Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 21, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
223161 10 危険 Mozilla Foundation - 複数の Mozilla 製品の PresShell::DispatchSynthMouseMove 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2013-5613 2014-03-19 11:16 2013-12-10 Show GitHub Exploit DB Packet Storm
223162 4.3 警告 ウォッチガード・テクノロジー - WatchGuard Fireware XTM にクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-0338 2014-03-19 11:10 2014-03-13 Show GitHub Exploit DB Packet Storm
223163 7.5 危険 ヒューレット・パッカード - HP Unified Functional Testing における任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2013-6210 2014-03-18 16:57 2013-10-21 Show GitHub Exploit DB Packet Storm
223164 7.2 危険 ヒューレット・パッカード - Linux 上で稼働する HP Smart Update Manager における権限を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2013-6208 2014-03-18 16:57 2013-03-12 Show GitHub Exploit DB Packet Storm
223165 6.8 警告 Puppet - Puppet Enterprise におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2013-4963 2014-03-18 16:54 2013-08-15 Show GitHub Exploit DB Packet Storm
223166 6.8 警告 Puppet - Puppet Enterprise のコンソールにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2013-1399 2014-03-18 16:54 2013-02-6 Show GitHub Exploit DB Packet Storm
223167 6.5 警告 Puppet - Puppet Enterprise の pe_mcollective モジュールにおける重要な情報を取得される脆弱性 CWE-310
暗号の問題 		CVE-2013-1398 2014-03-18 16:53 2013-02-6 Show GitHub Exploit DB Packet Storm
223168 4 警告 Puppet - Puppet Enterprise におけるアクセスを保持される脆弱性 CWE-287
不適切な認証 		CVE-2012-5158 2014-03-18 16:52 2012-09-25 Show GitHub Exploit DB Packet Storm
223169 4.3 警告 Puppet - Puppet Dashboard および Puppet Enterprise におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-0891 2014-03-18 16:52 2012-01-20 Show GitHub Exploit DB Packet Storm
223170 7.8 危険 シーメンス - Siemens SIMATIC S7-1500 CPU PLC デバイスのファームウェアにおけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2014-2259 2014-03-18 16:50 2014-03-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 21, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
313761 7.8 HIGH
Local 		dell smartfabric_os10 Dell SmartFabric OS10 Software, version(s) 10.5.6.x, 10.5.5.x, 10.5.4.x, 10.5.3.x, contain(s) an Execution with Unnecessary Privileges vulnerability. A low privileged attacker with local access could… NVD-CWE-noinfo
CVE-2024-48837 2024-11-19 04:48 2024-11-12 Show GitHub Exploit DB Packet Storm
313762 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: RDMA/bnxt_re: Add a check for memory allocation __alloc_pbl() can return error when memory allocation fails. Driver is not checki… NVD-CWE-noinfo
CVE-2024-50209 2024-11-19 04:44 2024-11-8 Show GitHub Exploit DB Packet Storm
313763 - - - SOCIFI Socifi Guest wifi as SAAS is affected by Cross Site Request Forgery (CSRF) via the Socifi wifi portal. The application does not contain a CSRF token and request validation. An attacker can Add… - CVE-2021-27701 2024-11-19 04:35 2024-11-13 Show GitHub Exploit DB Packet Storm
313764 - - - SOCIFI Socifi Guest wifi as SAAS wifi portal is affected by Insecure Permissions. Any authorized customer with partner mode can switch to another customer dashboard and perform actions like modify us… - CVE-2021-27700 2024-11-19 04:35 2024-11-13 Show GitHub Exploit DB Packet Storm
313765 8.8 HIGH
Network 		microsoft sql_server_2016
sql_server_2017
sql_server_2019 		SQL Server Native Client Remote Code Execution Vulnerability NVD-CWE-noinfo
CVE-2024-38255 2024-11-19 04:35 2024-11-13 Show GitHub Exploit DB Packet Storm
313766 - - - In Advanced Custom Fields (ACF) before 6.3.9 and Secure Custom Fields before 6.3.6.3 (plugins for WordPress), using the Field Group editor to edit one of the plugin's fields can result in execution o… - CVE-2024-49593 2024-11-19 04:35 2024-10-17 Show GitHub Exploit DB Packet Storm
313767 8.8 HIGH
Network 		isellerpal enterprise_resource_management_system File Upload vulnerability in Huizhi enterprise resource management system v.1.0 and before allows a remote attacker to execute arbitrary code via the /nssys/common/Upload. Aspx? Action=DNPageAjaxPost… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2024-42676 2024-11-19 04:15 2024-08-15 Show GitHub Exploit DB Packet Storm
313768 3.3 LOW
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: udf: refactor inode_bmap() to handle error Refactor inode_bmap() to handle error since udf_next_aext() can return error now. On s… NVD-CWE-noinfo
CVE-2024-50211 2024-11-19 04:04 2024-11-8 Show GitHub Exploit DB Packet Storm
313769 5.4 MEDIUM
Network 		vice webopac Webopac from Grand Vice info has Stored Cross-site Scripting vulnerability. Remote attackers with regular privileges can inject arbitrary JavaScript code into the server. When users visit the comprom… CWE-79
Cross-site Scripting 		CVE-2024-11021 2024-11-19 04:00 2024-11-11 Show GitHub Exploit DB Packet Storm
313770 9.8 CRITICAL
Network 		vice webopac Webopac from Grand Vice info has a SQL Injection vulnerability, allowing unauthenticated remote attacks to inject arbitrary SQL commands to read, modify, and delete database contents. CWE-89
SQL Injection 		CVE-2024-11020 2024-11-19 03:59 2024-11-11 Show GitHub Exploit DB Packet Storm