Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":April 29, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228311	7.5	危険	php-update	-	PHP-Update の admin/uploads.php における権限を取得される脆弱性	-	CVE-2006-6878	2012-12-20 18:02	2006-12-31	Show	GitHub Exploit DB Packet Storm

228312	6.8	警告	Zen Cart	-	Zen Cart Web Shopping Cart におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-6868	2012-12-20 18:02	2006-12-30	Show	GitHub Exploit DB Packet Storm

228313	7.5	危険	vladimir meshakov	-	Vladimir Menshakov buratinable templator における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-6867	2012-12-20 18:02	2006-12-31	Show	GitHub Exploit DB Packet Storm

228314	7.8	危険	stphp	-	STphp EasyNews におけるユーザ名などを取得される脆弱性	-	CVE-2006-6866	2012-12-20 18:02	2006-12-31	Show	GitHub Exploit DB Packet Storm

228315	7.8	危険	softartisans	-	SAFileUp の SAFileUpSamples/util/viewsrc.asp におけるディレクトリトラバーサルの脆弱性	-	CVE-2006-6865	2012-12-20 18:02	2006-12-31	Show	GitHub Exploit DB Packet Storm

228316	10	危険	website designs for less	-	Website Designs For Less Click N' Print Coupons の coupon_detail.asp における SQL インジェクションの脆弱性	-	CVE-2006-6859	2012-12-20 18:02	2006-12-31	Show	GitHub Exploit DB Packet Storm

228317	7.5	危険	webtext	-	WebText CMS における wt/users/ 配下のスクリプトへ任意の PHP コードを挿入される脆弱性	-	CVE-2006-6856	2012-12-20 18:02	2006-12-31	Show	GitHub Exploit DB Packet Storm

228318	7.5	危険	shadowed works	-	Shadowed Portal の include.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-6850	2012-12-20 18:02	2006-12-31	Show	GitHub Exploit DB Packet Storm

228319	5	警告	リアルネットワークス	-	RealNetworks RealPlayer の ierpplug.dll におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-6847	2012-12-20 18:02	2006-12-31	Show	GitHub Exploit DB Packet Storm

228320	10	危険	phpBB	-	phpBB の特定のフォームにおける脆弱性	-	CVE-2006-6841	2012-12-20 18:02	2006-12-31	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 29, 2026, 4:51 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1181	3.5	LOW Network	-	-	A vulnerability has been found in Akaunting up to 3.1.21. This issue affects some unknown processing of the component Invoice/Billing. The manipulation of the argument notes leads to cross site scrip…	CWE-79 CWE-94 Cross-site Scripting Code Injection	CVE-2026-5568	2026-04-25 03:14	2026-04-5	Show	GitHub Exploit DB Packet Storm

1182	7.3	HIGH Network	-	-	A vulnerability was detected in SourceCodester/jkev Record Management System 1.0. Affected by this vulnerability is an unknown functionality of the file index.php of the component Login. The manipula…	CWE-74 CWE-89 Injection SQL Injection	CVE-2026-5575	2026-04-25 03:14	2026-04-6	Show	GitHub Exploit DB Packet Storm

1183	4.7	MEDIUM Network	-	-	A flaw has been found in SourceCodester/jkev Record Management System 1.0. Affected by this issue is some unknown functionality of the file save_emp.php of the component Add Employee Page. This manip…	CWE-284 CWE-434 Improper Access Control Unrestricted Upload of File with Dangerous Type	CVE-2026-5576	2026-04-25 03:14	2026-04-6	Show	GitHub Exploit DB Packet Storm

1184	8.1	HIGH Network	rwsdk	redwoodsdk	RedwoodSDK is a server-first React framework. From 1.0.0-beta.50 to 1.0.5, erver functions exported from "use server" files could be invoked via GET requests, bypassing their intended HTTP method. In…	CWE-352 Origin Validation Error	CVE-2026-39371	2026-04-25 03:14	2026-04-8	Show	GitHub Exploit DB Packet Storm

1185	3.5	LOW Network	-	-	A vulnerability was identified in krayin laravel-crm up to 2.2. Impacted is the function composeMail of the file packages/Webkul/Admin/tests/e2e-pw/tests/mail/inbox.spec.ts of the component Activitie…	CWE-79 CWE-94 Cross-site Scripting Code Injection	CVE-2026-5370	2026-04-25 03:13	2026-04-3	Show	GitHub Exploit DB Packet Storm

1186	3.7	LOW Network	-	-	A vulnerability was identified in Newgen OmniDocs up to 12.0.00. Affected by this vulnerability is an unknown functionality of the file /omnidocs/GetWebApiConfiguration. The manipulation of the argum…	CWE-200 CWE-284 Information Exposure Improper Access Control	CVE-2026-5413	2026-04-25 03:13	2026-04-3	Show	GitHub Exploit DB Packet Storm

1187	5.3	MEDIUM Network	-	-	A security flaw has been discovered in Newgen OmniDocs up to 12.0.00. Affected by this issue is some unknown functionality of the file /omnidocs/WebApiRequestRedirection. The manipulation of the argu…	CWE-99 Resource Injection	CVE-2026-5414	2026-04-25 03:13	2026-04-3	Show	GitHub Exploit DB Packet Storm

1188	4.7	MEDIUM Network	-	-	A vulnerability was determined in Dataease SQLbot up to 1.6.0. This issue affects the function get_es_data_by_http of the file backend/apps/db/es_engine.py of the component Elasticsearch Handler. Thi…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2026-5417	2026-04-25 03:13	2026-04-3	Show	GitHub Exploit DB Packet Storm

1189	3.3	LOW Local	-	-	A flaw has been found in UCC CampusConnect App up to 14.3.5 on Android. This vulnerability affects unknown code of the file campusconnect/BuildConfig.java of the component campusconnect.ucc. This man…	CWE-320 CWE-321 Key Management Errors Use of Hard-coded Cryptographic Key	CVE-2026-5452	2026-04-25 03:13	2026-04-3	Show	GitHub Exploit DB Packet Storm

1190	3.3	LOW Local	-	-	A vulnerability was found in GRID Organiser App up to 1.0.5 on Android. Impacted is an unknown function of the file file res/raw/app.json of the component co.gridapp.organiser. Performing a manipulat…	CWE-320 CWE-321 Key Management Errors Use of Hard-coded Cryptographic Key	CVE-2026-5454	2026-04-25 03:13	2026-04-3	Show	GitHub Exploit DB Packet Storm