Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 31, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
248511 7.5 危険 Cerberus, LLC - Cerberus Helpdesk の Client Support Center における重要な情報を取得される脆弱性 - CVE-2006-4539 2012-06-26 15:37 2006-09-5 Show GitHub Exploit DB Packet Storm
248512 2.1 注意 dec - OpenVMS ALPHA の DECnet-Plus におけるパスワードを取得される脆弱性 CWE-200
情報漏えい 		CVE-2006-4537 2012-06-26 15:37 2006-09-5 Show GitHub Exploit DB Packet Storm
248513 7.5 危険 cms frogss - CMS Frogss の module/rejestracja.php における SQL インジェクションの脆弱性 - CVE-2006-4536 2012-06-26 15:37 2006-09-5 Show GitHub Exploit DB Packet Storm
248514 7.5 危険 bernard pacques - YACS CMS の articles/article.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4532 2012-06-26 15:37 2006-09-1 Show GitHub Exploit DB Packet Storm
248515 7.5 危険 bare concept media - Pheap CMS の lib/config.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4531 2012-06-26 15:37 2006-09-1 Show GitHub Exploit DB Packet Storm
248516 2.6 注意 devellion - CubeCart における PHP リモートファイルインクルージョン攻撃を誘発する脆弱性 - CVE-2006-4527 2012-06-26 15:37 2006-08-28 Show GitHub Exploit DB Packet Storm
248517 7.5 危険 devellion - CubeCart の includes/content/viewCat.inc.php における SQL インジェクションの脆弱性 - CVE-2006-4526 2012-06-26 15:37 2006-08-28 Show GitHub Exploit DB Packet Storm
248518 4.3 警告 devellion - CubeCart におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-4525 2012-06-26 15:37 2006-08-28 Show GitHub Exploit DB Packet Storm
248519 7.5 危険 digiappz - Digiappz Freekot の login_verif.asp における SQL インジェクションの脆弱性 - CVE-2006-4524 2012-06-26 15:37 2006-09-1 Show GitHub Exploit DB Packet Storm
248520 5 警告 2wire inc - 複数の 2Wire 製品の Web ベースの管理インターフェースにおけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-4523 2012-06-26 15:37 2006-09-1 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
313701 4.3 MEDIUM
Adjacent 		gotenna gotenna The goTenna Pro ATAK Plugin encryption key name is always sent unencrypted when the key is sent over RF through a broadcast message. It is advised to share the encryption key via local QR for highe… NVD-CWE-Other
CVE-2024-41931 2024-10-18 02:15 2024-09-27 Show GitHub Exploit DB Packet Storm
313702 6.5 MEDIUM
Adjacent 		gotenna gotenna In the goTenna Pro ATAK Plugin there is a vulnerability that makes it possible to inject any custom message with any GID and Callsign using a software defined radio in existing goTenna mesh network… NVD-CWE-Other
CVE-2024-41722 2024-10-18 02:15 2024-09-27 Show GitHub Exploit DB Packet Storm
313703 4.3 MEDIUM
Adjacent 		gotenna atak_plugin The goTenna Pro ATAK Plugin does not inject extra characters into broadcasted frames to obfuscate the length of messages. This makes it possible to tell the length of the payload regardless of the … CWE-203
 Information Exposure Through Discrepancy 		CVE-2024-41715 2024-10-18 02:15 2024-09-27 Show GitHub Exploit DB Packet Storm
313704 9.1 CRITICAL
Network 		gradio_project gradio Gradio is an open-source Python package designed for quick prototyping. This vulnerability involves **insecure communication** between the FRP (Fast Reverse Proxy) client and server when Gradio's `sh… CWE-311
Missing Encryption of Sensitive Data 		CVE-2024-47871 2024-10-18 02:11 2024-10-11 Show GitHub Exploit DB Packet Storm
313705 7.5 HIGH
Network 		gradio_project gradio Gradio is an open-source Python package designed for quick prototyping. This is a **data validation vulnerability** affecting several Gradio components, which allows arbitrary file leaks through the … CWE-22
Path Traversal 		CVE-2024-47868 2024-10-18 02:04 2024-10-11 Show GitHub Exploit DB Packet Storm
313706 4.3 MEDIUM
Network 		gradio_project gradio Gradio is an open-source Python package designed for quick prototyping. This vulnerability involves data exposure due to the enable_monitoring flag not properly disabling monitoring when set to False… CWE-670
 Always-Incorrect Control Flow Implementation 		CVE-2024-47168 2024-10-18 02:00 2024-10-11 Show GitHub Exploit DB Packet Storm
313707 3.7 LOW
Network 		gradio_project gradio Gradio is an open-source Python package designed for quick prototyping. This vulnerability involves a **timing attack** in the way Gradio compares hashes for the `analytics_dashboard` function. Since… CWE-203
 Information Exposure Through Discrepancy 		CVE-2024-47869 2024-10-18 01:59 2024-10-11 Show GitHub Exploit DB Packet Storm
313708 8.1 HIGH
Network 		gradio_project gradio Gradio is an open-source Python package designed for quick prototyping. This vulnerability involves a **race condition** in the `update_root_in_config` function, allowing an attacker to modify the `r… CWE-362
Race Condition 		CVE-2024-47870 2024-10-18 01:57 2024-10-11 Show GitHub Exploit DB Packet Storm
313709 5.4 MEDIUM
Network 		gradio_project gradio Gradio is an open-source Python package designed for quick prototyping. This vulnerability involves **Cross-Site Scripting (XSS)** on any Gradio server that allows file uploads. Authenticated users c… CWE-79
Cross-site Scripting 		CVE-2024-47872 2024-10-18 01:54 2024-10-11 Show GitHub Exploit DB Packet Storm
313710 9.8 CRITICAL
Network 		gradio_project gradio Gradio is an open-source Python package designed for quick prototyping. This vulnerability relates to **Server-Side Request Forgery (SSRF)** in the `/queue/join` endpoint. Gradio’s `async_save_url_to… CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2024-47167 2024-10-18 01:53 2024-10-11 Show GitHub Exploit DB Packet Storm