Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
242761	2.6	注意	Drupal	-	Drupal における任意のフォーム情報を取得される脆弱性	-	CVE-2006-5477	2012-06-26 15:37	2006-10-18	Show	GitHub Exploit DB Packet Storm

242762	7.5	危険	Drupal	-	Drupal におけるクロスサイトリクエストフォージェリの脆弱性	-	CVE-2006-5476	2012-06-26 15:37	2006-10-18	Show	GitHub Exploit DB Packet Storm

242763	6.8	警告	Drupal	-	Drupal の XML パーサにおけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-5475	2012-06-26 15:37	2006-10-18	Show	GitHub Exploit DB Packet Storm

242764	2.1	注意	Avahi	-	Avahi における Avahi へのネットワーク変更を傍受される脆弱性	-	CVE-2006-5461	2012-06-26 15:37	2006-11-14	Show	GitHub Exploit DB Packet Storm

242765	7.5	危険	alex	-	Download-Engine における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5459	2012-06-26 15:37	2006-10-23	Show	GitHub Exploit DB Packet Storm

242766	4.3	警告	casinosoft	-	Casinosoft Casino Script の登録フォームにおけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-5457	2012-06-26 15:37	2006-10-23	Show	GitHub Exploit DB Packet Storm

242767	4.3	警告	dev	-	DEV WMS の index.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-5447	2012-06-26 15:37	2006-10-23	Show	GitHub Exploit DB Packet Storm

242768	5.1	警告	casinosoft	-	Casinosoft Casino Script の lobby/config.php における SQL インジェクションの脆弱性	-	CVE-2006-5446	2012-06-26 15:37	2006-10-23	Show	GitHub Exploit DB Packet Storm

242769	7.8	危険	Digium	-	Asterisk の SIP チャネルドライバ (channels/chan_sip.c) におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-5445	2012-06-26 15:37	2006-10-23	Show	GitHub Exploit DB Packet Storm

242770	7.5	危険	Digium	-	Cisco SCCP 電話機で使用される Asterisk の Skinny チャネルドライバにおける整数オーバーフローの脆弱性	-	CVE-2006-5444	2012-06-26 15:37	2006-10-23	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 26, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
251021	-		-	-	A User enumeration vulnerability in AquilaCMS 1.409.20 and prior allows unauthenticated attackers to obtain email addresses via the "Add a user" feature. The vulnerability occurs due to insufficientl…	-	CVE-2024-48572	2024-11-1 21:57	2024-10-30	Show	GitHub Exploit DB Packet Storm

251022	-		-	-	A remote code execution (RCE) vulnerability in the component /PluXml/core/admin/parametres_edittpl.php of PluXml v5.8.16 and lower allows attackers to execute arbitrary code via injecting a crafted p…	-	CVE-2024-48138	2024-11-1 21:57	2024-10-30	Show	GitHub Exploit DB Packet Storm

251023	-		-	-	In Jitsi Meet before 2.0.9779, the functionality to share an image using giphy was implemented in an insecure way, resulting in clients loading GIFs from any arbitrary URL if a message from another p…	-	CVE-2024-44080	2024-11-1 21:57	2024-10-30	Show	GitHub Exploit DB Packet Storm

251024	-		-	-	Use after free in WebRTC in Google Chrome prior to 130.0.6723.92 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)	-	CVE-2024-10488	2024-11-1 21:57	2024-10-30	Show	GitHub Exploit DB Packet Storm

251025	-		-	-	Out of bounds write in Dawn in Google Chrome prior to 130.0.6723.92 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page. (Chromium security severity: Critical)	-	CVE-2024-10487	2024-11-1 21:57	2024-10-30	Show	GitHub Exploit DB Packet Storm

251026	-		-	-	Cross Site Scripting vulnerability in TeslaLogger Admin Panel before v.1.59.6 allows a remote attacker to execute arbitrary code via the New Journey field.	-	CVE-2024-48461	2024-11-1 21:57	2024-10-30	Show	GitHub Exploit DB Packet Storm

251027	-		-	-	A Deserialization of Untrusted Data vulnerability in chainer v7.8.1.post1 leads to execution of arbitrary code.	-	CVE-2024-48206	2024-11-1 21:57	2024-10-30	Show	GitHub Exploit DB Packet Storm

251028	-		-	-	Broken access control in NetAdmin 4.030319 returns data with functionalities on the endpoint that "assembles" the functionalities menus, the return of this call is not encrypted and as the system doe…	-	CVE-2024-48955	2024-11-1 21:57	2024-10-30	Show	GitHub Exploit DB Packet Storm

251029	-		-	-	Asio C++ Library before 1.13.0 lacks a fallback error code in the case of SSL_ERROR_SYSCALL with no associated error information from the SSL library being used.	-	CVE-2019-25219	2024-11-1 21:57	2024-10-30	Show	GitHub Exploit DB Packet Storm

251030	5.3	MEDIUM Network	cisco	firepower_threat_defense_software adaptive_security_appliance_software	A vulnerability in the login authentication functionality of the Remote Access SSL VPN feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software co…	CWE-772 Missing Release of Resource after Effective Lifetime	CVE-2024-20493	2024-11-1 21:54	2024-10-24	Show	GitHub Exploit DB Packet Storm