Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 16, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
224851	4.3	警告	Mads Peter Henderson	-	Drupal 用 Ubercart Views モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-0321	2013-04-1 14:37	2013-02-20	Show	GitHub Exploit DB Packet Storm

224852	5.1	警告	mattias hutterer	-	Drupal 用 Taxonomy Manager モジュールにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2013-0320	2013-04-1 14:37	2013-02-20	Show	GitHub Exploit DB Packet Storm

224853	4.3	警告	Yandex.Metrics Pproject	-	Drupal 用 Yandex.Metrics モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-0319	2013-04-1 14:36	2013-02-19	Show	GitHub Exploit DB Packet Storm

224854	10	危険	Banckle Chat Project	-	Drupal 用 Banckle Chat モジュールにおける制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-0318	2013-04-1 14:17	2013-02-13	Show	GitHub Exploit DB Packet Storm

224855	4.3	警告	Joe Haskins	-	Drupal 用 Manager Change for Organic Groups モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-0317	2013-04-1 14:16	2013-02-12	Show	GitHub Exploit DB Packet Storm

224856	5	警告	Drupal	-	Drupal の Image モジュールにおけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2013-0316	2013-04-1 14:15	2013-02-20	Show	GitHub Exploit DB Packet Storm

224857	2.1	注意	Elliot Pahl	-	Drupal 用 Drush Debian Packaging モジュールにおけるデータベースの認証情報を取得される脆弱性	CWE-noinfo 情報不足	CVE-2013-0260	2013-04-1 14:13	2013-01-30	Show	GitHub Exploit DB Packet Storm

224858	2.1	注意	Boxes project	-	Drupal 用 Boxes モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-0259	2013-04-1 14:11	2013-01-23	Show	GitHub Exploit DB Packet Storm

224859	6.8	警告	Attiks	-	Drupal 用 Google Authenticator login モジュールにおける認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2013-0258	2013-04-1 14:08	2013-01-29	Show	GitHub Exploit DB Packet Storm

224860	5	警告	David Alkire	-	Drupal 用 email2image モジュールにおけるユーザの電子メール情報のイメージ画像を読まれる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-0257	2013-04-1 14:06	2013-01-30	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 17, 2026, 4:15 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
314501	5.4	MEDIUM Network	khoj	khoj	Khoj is an application that creates personal AI agents. The Automation feature allows a user to insert arbitrary HTML inside the task instructions, resulting in a Stored XSS. The q parameter for the …	CWE-79 Cross-site Scripting	CVE-2024-43396	2024-09-4 03:19	2024-08-21	Show	GitHub Exploit DB Packet Storm

314502	-		-	-	Rejected reason: Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that there was not reasonable evide…	-	CVE-2024-7619	2024-09-4 03:15	2024-09-4	Show	GitHub Exploit DB Packet Storm

314503	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: PCI: keystone: Fix NULL pointer dereference in case of DT error in ks_pcie_setup_rc_app_regs() If IORESOURCE_MEM is not provided …	CWE-476 NULL Pointer Dereference	CVE-2024-43823	2024-09-4 02:49	2024-08-17	Show	GitHub Exploit DB Packet Storm

314504	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: ASoc: PCM6240: Return directly after a failed devm_kzalloc() in pcmdevice_i2c_probe() The value “-ENOMEM” was assigned to the loc…	CWE-476 NULL Pointer Dereference	CVE-2024-43822	2024-09-4 02:49	2024-08-17	Show	GitHub Exploit DB Packet Storm

314505	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Fix a possible null pointer dereference In function lpfc_xcvr_data_show, the memory allocation with kmalloc might fai…	CWE-476 NULL Pointer Dereference	CVE-2024-43821	2024-09-4 02:49	2024-08-17	Show	GitHub Exploit DB Packet Storm

314506	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: PCI: endpoint: pci-epf-test: Make use of cached 'epc_features' in pci_epf_test_core_init() Instead of getting the epc_features fr…	CWE-476 NULL Pointer Dereference	CVE-2024-43824	2024-09-4 02:48	2024-08-17	Show	GitHub Exploit DB Packet Storm

314507	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: kvm: s390: Reject memory region operations for ucontrol VMs This change rejects the KVM_SET_USER_MEMORY_REGION and KVM_SET_USER_M…	CWE-476 NULL Pointer Dereference	CVE-2024-43819	2024-09-4 02:47	2024-08-17	Show	GitHub Exploit DB Packet Storm

314508	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: ASoC: amd: Adjust error handling in case of absent codec device acpi_get_first_physical_node() can return NULL in several cases (…	CWE-476 NULL Pointer Dereference	CVE-2024-43818	2024-09-4 02:45	2024-08-17	Show	GitHub Exploit DB Packet Storm

314509	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: net: missing check virtio Two missing check in virtio_net_hdr_to_skb() allowed syzbot to crash kernels again 1. After the skb_se…	NVD-CWE-noinfo	CVE-2024-43817	2024-09-4 02:41	2024-08-17	Show	GitHub Exploit DB Packet Storm

314510	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: hfs: fix to initialize fields of hfs_inode_info after hfs_alloc_inode() Syzbot reports uninitialized value access issue as below:…	CWE-908 Use of Uninitialized Resource	CVE-2024-42311	2024-09-4 02:38	2024-08-17	Show	GitHub Exploit DB Packet Storm