Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 14, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
231221	7.5	危険	phpartenaire	-	PHPartenaire の dix.php3 における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5032	2012-12-20 18:02	2006-09-27	Show	GitHub Exploit DB Packet Storm

231222	7.5	危険	woltlab	-	wBB の thread.php における SQL インジェクションの脆弱性	-	CVE-2006-5029	2012-12-20 18:02	2006-09-27	Show	GitHub Exploit DB Packet Storm

231223	5	警告	swsoft	-	Swsoft Pleask Reload および Pleask の filemanager/filemanager.php におけるディレクトリトラバーサルの脆弱性	-	CVE-2006-5028	2012-12-20 18:02	2006-09-27	Show	GitHub Exploit DB Packet Storm

231224	7.5	危険	pnews systems	-	Joshua Wilson pNews System の includes/global.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5022	2012-12-20 18:02	2006-09-27	Show	GitHub Exploit DB Packet Storm

231225	7.5	危険	redblog	-	redgun RedBLoG における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5021	2012-12-20 18:02	2006-09-27	Show	GitHub Exploit DB Packet Storm

231226	7.5	危険	solidstate	-	SolidState における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5020	2012-12-20 18:02	2006-09-27	Show	GitHub Exploit DB Packet Storm

231227	7.5	危険	voice of web	-	Voodoo chat における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4993	2012-12-20 18:02	2006-09-25	Show	GitHub Exploit DB Packet Storm

231228	3.6	注意	RSAセキュリティ	-	RSA KeonCA Manager における悪意のある認証局動作を隠される脆弱性	-	CVE-2006-4991	2012-12-20 18:02	2006-09-25	Show	GitHub Exploit DB Packet Storm

231229	4.6	警告	シマンテック	-	Symantec Sygate NAC におけるコントロールメソッドを回避される脆弱性	-	CVE-2006-4981	2012-12-20 18:02	2006-09-25	Show	GitHub Exploit DB Packet Storm

231230	5	警告	walter beschmout	-	Walter Beschmout PhpQuiz の cfgphpquiz/install.php における config.inc.php の任意の PHP コードを挿入される脆弱性	-	CVE-2006-4979	2012-12-20 18:02	2006-09-24	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
314921	-		-	-	Hotel Management System commit 91caab8 was discovered to contain a SQL injection vulnerability via the book_id parameter at admin_modify_room.php.	-	CVE-2024-42558	2024-08-21 06:35	2024-08-20	Show	GitHub Exploit DB Packet Storm

314922	6.1	MEDIUM Network	heytap	internet_browser	The ColorOS Internet Browser com.heytap.browser application 45.10.3.4.1 for Android allows a remote attacker to execute arbitrary JavaScript code via the com.android.browser.RealBrowserActivity compo…	CWE-79 Cross-site Scripting	CVE-2024-23729	2024-08-21 06:35	2024-08-20	Show	GitHub Exploit DB Packet Storm

314923	-		-	-	The T-Head XuanTie C910 CPU in the TH1520 SoC and the T-Head XuanTie C920 CPU in the SOPHON SG2042 have instructions that allow unprivileged attackers to write to arbitrary physical memory locations,…	-	CVE-2024-44067	2024-08-21 05:35	2024-08-19	Show	GitHub Exploit DB Packet Storm

314924	9.8	CRITICAL Network	emiloimagtolis	ticket_reservation_system	A vulnerability classified as critical was found in itsourcecode Ticket Reservation System 1.0. Affected by this vulnerability is an unknown functionality of the file login.php of the component Login…	CWE-89 SQL Injection	CVE-2024-7444	2024-08-21 04:56	2024-08-4	Show	GitHub Exploit DB Packet Storm

314925	9.8	CRITICAL Network	angeljudesuarez	placement_management_system	A vulnerability, which was classified as critical, was found in itsourcecode Placement Management System 1.0. Affected is an unknown function of the file login.php. The manipulation of the argument e…	CWE-89 SQL Injection	CVE-2024-7449	2024-08-21 04:49	2024-08-4	Show	GitHub Exploit DB Packet Storm

314926	5.4	MEDIUM Network	insurance_management_system_project	insurance_management_system	A vulnerability classified as problematic was found in nafisulbari/itsourcecode Insurance Management System 1.0. Affected by this vulnerability is an unknown functionality of the file addNominee.php …	CWE-79 Cross-site Scripting	CVE-2024-7916	2024-08-21 04:38	2024-08-19	Show	GitHub Exploit DB Packet Storm

314927	7.5	HIGH Network	corydolphin	flask-cors	A vulnerability in corydolphin/flask-cors version 4.0.1 allows the `Access-Control-Allow-Private-Network` CORS header to be set to true by default, without any configuration option. This behavior can…	NVD-CWE-Other	CVE-2024-6221	2024-08-21 04:37	2024-08-19	Show	GitHub Exploit DB Packet Storm

314928	-		-	-	An issue in the login component (process_login.php) of Hotel Management System commit 79d688 allows attackers to authenticate without providing a valid password.	-	CVE-2024-42559	2024-08-21 04:35	2024-08-20	Show	GitHub Exploit DB Packet Storm

314929	-		-	-	The Chatbot with ChatGPT WordPress plugin before 2.4.5 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by unauthenticated …	-	CVE-2024-6847	2024-08-21 04:35	2024-08-20	Show	GitHub Exploit DB Packet Storm

314930	7.2	HIGH Network	dedebiz	dedebiz	A vulnerability classified as critical has been found in DedeBIZ 6.3.0. This affects the function AdminUpload of the file admin/archives_do.php. The manipulation of the argument litpic leads to unres…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2024-7905	2024-08-21 04:35	2024-08-18	Show	GitHub Exploit DB Packet Storm