Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 17, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
225011 5.1 警告 David King - Vino における UPnP ルータのポートがオープンになる問題 CWE-Other
その他 		CVE-2011-1165 2013-03-22 14:43 2013-03-12 Show GitHub Exploit DB Packet Storm
225012 4.6 警告 David King - Vino における外部ネットワークに接続される脆弱性 CWE-16
環境設定 		CVE-2011-1164 2013-03-22 14:24 2013-03-12 Show GitHub Exploit DB Packet Storm
225013 6 警告 Samba Project - Samba における任意のファイルを読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-1863 2013-03-22 13:50 2013-03-19 Show GitHub Exploit DB Packet Storm
225014 5 警告 シトリックス・システムズ - Citrix Access Gateway Standard Edition における脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-2263 2013-03-22 13:46 2013-03-5 Show GitHub Exploit DB Packet Storm
225015 7.2 危険 アップル - Apple iOS および Apple TV のカーネルにおける権限を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2013-0981 2013-03-22 12:30 2013-03-19 Show GitHub Exploit DB Packet Storm
225016 2.1 注意 アップル - Apple iOS のパスコードロックの実装におけるパスコード要求を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-0980 2013-03-22 12:29 2013-03-19 Show GitHub Exploit DB Packet Storm
225017 1.9 注意 アップル - Apple iOS の Lockdown における任意のファイルのパーミッションを変更される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-0979 2013-03-22 12:29 2013-03-19 Show GitHub Exploit DB Packet Storm
225018 2.1 注意 アップル - Apple iOS および Apple TV のカーネルにおける ASLR 保護メカニズムを回避される脆弱性 CWE-200
情報漏えい 		CVE-2013-0978 2013-03-22 12:28 2013-03-19 Show GitHub Exploit DB Packet Storm
225019 4.6 警告 アップル - Apple iOS および Apple TV の dyld におけるコード署名の要求を回避される脆弱性 CWE-noinfo
情報不足 		CVE-2013-0977 2013-03-22 12:27 2013-03-19 Show GitHub Exploit DB Packet Storm
225020 7.2 危険 IBM - UNIX および Linux 上で稼働する IBM InfoSphere Information Server におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-5938 2013-03-22 11:19 2013-03-20 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 17, 2026, 4:15 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
315031 9.8 CRITICAL
Network 		cisco spa_301_firmware
spa_303_firmware
spa_501g_firmware
spa_502g_firmware
spa_504g_firmware
spa_508g_firmware
spa_509g_firmware
spa_512g_firmware
spa_514g_firmware
spa_525g_fir… 		Multiple vulnerabilities in the web-based management interface of Cisco Small Business SPA300 Series IP Phones and Cisco Small Business SPA500 Series IP Phones could allow an unauthenticated, remote … CWE-120
Classic Buffer Overflow 		CVE-2024-20454 2024-08-24 03:13 2024-08-8 Show GitHub Exploit DB Packet Storm
315032 6.5 MEDIUM
Network 		enphase iq_gateway_firmware Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability through a url parameter in Enphase IQ Gateway (formerly known as Envoy) allows File Manipulation. The endp… CWE-22
Path Traversal 		CVE-2024-21877 2024-08-24 03:06 2024-08-12 Show GitHub Exploit DB Packet Storm
315033 9.1 CRITICAL
Network 		enphase iq_gateway_firmware Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability via a URL parameter in Enphase IQ Gateway (formerly known as Envoy) allows an unautheticated attacker to a… CWE-22
Path Traversal 		CVE-2024-21876 2024-08-24 03:05 2024-08-12 Show GitHub Exploit DB Packet Storm
315034 9.8 CRITICAL
Network 		enphase iq_gateway_firmware Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability in Enphase IQ Gateway (formerly known as Envoy) allows OS Command Injection. This vulnerability is pr… CWE-78
OS Command  		CVE-2024-21878 2024-08-24 02:52 2024-08-12 Show GitHub Exploit DB Packet Storm
315035 8.8 HIGH
Network 		enphase iq_gateway_firmware Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability through an url parameter of an authenticated enpoint in Enphase IQ Gateway (formerly known as Envoy) … CWE-78
OS Command  		CVE-2024-21879 2024-08-24 02:49 2024-08-12 Show GitHub Exploit DB Packet Storm
315036 7.2 HIGH
Network 		enphase iq_gateway_firmware Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability via the url parameter of an authenticated enpoint in Enphase IQ Gateway (formerly known as Enphase) a… CWE-78
OS Command  		CVE-2024-21880 2024-08-24 02:38 2024-08-12 Show GitHub Exploit DB Packet Storm
315037 - - - A Reflected Cross Site Scripting (XSS) vulnerability was found in the "/schedule.php" page of the Kashipara Bus Ticket Reservation System v1.0, which allows remote attackers to execute arbitrary code… - CVE-2024-42763 2024-08-24 02:35 2024-08-23 Show GitHub Exploit DB Packet Storm
315038 9.8 CRITICAL
Network 		squirrelly squirrelly squirrellyjs squirrelly v9.0.0 and fixed in v.9.0.1 was discovered to contain a code injection vulnerability via the component options.varName. CWE-94
Code Injection 		CVE-2024-40453 2024-08-24 02:35 2024-08-22 Show GitHub Exploit DB Packet Storm
315039 6.1 MEDIUM
Network 		okfn ckan CKAN is an open-source data management system for powering data hubs and data portals. The Datatables view plugin did not properly escape record data coming from the DataStore, leading to a potential… CWE-79
Cross-site Scripting 		CVE-2024-41675 2024-08-24 02:07 2024-08-22 Show GitHub Exploit DB Packet Storm
315040 5.3 MEDIUM
Network 		okfn ckan CKAN is an open-source data management system for powering data hubs and data portals. If there were connection issues with the Solr server, the internal Solr URL (potentially including credentials) … CWE-209
Information Exposure Through an Error Message 		CVE-2024-41674 2024-08-24 02:06 2024-08-22 Show GitHub Exploit DB Packet Storm