Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 8, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230031 5.1 警告 phpmyprofiler - phpMyProfiler の functions.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5186 2012-12-20 18:02 2006-10-10 Show GitHub Exploit DB Packet Storm
230032 7.5 危険 pkr internet - PKR Internet Taskjitsu における SQL インジェクションの脆弱性 - CVE-2006-5184 2012-12-20 18:02 2006-09-27 Show GitHub Exploit DB Packet Storm
230033 5.1 警告 powerportal - John Himmelman PowerPortal におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-5169 2012-12-20 18:02 2006-10-10 Show GitHub Exploit DB Packet Storm
230034 4.3 警告 Pebble - Simon Brown Pebble の検索機能におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2006-5168 2012-12-20 18:02 2006-10-10 Show GitHub Exploit DB Packet Storm
230035 5.1 警告 skrypty - Skrypty PPA Gallery の inc/functions.inc.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5165 2012-12-20 18:02 2006-10-5 Show GitHub Exploit DB Packet Storm
230036 6.8 警告 sum effect software - Sum Effect Software digiSHOP の cart.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-5164 2012-12-20 18:02 2006-10-5 Show GitHub Exploit DB Packet Storm
230037 5.1 警告 トレンドマイクロ - TrendMicro OSCE の ActiveX コントロールにおけるフォーマットストリングの脆弱性 - CVE-2006-5157 2012-12-20 18:02 2006-10-5 Show GitHub Exploit DB Packet Storm
230038 7.5 危険 videodb - VideoDB の core/pdf.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5155 2012-12-20 18:02 2006-10-5 Show GitHub Exploit DB Packet Storm
230039 7.5 危険 vamp webmail - VAMP Webmail の wamp_dir/setup/yesno.phtml における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5147 2012-12-20 18:02 2006-10-5 Show GitHub Exploit DB Packet Storm
230040 6.8 警告 y-blog - Yblog におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-5146 2012-12-20 18:02 2006-10-5 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
313671 - - - Improper Privilege Management vulnerability in IdeaBox PowerPack Pro for Elementor allows Privilege Escalation.This issue affects PowerPack Pro for Elementor: from n/a through 2.10.14. CWE-269
 Improper Privilege Management 		CVE-2024-39634 2024-08-2 21:59 2024-08-2 Show GitHub Exploit DB Packet Storm
313672 - - - Improper Privilege Management vulnerability in IdeaBox PowerPack for Beaver Builder allows Privilege Escalation.This issue affects PowerPack for Beaver Builder: from n/a through 2.33.0. CWE-269
 Improper Privilege Management 		CVE-2024-39633 2024-08-2 21:59 2024-08-2 Show GitHub Exploit DB Packet Storm
313673 - - - Deserialization of Untrusted Data vulnerability in MotoPress Timetable and Event Schedule allows Object Injection.This issue affects Timetable and Event Schedule: from n/a through 2.4.13. CWE-502
 Deserialization of Untrusted Data 		CVE-2024-39630 2024-08-2 21:59 2024-08-2 Show GitHub Exploit DB Packet Storm
313674 - - - Server-Side Request Forgery (SSRF) vulnerability in Jordy Meow AI Engine: ChatGPT Chatbot allows Server Side Request Forgery.This issue affects AI Engine: ChatGPT Chatbot: from n/a through 2.4.7. CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2024-38791 2024-08-2 21:59 2024-08-2 Show GitHub Exploit DB Packet Storm
313675 - - - Improper Privilege Management vulnerability in WebAppick CTX Feed allows Privilege Escalation.This issue affects CTX Feed: from n/a through 6.5.6. CWE-269
 Improper Privilege Management 		CVE-2024-38775 2024-08-2 21:59 2024-08-2 Show GitHub Exploit DB Packet Storm
313676 - - - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Crocoblock JetWidgets for Elementor and WooCommerce allows PHP Local File Inclusion.This issue affects … - CVE-2024-38772 2024-08-2 21:59 2024-08-2 Show GitHub Exploit DB Packet Storm
313677 - - - Improper Privilege Management vulnerability in Revmakx Backup and Staging by WP Time Capsule allows Privilege Escalation, Authentication Bypass.This issue affects Backup and Staging by WP Time Capsul… CWE-269
 Improper Privilege Management 		CVE-2024-38770 2024-08-2 21:59 2024-08-2 Show GitHub Exploit DB Packet Storm
313678 - - - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Webangon The Pack Elementor addons allows PHP Local File Inclusion, Path Traversal.This issue affects T… CWE-22
Path Traversal 		CVE-2024-38768 2024-08-2 21:59 2024-08-2 Show GitHub Exploit DB Packet Storm
313679 - - - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in MakeStories Team MakeStories (for Google Web Stories) allows Path Traversal, Server Side Request Forger… CWE-22
Path Traversal 		CVE-2024-38746 2024-08-2 21:59 2024-08-2 Show GitHub Exploit DB Packet Storm
313680 - - - Under certain circumstances exacqVision Web Services will not enforce secure web communications (HTTPS) - CVE-2024-32864 2024-08-2 21:59 2024-08-2 Show GitHub Exploit DB Packet Storm