Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 20, 2026, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
231411	7.5	危険	phpgiggle	-	comscripts.com 上で配布されている J. He PHPGiggle における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-7119	2012-12-20 18:18	2007-03-5	Show	GitHub Exploit DB Packet Storm

231412	7.5	危険	PHPKIT	-	PHPKit における SQL インジェクションの脆弱性	-	CVE-2006-7115	2012-12-20 18:18	2007-03-5	Show	GitHub Exploit DB Packet Storm

231413	5	警告	planerd.net	-	P-News における重要な情報を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2006-7114	2012-12-20 18:18	2007-03-5	Show	GitHub Exploit DB Packet Storm

231414	7.5	危険	planerd.net	-	P-News における任意のコードをアップロードおよび実行される脆弱性	CWE-20 不適切な入力確認	CVE-2006-7113	2012-12-20 18:18	2007-03-5	Show	GitHub Exploit DB Packet Storm

231415	7.5	危険	powerphlogger	-	Power Phlogger の config.inc.php3 における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2006-7106	2012-12-20 18:18	2007-03-3	Show	GitHub Exploit DB Packet Storm

231416	7.5	危険	phpwind	-	PHPWind の admin.php における SQL インジェクションの脆弱性	-	CVE-2006-7101	2012-12-20 18:18	2007-03-3	Show	GitHub Exploit DB Packet Storm

231417	6.8	警告	phpBB	-	phpBB Insert User の includes/functions_mod_user.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2006-7100	2012-12-20 18:18	2007-03-3	Show	GitHub Exploit DB Packet Storm

231418	5	警告	solarpay	-	SolarPay の index.php におけるディレクトリトラバーサルの脆弱性	-	CVE-2006-7099	2012-12-20 18:18	2007-03-3	Show	GitHub Exploit DB Packet Storm

231419	10	危険	taskfreak	-	TaskFreak! における脆弱性	-	CVE-2006-7097	2012-12-20 18:18	2007-03-2	Show	GitHub Exploit DB Packet Storm

231420	6.8	警告	phpbb security	-	phpBB Security の phpbb_security.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2006-7090	2012-12-20 18:18	2007-03-2	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 20, 2026, 4:14 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
314181	4.7	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: drm/virtio: Fix GEM handle creation UAF Userspace can guess the handle value and try to race GEM object creation with handle clos…	CWE-416 Use After Free	CVE-2022-48899	2024-09-12 01:22	2024-08-21	Show	GitHub Exploit DB Packet Storm

314182	4.3	MEDIUM Network	ngothang	wp_multitasking	The WP MultiTasking WordPress plugin through 0.1.12 does not have CSRF check when updating exit popups, which could allow attackers to make logged admins perform such action via a CSRF attack	CWE-352 Origin Validation Error	CVE-2024-6855	2024-09-12 01:21	2024-09-8	Show	GitHub Exploit DB Packet Storm

314183	4.3	MEDIUM Network	ngothang	wp_multitasking	The WP MultiTasking WordPress plugin through 0.1.12 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack	CWE-352 Origin Validation Error	CVE-2024-6856	2024-09-12 01:20	2024-09-8	Show	GitHub Exploit DB Packet Storm

314184	5.4	MEDIUM Network	ngothang	wp_multitasking	The WP MultiTasking WordPress plugin through 0.1.12 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could…	CWE-79 Cross-site Scripting	CVE-2024-6859	2024-09-12 01:19	2024-09-8	Show	GitHub Exploit DB Packet Storm

314185	4.7	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: drm/msm/dp: do not complete dp_aux_cmd_fifo_tx() if irq is not for aux transfer There are 3 possible interrupt sources are handle…	CWE-362 Race Condition	CVE-2022-48898	2024-09-12 01:19	2024-08-21	Show	GitHub Exploit DB Packet Storm

314186	9.8	CRITICAL Network	themetechmount	truebooker	The TrueBooker WordPress plugin before 1.0.3 does not properly sanitise and escape a parameter before using it in a SQL statement via an AJAX action available to unauthenticated users, leading to a …	CWE-89 SQL Injection	CVE-2024-6924	2024-09-12 01:15	2024-09-8	Show	GitHub Exploit DB Packet Storm

314187	4.3	MEDIUM Network	themetechmount	truebooker	The TrueBooker WordPress plugin before 1.0.3 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack.	CWE-352 Origin Validation Error	CVE-2024-6925	2024-09-12 01:12	2024-09-8	Show	GitHub Exploit DB Packet Storm

314188	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: arm64/mm: fix incorrect file_map_count for invalid pmd The page table check trigger BUG_ON() unexpectedly when split hugepage: …	NVD-CWE-noinfo	CVE-2022-48897	2024-09-12 01:10	2024-08-21	Show	GitHub Exploit DB Packet Storm

314189	9.8	CRITICAL Network	angeljudesuarez	tailoring_management_system	A vulnerability was found in itsourcecode Tailoring Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /inccatadd.php. The manipulation…	CWE-89 SQL Injection	CVE-2024-8570	2024-09-12 01:07	2024-09-8	Show	GitHub Exploit DB Packet Storm

314190	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: ixgbe: fix pci device refcount leak As the comment of pci_get_domain_bus_and_slot() says, it returns a PCI device with refcount i…	CWE-401 Missing Release of Memory after Effective Lifetime	CVE-2022-48896	2024-09-12 01:06	2024-08-21	Show	GitHub Exploit DB Packet Storm