Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 22, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
251071 7.5 危険 cyberfolio - Cyberfolio における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5768 2012-06-26 15:37 2006-11-6 Show GitHub Exploit DB Packet Storm
251072 6.8 警告 drake team - Drake CMS の includes/xhtml.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2006-5767 2012-06-26 15:37 2006-11-6 Show GitHub Exploit DB Packet Storm
251073 7.5 危険 article system - Article System の volume.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5766 2012-06-26 15:37 2006-11-6 Show GitHub Exploit DB Packet Storm
251074 7.5 危険 article script - Article Script の rss.php における SQL インジェクションの脆弱性 - CVE-2006-5765 2012-06-26 15:37 2006-11-6 Show GitHub Exploit DB Packet Storm
251075 7.5 危険 free php scripts - Free File Hosting の contact.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2006-5764 2012-06-26 15:37 2006-11-6 Show GitHub Exploit DB Packet Storm
251076 5.1 警告 free php scripts - Free File Hosting における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5763 2012-06-26 15:37 2006-11-6 Show GitHub Exploit DB Packet Storm
251077 5.1 警告 free php scripts - Free File Hosting の forgot_pass.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2006-5762 2012-06-26 15:37 2006-11-6 Show GitHub Exploit DB Packet Storm
251078 6.4 警告 airmagnet - AirMagnet Enterprise のコンソールにおけるネットワークトラフィックを読み取られる脆弱性 - CVE-2006-5746 2012-06-26 15:37 2006-11-6 Show GitHub Exploit DB Packet Storm
251079 5 警告 airmagnet - AirMagnet Enterprise の AirMagnet Enterprise コンソールおよび Remote Sensor コンソールにおける任意の Web スクリプトまたは HTML を挿入される脆弱性 - CVE-2006-5742 2012-06-26 15:37 2006-11-6 Show GitHub Exploit DB Packet Storm
251080 4.3 警告 airmagnet - AirMagnet Enterprise におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-5741 2012-06-26 15:37 2006-11-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 23, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
314631 - - - In WS_FTP Server versions before 8.8.9 (2022.0.9), an Incorrect Implementation of Authentication Algorithm in the Web Transfer Module allows users to skip the second-factor verification and log in wi… CWE-303
 Incorrect Implementation of Authentication Algorithm 		CVE-2024-9999 2024-11-14 02:01 2024-11-13 Show GitHub Exploit DB Packet Storm
314632 - - - A buffer over-read in Ivanti Secure Access Client before 22.7R4 allows a local unauthenticated attacker to cause a denial of service. - CVE-2024-9843 2024-11-14 02:01 2024-11-13 Show GitHub Exploit DB Packet Storm
314633 - - - Incorrect permissions in Ivanti Secure Access Client before version 22.7R4 allows a local authenticated attacker to create arbitrary folders. - CVE-2024-9842 2024-11-14 02:01 2024-11-13 Show GitHub Exploit DB Packet Storm
314634 - - - Improper authorization in Ivanti Secure Access Client before version 22.7R3 allows a local authenticated attacker to modify sensitive configuration files. - CVE-2024-8539 2024-11-14 02:01 2024-11-13 Show GitHub Exploit DB Packet Storm
314635 - - - Incorrect permissions in Ivanti Secure Access Client before 22.7R4 allows a local authenticated attacker to escalate their privileges. - CVE-2024-7571 2024-11-14 02:01 2024-11-13 Show GitHub Exploit DB Packet Storm
314636 - - - Element is a Matrix web client built using the Matrix React SDK. A malicious homeserver can send invalid messages over federation which can prevent Element Web and Desktop from rendering single messa… CWE-248
 Uncaught Exception 		CVE-2024-51750 2024-11-14 02:01 2024-11-13 Show GitHub Exploit DB Packet Storm
314637 - - - Element is a Matrix web client built using the Matrix React SDK. Versions of Element Web and Desktop earlier than 1.11.85 do not check if thumbnails for attachments, stickers and images are coherent.… CWE-451
 User Interface (UI) Misrepresentation of Critical Information 		CVE-2024-51749 2024-11-14 02:01 2024-11-13 Show GitHub Exploit DB Packet Storm
314638 - - - matrix-js-sdk is a Matrix messaging protocol Client-Server SDK for JavaScript. matrix-js-sdk before 34.11.0 is vulnerable to client-side path traversal via crafted MXC URIs. A malicious room member c… - CVE-2024-50336 2024-11-14 02:01 2024-11-13 Show GitHub Exploit DB Packet Storm
314639 - - - Icinga is a monitoring system which checks the availability of network resources, notifies users of outages, and generates performance data for reporting. The TLS certificate validation in all Icinga… CWE-295
Improper Certificate Validation  		CVE-2024-49369 2024-11-14 02:01 2024-11-13 Show GitHub Exploit DB Packet Storm
314640 - - - HCL Traveler for Microsoft Outlook (HTMO) is susceptible to a control flow vulnerability. The application does not sufficiently manage its control flow during execution, creating conditions in which… - CVE-2024-30133 2024-11-14 02:01 2024-11-13 Show GitHub Exploit DB Packet Storm