Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 11, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230981	7.5	危険	Zen Cart	-	Zen Cart におけるディレクトリトラバーサルの脆弱性	-	CVE-2006-4218	2012-12-20 18:02	2006-08-17	Show	GitHub Exploit DB Packet Storm

230982	7.5	危険	webinsta	-	WEBInsta CMS の modules/usersonline/users.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4217	2012-12-20 18:02	2006-08-17	Show	GitHub Exploit DB Packet Storm

230983	5.1	警告	Zen Cart	-	Zen Cart の index.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2006-4215	2012-12-20 18:02	2006-08-17	Show	GitHub Exploit DB Packet Storm

230984	7.5	危険	Zen Cart	-	Zen Cart における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2006-4214	2012-12-20 18:02	2006-08-17	Show	GitHub Exploit DB Packet Storm

230985	7.5	危険	webinsta	-	WEBInsta Mailing List Manager の install3.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4209	2012-12-20 18:02	2006-08-17	Show	GitHub Exploit DB Packet Storm

230986	5	警告	skippy.net	-	WordPress 用の Skippy WP-DB-Backup プラグインにおけるディレクトリトラバーサルの脆弱性	-	CVE-2006-4208	2012-12-20 18:02	2006-08-17	Show	GitHub Exploit DB Packet Storm

230987	7.5	危険	webdynamite	-	WebDynamite ProjectButler における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4205	2012-12-20 18:02	2006-08-17	Show	GitHub Exploit DB Packet Storm

230988	7.5	危険	phprojekt	-	PHProjekt における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2006-4204	2012-12-20 18:02	2006-08-17	Show	GitHub Exploit DB Packet Storm

230989	7.5	危険	spidey blog	-	Spidey Blog Script の proje_goster.php における SQL インジェクションの脆弱性	-	CVE-2006-4202	2012-12-20 18:02	2006-08-17	Show	GitHub Exploit DB Packet Storm

230990	5.1	警告	wheatblog	-	wB の includes/session.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4198	2012-12-20 18:02	2006-08-17	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
314591	7.8	HIGH Local	-	-	A vulnerability was reported in Lenovo PC Manager prior to version 2.8.90.11211 that could allow a local attacker to escalate privileges.	-	CVE-2019-6198	2024-08-1 21:42	2024-08-1	Show	GitHub Exploit DB Packet Storm

314592	7.8	HIGH Local	-	-	A vulnerability was reported in Lenovo PC Manager prior to version 2.8.90.11211 that could allow a local attacker to escalate privileges.	-	CVE-2019-6197	2024-08-1 21:42	2024-08-1	Show	GitHub Exploit DB Packet Storm

314593	5.5	MEDIUM Local	-	-	A vulnerability was reported in Lenovo PC Manager versions prior to 2.6.40.3154 that could allow an attacker to cause a system reboot.	-	CVE-2017-3772	2024-08-1 21:42	2024-08-1	Show	GitHub Exploit DB Packet Storm

314594	-		-	-	Mobile Security Framework (MobSF) is a security research platform for mobile applications in Android, iOS and Windows Mobile. An open redirect vulnerability exist in MobSF authentication view. Update…	-	CVE-2024-41955	2024-08-1 21:42	2024-08-1	Show	GitHub Exploit DB Packet Storm

314595	-		-	-	Pheonix App is a Python application designed to streamline various tasks, from managing files to playing mini-games. The issue is that the map of encoding/decoding languages are visible in code. The …	-	CVE-2024-41951	2024-08-1 21:42	2024-08-1	Show	GitHub Exploit DB Packet Storm

314596	-		-	-	slpd-lite is a unicast SLP UDP server. Any OpenBMC system that includes the slpd-lite package is impacted. Installing this package is the default when building OpenBMC. Nefarious users can send slp p…	-	CVE-2024-41660	2024-08-1 21:42	2024-08-1	Show	GitHub Exploit DB Packet Storm

314597	-		-	-	A vulnerability was found in IObit iTop Data Recovery Pro 4.4.0.687. It has been declared as critical. Affected by this vulnerability is an unknown functionality in the library madbasic_.bpl of the c…	CWE-427 Uncontrolled Search Path Element	CVE-2024-7324	2024-08-1 21:42	2024-08-1	Show	GitHub Exploit DB Packet Storm

314598	-		-	-	It was discovered by Elastic engineering that when elasticsearch-certutil CLI tool is used with the csr option in order to create a new Certificate Signing Requests, the associated private key that i…	-	CVE-2024-23444	2024-08-1 21:42	2024-08-1	Show	GitHub Exploit DB Packet Storm

314599	-		-	-	Zitadel is an open source identity management system. ZITADEL administrators can enable a setting called "Ignoring unknown usernames" which helps mitigate attacks that try to guess/enumerate username…	-	CVE-2024-41952	2024-08-1 21:42	2024-08-1	Show	GitHub Exploit DB Packet Storm

314600	-		-	-	Zitadel is an open source identity management system. ZITADEL uses HTML for emails and renders certain information such as usernames dynamically. That information can be entered by users or administr…	-	CVE-2024-41953	2024-08-1 21:42	2024-08-1	Show	GitHub Exploit DB Packet Storm