Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 9, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230571 2.6 注意 サン・マイクロシステムズ - Sun Solaris の libnsl および TLI/XTI API ルーチンにおけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-4303 2012-12-20 18:02 2006-08-22 Show GitHub Exploit DB Packet Storm
230572 4.3 警告 Tiki Software Community Association - TikiWiki の tiki-searchindex.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2006-4299 2012-12-20 18:02 2006-08-22 Show GitHub Exploit DB Packet Storm
230573 5 警告 TWiki - TWiki の viewfile におけるディレクトリトラバーサルの脆弱性 - CVE-2006-4294 2012-12-20 18:02 2006-08-20 Show GitHub Exploit DB Packet Storm
230574 7.5 危険 solmetra - SOLMETRA SPAW Editor における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4283 2012-12-20 18:02 2006-08-22 Show GitHub Exploit DB Packet Storm
230575 7.5 危険 xennobb - XennoBB の topic_post.php における SQL インジェクションの脆弱性 - CVE-2006-4279 2012-12-20 18:02 2006-08-21 Show GitHub Exploit DB Packet Storm
230576 7.5 危険 sportsphool - SportsPHool の includes/layout/plain.footer.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4278 2012-12-20 18:02 2006-08-21 Show GitHub Exploit DB Packet Storm
230577 9 危険 symantec veritas - Symantec Veritas NetBackup PureDisk Remote Office Edition における認証を回避される脆弱性 - CVE-2006-4228 2012-12-20 18:02 2006-08-16 Show GitHub Exploit DB Packet Storm
230578 4.3 警告 VWar - VWar の calendar.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-4224 2012-12-20 18:02 2006-08-18 Show GitHub Exploit DB Packet Storm
230579 7.5 危険 Zen Cart - Zen Cart におけるディレクトリトラバーサルの脆弱性 - CVE-2006-4218 2012-12-20 18:02 2006-08-17 Show GitHub Exploit DB Packet Storm
230580 7.5 危険 webinsta - WEBInsta CMS の modules/usersonline/users.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4217 2012-12-20 18:02 2006-08-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
314091 - - - Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in ExtendThemes Kubio AI Page Builder.This issue affects Kubio AI Page Builder: from n/a thro… - CVE-2024-39661 2024-08-2 21:59 2024-08-2 Show GitHub Exploit DB Packet Storm
314092 - - - Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Jordy Meow Photo Engine allows Stored XSS.This issue affects Photo Engine: from n/a throug… CWE-79
Cross-site Scripting 		CVE-2024-39660 2024-08-2 21:59 2024-08-2 Show GitHub Exploit DB Packet Storm
314093 - - - Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Lester ‘GaMerZ’ Chan WP-PostRatings allows Stored XSS.This issue affects WP-PostRatings: f… CWE-79
Cross-site Scripting 		CVE-2024-39659 2024-08-2 21:59 2024-08-2 Show GitHub Exploit DB Packet Storm
314094 - - - Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Uncanny Owl Tin Canny Reporting for LearnDash allows Reflected XSS.This issue affects Tin … CWE-79
Cross-site Scripting 		CVE-2024-39656 2024-08-2 21:59 2024-08-2 Show GitHub Exploit DB Packet Storm
314095 - - - Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in LiquidPoll LiquidPoll – Advanced Polls for Creators and Brands.This issue affects LiquidPo… CWE-79
Cross-site Scripting 		CVE-2024-39655 2024-08-2 21:59 2024-08-2 Show GitHub Exploit DB Packet Storm
314096 - - - Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in WPWeb Elite WooCommerce PDF Vouchers allows Reflected XSS.This issue affects WooCommerce P… CWE-79
Cross-site Scripting 		CVE-2024-39652 2024-08-2 21:59 2024-08-2 Show GitHub Exploit DB Packet Storm
314097 - - - Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Themewinter Eventin allows Stored XSS.This issue affects Eventin: from n/a through 4.0.5. CWE-79
Cross-site Scripting 		CVE-2024-39648 2024-08-2 21:59 2024-08-2 Show GitHub Exploit DB Packet Storm
314098 - - - Deserialization of Untrusted Data vulnerability in CodeSolz Better Find and Replace.This issue affects Better Find and Replace: from n/a through 1.6.1. CWE-502
 Deserialization of Untrusted Data 		CVE-2024-39636 2024-08-2 21:59 2024-08-2 Show GitHub Exploit DB Packet Storm
314099 - - - Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Dylan James Zephyr Project Manager.This issue affects Zephyr Project Manager: from n/a through 3.3.99. - CVE-2024-38761 2024-08-2 21:59 2024-08-2 Show GitHub Exploit DB Packet Storm
314100 - - - Under certain circumstances the exacqVision Web Service can expose authentication token details within communications. - CVE-2024-32931 2024-08-2 21:59 2024-08-2 Show GitHub Exploit DB Packet Storm