Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 6, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
229461	7.5	危険	phpdynasite	-	phpDynaSite における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5760	2012-12-20 18:02	2006-11-6	Show	GitHub Exploit DB Packet Storm

229462	5	警告	rhadrix	-	Rhadrix If-CMS の index.php における Web サーバのフルパスを取得される脆弱性	-	CVE-2006-5759	2012-12-20 18:02	2006-11-6	Show	GitHub Exploit DB Packet Storm

229463	2.1	注意	PunBB	-	PunBB における SQL インジェクションの脆弱性	-	CVE-2006-5738	2012-12-20 18:02	2006-10-15	Show	GitHub Exploit DB Packet Storm

229464	7.2	危険	PunBB	-	PunBB における許可されない操作を実行される脆弱性	-	CVE-2006-5737	2012-12-20 18:02	2006-11-6	Show	GitHub Exploit DB Packet Storm

229465	5.1	警告	PunBB	-	PunBB の search.php における SQL インジェクションの脆弱性	-	CVE-2006-5736	2012-12-20 18:02	2006-11-6	Show	GitHub Exploit DB Packet Storm

229466	7.5	危険	PunBB	-	PunBB の include/common.php におけるディレクトリトラバーサルの脆弱性	-	CVE-2006-5735	2012-12-20 18:02	2006-11-6	Show	GitHub Exploit DB Packet Storm

229467	7.5	危険	postnuke software foundation	-	PostNuke の error.php におけるディレクトリトラバーサルの脆弱性	-	CVE-2006-5733	2012-12-20 18:02	2006-11-6	Show	GitHub Exploit DB Packet Storm

229468	5	警告	tgs-cms	-	T.G.S. CMS の logout.php における SQL インジェクションの脆弱性	-	CVE-2006-5732	2012-12-20 18:02	2006-11-6	Show	GitHub Exploit DB Packet Storm

229469	6.5	警告	yazd	-	Yazd Discussion Forum における任意のフォーラム内へメッセージを返信される脆弱性	-	CVE-2006-5729	2012-12-20 18:02	2006-11-6	Show	GitHub Exploit DB Packet Storm

229470	5.1	警告	sazcart	-	sazcart の admin/controls/cart.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5727	2012-12-20 18:02	2006-11-6	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1401	7.3	HIGH Network	-	-	A vulnerability was found in TencentCloudBase CloudBase-MCP up to 2.17.0. Affected is the function openUrl of the file mcp/src/interactive-server.ts of the component open-url API Endpoint. The manipu…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2026-7221	2026-04-29 10:00	2026-04-28	Show	GitHub Exploit DB Packet Storm

1402	3.5	LOW Network	-	-	A vulnerability was determined in code-projects Coaching Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /cims/modules/student/complaint.php of the compo…	CWE-79 CWE-94 Cross-site Scripting Code Injection	CVE-2026-7222	2026-04-29 10:00	2026-04-28	Show	GitHub Exploit DB Packet Storm

1403	7.3	HIGH Network	-	-	A vulnerability was identified in BigSweetPotatoStudio HyperChat up to 2.0.0-alpha.63. Affected by this issue is the function fetch of the file packages/core/src/http/aiProxyMiddleware.mts of the com…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2026-7223	2026-04-29 10:00	2026-04-28	Show	GitHub Exploit DB Packet Storm

1404	7.3	HIGH Network	-	-	A security flaw has been discovered in SourceCodester Pizzafy Ecommerce System 1.0. This affects the function delete_cart of the file /admin/ajax.php?action=delete_cart. Performing a manipulation of …	CWE-74 CWE-89 Injection SQL Injection	CVE-2026-7224	2026-04-29 10:00	2026-04-28	Show	GitHub Exploit DB Packet Storm

1405	7.3	HIGH Network	-	-	A weakness has been identified in SourceCodester Pizzafy Ecommerce System 1.0. This vulnerability affects the function delete_menu of the file /admin/ajax.php?action=delete_menu. Executing a manipula…	CWE-74 CWE-89 Injection SQL Injection	CVE-2026-7225	2026-04-29 10:00	2026-04-28	Show	GitHub Exploit DB Packet Storm

1406	7.3	HIGH Network	-	-	A security vulnerability has been detected in SourceCodester Pizzafy Ecommerce System 1.0. This issue affects the function login2 of the file /admin/ajax.php?action=login2. The manipulation of the ar…	CWE-74 CWE-89 Injection SQL Injection	CVE-2026-7226	2026-04-29 10:00	2026-04-28	Show	GitHub Exploit DB Packet Storm

1407	7.3	HIGH Network	-	-	A vulnerability was detected in SourceCodester Pizzafy Ecommerce System 1.0. Impacted is the function Login of the file /admin/ajax.php?action=login. The manipulation of the argument e-mail results i…	CWE-74 CWE-89 Injection SQL Injection	CVE-2026-7227	2026-04-29 10:00	2026-04-28	Show	GitHub Exploit DB Packet Storm

1408	7.3	HIGH Network	-	-	A flaw has been found in SourceCodester Pizzafy Ecommerce System 1.0. The affected element is the function get_cart_count of the file /admin/ajax.php?action=get_cart_count. This manipulation of the a…	CWE-74 CWE-89 Injection SQL Injection	CVE-2026-7228	2026-04-29 10:00	2026-04-28	Show	GitHub Exploit DB Packet Storm

1409	6.3	MEDIUM Network	-	-	A vulnerability was found in code-projects Coaching Management System 1.0. This affects an unknown function of the file /cims/modules/admin/reply.php of the component POST Handler. Performing a manip…	CWE-74 CWE-89 Injection SQL Injection	CVE-2026-7229	2026-04-29 10:00	2026-04-28	Show	GitHub Exploit DB Packet Storm

1410	4.3	MEDIUM Network	-	-	A vulnerability was found in SourceCodester Safety Anger Pad 1.0. The affected element is an unknown function. The manipulation of the argument angerDisplay results in cross site scripting. The attac…	CWE-79 CWE-94 Cross-site Scripting Code Injection	CVE-2026-7230	2026-04-29 10:00	2026-04-28	Show	GitHub Exploit DB Packet Storm