Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 22, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
226371	2.6	注意	コンクリートファイブ	-	concrete5 におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-5181	2013-02-20 16:01	2012-12-21	Show	GitHub Exploit DB Packet Storm

226372	7.2	危険	マイクロソフト	-	Microsoft Windows のカーネルモードドライバ内の win32k.sys における権限昇格の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-0008	2013-02-20 14:31	2013-01-8	Show	GitHub Exploit DB Packet Storm

226373	7.5	危険	Google	-	Linux 上で稼働する Google Chrome における脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-0838	2013-02-20 13:41	2013-01-10	Show	GitHub Exploit DB Packet Storm

226374	7.5	危険	Google	-	Google Chrome におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2013-0837	2013-02-20 13:40	2013-01-10	Show	GitHub Exploit DB Packet Storm

226375	6.8	警告	Google	-	Google Chrome で使用される Google V8 におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2013-0836	2013-02-20 13:39	2013-01-10	Show	GitHub Exploit DB Packet Storm

226376	5	警告	Google	-	Google Chrome の Geolocation の実装におけるサービス運用妨害 (アプリケーションクラッシュ) の脆弱性	CWE-noinfo 情報不足	CVE-2013-0835	2013-02-20 13:37	2013-01-10	Show	GitHub Exploit DB Packet Storm

226377	5	警告	Google	-	Google Chrome におけるサービス運用妨害 (out-of-bounds read) の脆弱性	CWE-119 バッファエラー	CVE-2013-0834	2013-02-20 13:36	2013-01-10	Show	GitHub Exploit DB Packet Storm

226378	5	警告	Google	-	Google Chrome のサービス運用妨害 (out-of-bounds read) の脆弱性	CWE-119 バッファエラー	CVE-2013-0833	2013-02-20 13:35	2013-01-10	Show	GitHub Exploit DB Packet Storm

226379	7.5	危険	Google	-	Google Chrome におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2013-0832	2013-02-20 13:31	2013-01-10	Show	GitHub Exploit DB Packet Storm

226380	7.5	危険	Google	-	Google Chrome におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2013-0831	2013-02-20 13:30	2013-01-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 22, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
312431	9.8	CRITICAL Network	oceanicsoft	valeapp	Session Fixation vulnerability in Oceanic Software ValeApp allows Brute Force, Session Hijacking.This issue affects ValeApp: before v2.0.0.	CWE-384 Session Fixation	CVE-2024-8643	2024-10-5 02:14	2024-09-27	Show	GitHub Exploit DB Packet Storm

312432	6.1	MEDIUM Network	projectcaruso	flaming_forms	The Flaming Forms WordPress plugin through 1.0.1 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used agains…	CWE-79 Cross-site Scripting	CVE-2024-7692	2024-10-5 02:14	2024-09-2	Show	GitHub Exploit DB Packet Storm

312433	7.5	HIGH Network	oceanicsoft	valeapp	Insertion of Sensitive Information into Log File vulnerability in Oceanic Software ValeApp allows Query System for Information.This issue affects ValeApp: before v2.0.0.	CWE-532 Inclusion of Sensitive Information in Log Files	CVE-2024-8609	2024-10-5 02:12	2024-09-27	Show	GitHub Exploit DB Packet Storm

312434	9.8	CRITICAL Network	oceanicsoft	valeapp	Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Oceanic Software ValeApp allows SQL Injection.This issue affects ValeApp: before v2.0.0.	CWE-89 SQL Injection	CVE-2024-8607	2024-10-5 02:12	2024-09-27	Show	GitHub Exploit DB Packet Storm

312435	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: the warning dereferencing obj for nbio_v7_4 if ras_manager obj null, don't print NBIO err data	CWE-476 NULL Pointer Dereference	CVE-2024-46819	2024-10-5 02:11	2024-09-27	Show	GitHub Exploit DB Packet Storm

312436	5.4	MEDIUM Network	oceanicsoft	valeapp	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Oceanic Software ValeApp allows Stored XSS.This issue affects ValeApp: before v2.0.0.	CWE-79 Cross-site Scripting	CVE-2024-8608	2024-10-5 02:11	2024-09-27	Show	GitHub Exploit DB Packet Storm

312437	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: drm/amd/pm: Fix negative array index read Avoid using the negative values for clk_idex as an index into an array pptable->DpmDesc…	CWE-129 Improper Validation of Array Index	CVE-2024-46821	2024-10-5 02:06	2024-09-27	Show	GitHub Exploit DB Packet Storm

312438	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: usb: gadget: core: Check for unset descriptor Make sure the descriptor has been set before looking at maxpacket. This fixes a nul…	CWE-476 NULL Pointer Dereference	CVE-2024-44960	2024-10-5 01:44	2024-09-5	Show	GitHub Exploit DB Packet Storm

312439	7.8	HIGH Local	randygaul	cute_png	cute_png v1.05 was discovered to contain a heap buffer overflow via the cp_load_png_mem() function at cute_png.h.	CWE-787 Out-of-bounds Write	CVE-2024-46258	2024-10-5 01:41	2024-10-1	Show	GitHub Exploit DB Packet Storm

312440	7.8	HIGH Local	randygaul	cute_png	cute_png v1.05 was discovered to contain a heap buffer overflow via the cp_make32() function at cute_png.h.	CWE-787 Out-of-bounds Write	CVE-2024-46261	2024-10-5 01:40	2024-10-1	Show	GitHub Exploit DB Packet Storm