Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 6, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
229601	7.5	危険	phplibre	-	TribunaLibre の ftag.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5314	2012-12-20 18:02	2006-10-17	Show	GitHub Exploit DB Packet Storm

229602	7.5	危険	phpBB	-	phpBB 用の Ajax Shoutbox モジュールにおける PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5312	2012-12-20 18:02	2006-10-17	Show	GitHub Exploit DB Packet Storm

229603	7.5	危険	phpBB	-	phpBB 用の Prillian French モジュールにおける PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5309	2012-12-20 18:02	2006-10-17	Show	GitHub Exploit DB Packet Storm

229604	4	警告	winzip	-	WinZip 用の WZFILEVIEW.FileViewCtrl.61 ActiveX コントロールにおける任意のコードを実行される脆弱性	-	CVE-2006-5198	2012-12-20 18:02	2006-11-14	Show	GitHub Exploit DB Packet Storm

229605	6.8	警告	wheatblog	-	Wheatblog におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-5195	2012-12-20 18:02	2006-10-10	Show	GitHub Exploit DB Packet Storm

229606	7.5	危険	wikyblog	-	Josh Schmidt WikyBlog の index.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5193	2012-12-20 18:02	2006-10-10	Show	GitHub Exploit DB Packet Storm

229607	7.5	危険	phpgreetz	-	phpGreetz の includes/footer.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5192	2012-12-20 18:02	2006-10-10	Show	GitHub Exploit DB Packet Storm

229608	5.1	警告	phpBB	-	phpBB 用の Nivisec Static Topics モジュールにおける PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2006-5191	2012-12-20 18:02	2006-10-10	Show	GitHub Exploit DB Packet Storm

229609	5	警告	webgeneius	-	webGENEius GOOP Gallery の download.php におけるディレクトリトラバーサルの脆弱性	-	CVE-2006-5188	2012-12-20 18:02	2006-10-10	Show	GitHub Exploit DB Packet Storm

229610	5.1	警告	phpmyprofiler	-	phpMyProfiler の functions.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5186	2012-12-20 18:02	2006-10-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
313281	-		-	-	Initialization of a resource with an insecure default vulnerability exists in JavaTM Platform Ver.12.89 and earlier. If this vulnerability is exploited, the product may be affected by some known TLS1…	-	CVE-2024-41995	2024-08-6 16:15	2024-08-6	Show	GitHub Exploit DB Packet Storm

313282	-		-	-	A vulnerability was found in FFmpeg up to 7.0.1. It has been classified as critical. This affects the function pnm_decode_frame in the library /libavcodec/pnmdec.c. The manipulation leads to heap-bas…	-	CVE-2024-7055	2024-08-6 15:15	2024-08-6	Show	GitHub Exploit DB Packet Storm

313283	-		-	-	The shortcodes-ultimate-pro WordPress plugin before 7.2.1 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which …	-	CVE-2024-6766	2024-08-6 15:15	2024-08-6	Show	GitHub Exploit DB Packet Storm

313284	-		-	-	The WordPress File Upload WordPress plugin before 4.24.8 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be use…	-	CVE-2024-6651	2024-08-6 15:15	2024-08-6	Show	GitHub Exploit DB Packet Storm

313285	8.8	HIGH Network	-	-	The WPBakery Visual Composer plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 7.7 via the 'layout_name' parameter. This makes it possible for authentic…	-	CVE-2024-5709	2024-08-6 15:15	2024-08-6	Show	GitHub Exploit DB Packet Storm

313286	6.4	MEDIUM Network	-	-	The WPBakery Visual Composer plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘link’ parameter in all versions up to, and including, 7.7 due to insufficient input sanitizatio…	-	CVE-2024-5708	2024-08-6 15:15	2024-08-6	Show	GitHub Exploit DB Packet Storm

313287	-		-	-	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Gitea Gitea Open Source Git Server allows Stored XSS.This issue affects Gitea Open Source …	-	CVE-2024-6886	2024-08-6 13:16	2024-08-6	Show	GitHub Exploit DB Packet Storm

313288	-		-	-	Improper access control in Calibre 6.9.0 ~ 7.14.0 allow unauthenticated attackers to achieve remote code execution.	-	CVE-2024-6782	2024-08-6 13:16	2024-08-6	Show	GitHub Exploit DB Packet Storm

313289	-		-	-	Unquoted Executable Path vulnerability in Hitachi Device Manager on Windows (Device Manager Server component).This issue affects Hitachi Device Manager: before 8.8.7-00.	-	CVE-2024-5963	2024-08-6 12:15	2024-08-6	Show	GitHub Exploit DB Packet Storm

313290	-		-	-	Expression Language Injection vulnerability in Hitachi Tuning Manager on Windows, Linux, Solaris allows Code Injection.This issue affects Hitachi Tuning Manager: before 8.8.7-00.	-	CVE-2024-5828	2024-08-6 12:15	2024-08-6	Show	GitHub Exploit DB Packet Storm