Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 18, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
222731 7.5 危険 SAP - SAP エンタープライズポータルにおける権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-7367 2014-04-15 12:21 2013-02-21 Show GitHub Exploit DB Packet Storm
222732 5 警告 SAP - SAP ソフトウェアデプロイメントマネージャにおけるサービス運用妨害 (DoS) の脆弱性 CWE-287
不適切な認証 		CVE-2013-7366 2014-04-15 12:20 2013-02-21 Show GitHub Exploit DB Packet Storm
222733 4.3 警告 SAP - SAP エンタープライズポータルにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-7365 2014-04-15 12:20 2013-02-21 Show GitHub Exploit DB Packet Storm
222734 7.5 危険 SAP - SAP NetWeaver の J2EE エンジンの不特定の J2EE コアサービスにおける任意のファイルを読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-7364 2014-04-15 12:19 2013-02-21 Show GitHub Exploit DB Packet Storm
222735 7.5 危険 SAP - SAP Solution Manager の Diagnostics エージェントにおける重要な情報を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2013-7363 2014-04-15 12:19 2013-02-21 Show GitHub Exploit DB Packet Storm
222736 7.5 危険 SAP - SAP CCMS エージェントの不特定の RFC 機能における任意のコマンドを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2013-7362 2014-04-15 12:18 2013-02-21 Show GitHub Exploit DB Packet Storm
222737 5 警告 SAP - SAP CMS および CM Services におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2013-7361 2014-04-15 12:18 2013-05-11 Show GitHub Exploit DB Packet Storm
222738 7.5 危険 SAP - SAP adminadapter における任意のファイルを読まれる脆弱性 CWE-noinfo
情報不足 		CVE-2013-7360 2014-04-15 12:17 2013-03-27 Show GitHub Exploit DB Packet Storm
222739 5 警告 SAP - SAP モバイルインフラストラクチャにおける重要なポート情報を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2013-7359 2014-04-15 12:16 2013-06-5 Show GitHub Exploit DB Packet Storm
222740 5 警告 SAP - SAP Guided Procedures Archive Monitor におけるユーザ名などの情報を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2013-7358 2014-04-15 12:16 2013-07-2 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 19, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
314351 - - - Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. - CVE-2023-4348 2024-11-15 21:15 2024-11-15 Show GitHub Exploit DB Packet Storm
314352 9.8 CRITICAL
Network 		- - Certain EOL GeoVision devices have an OS Command Injection vulnerability. Unauthenticated remote attackers can exploit this vulnerability to inject and execute arbitrary system commands on the device… CWE-78
OS Command  		CVE-2024-11120 2024-11-15 11:15 2024-11-15 Show GitHub Exploit DB Packet Storm
314353 9.1 CRITICAL
Network 		paloaltonetworks expedition An SQL injection vulnerability in Palo Alto Networks Expedition allows an unauthenticated attacker to reveal Expedition database contents, such as password hashes, usernames, device configurations, a… CWE-89
SQL Injection 		CVE-2024-9465 2024-11-15 11:00 2024-10-10 Show GitHub Exploit DB Packet Storm
314354 7.5 HIGH
Network 		paloaltonetworks expedition An OS command injection vulnerability in Palo Alto Networks Expedition allows an unauthenticated attacker to run arbitrary OS commands as root in Expedition, resulting in disclosure of usernames, cle… CWE-78
OS Command  		CVE-2024-9463 2024-11-15 11:00 2024-10-10 Show GitHub Exploit DB Packet Storm
314355 5.4 MEDIUM
Network 		ladybirdweb faveo_helpdesk An issue in Ladybird Web Solution Faveo Helpdesk & Servicedesk (On-Premise and Cloud) 9.2.0 allows a remote attacker to execute arbitrary code via the Subject and Identifier fields CWE-79
Cross-site Scripting 		CVE-2024-51377 2024-11-15 08:23 2024-11-2 Show GitHub Exploit DB Packet Storm
314356 9.8 CRITICAL
Network 		olivegroup olivevle An issue in Olive VLE allows an attacker to obtain sensitive information via the reset password function. CWE-640
 Weak Password Recovery Mechanism for Forgotten Password 		CVE-2024-48428 2024-11-15 08:15 2024-10-26 Show GitHub Exploit DB Packet Storm
314357 7.5 HIGH
Network 		plenti plenti Plenti, a static site generator, has an arbitrary file deletion vulnerability in versions prior to 0.7.2. The `/postLocal` endpoint is vulnerable to an arbitrary file write deletion when a plenti use… CWE-22
Path Traversal 		CVE-2024-49381 2024-11-15 08:04 2024-10-25 Show GitHub Exploit DB Packet Storm
314358 8.8 HIGH
Network 		autolabproject autolab Autolab, a course management service that enables auto-graded programming assignments, has misconfigured reset password permissions in version 3.0.0. For email-based accounts, users with insufficient… CWE-863
 Incorrect Authorization 		CVE-2024-49376 2024-11-15 07:49 2024-10-25 Show GitHub Exploit DB Packet Storm
314359 9.8 CRITICAL
Network 		vice webopac Webopac from Grand Vice info has a SQL Injection vulnerability, allowing unauthenticated remote attacks to inject arbitrary SQL commands to read, modify, and delete database contents. CWE-89
SQL Injection 		CVE-2024-11016 2024-11-15 06:53 2024-11-11 Show GitHub Exploit DB Packet Storm
314360 9.8 CRITICAL
Network 		matrixcomsec cosec_vega_faxq_firmware This vulnerability exists in Matrix Door Controller Cosec Vega FAXQ due to improper implementation of session management at the web-based management interface. A remote attacker could exploit this vu… NVD-CWE-Other
CVE-2024-10381 2024-11-15 06:44 2024-10-25 Show GitHub Exploit DB Packet Storm