE-2024-7472	2024-11-1 03:46	2024-10-29	Show	GitHub Exploit DB Packet Storm

250985	9.8	CRITICAL Network	langchain	langchain	A vulnerability in the GraphCypherQAChain class of langchain-ai/langchainjs versions 0.2.5 and all versions with this class allows for prompt injection, leading to SQL injection. This vulnerability p…	CWE-89 SQL Injection	CVE-2024-7042	2024-11-1 03:36	2024-10-29	Show	GitHub Exploit DB Packet Storm

250986	9.1	CRITICAL Network	gaizhenbiao	chuanhuchatgpt	A file overwrite vulnerability exists in gaizhenbiao/chuanhuchatgpt versions <= 20240410. This vulnerability allows an attacker to gain unauthorized access to overwrite critical configuration files w…	CWE-610 Externally Controlled Reference to a Resource in Another Sphere	CVE-2024-5823	2024-11-1 03:05	2024-10-29	Show	GitHub Exploit DB Packet Storm

250987	6.1	MEDIUM Network	soft-master	affiliate_platform	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Ilias Gomatos Affiliate Platform allows Reflected XSS.This issue affects Affiliate Platfor…	CWE-79 Cross-site Scripting	CVE-2024-49645	2024-11-1 02:59	2024-10-29	Show	GitHub Exploit DB Packet Storm

250988	6.1	MEDIUM Network	wedevs	wp_erp	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in weDevs WP ERP allows Reflected XSS.This issue affects WP ERP: from n/a through 1.13.2.	CWE-79 Cross-site Scripting	CVE-2024-47640	2024-11-1 02:39	2024-10-29	Show	GitHub Exploit DB Packet Storm

250989	-		-	-	TYPO3 before 13.3.1 allows denial of service (interface error) in the Bookmark Toolbar (ext:backend), exploitable by an administrator-level backend user account via manipulated data saved in the book…	-	CVE-2024-34537	2024-11-1 02:15	2024-10-28	Show	GitHub Exploit DB Packet Storm

250990	7.5	HIGH Network	-	-	IBM MQ 9.1 LTS, 9.2 LTS, 9.3 LTS, 9.3 CD, 9.4 LTS, and 9.4 CD could allow an authenticated user in a specifically defined role, to bypass security restrictions and execute actions against the queue m…	CWE-266 Incorrect Privilege Assignment	CVE-2024-40681	2024-11-1 02:15	2024-09-8	Show	GitHub Exploit DB Packet Storm