Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 6, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
226461	7.5	危険	phpautos	-	PHP Autos の searchresults.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4498	2012-12-20 18:52	2008-10-8	Show	GitHub Exploit DB Packet Storm

226462	7.5	危険	select development solutions	-	PHP Realtor の view_cat.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4496	2012-12-20 18:52	2008-10-8	Show	GitHub Exploit DB Packet Storm

226463	7.5	危険	select development solutions	-	PHP Auto Dealer の view_cat.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4495	2012-12-20 18:52	2008-10-8	Show	GitHub Exploit DB Packet Storm

226464	7.5	危険	torrenttrader	-	TorrentTrader Classic の completed-advance.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4494	2012-12-20 18:52	2008-10-8	Show	GitHub Exploit DB Packet Storm

226465	7.5	危険	yourownbux	-	YourOwnBux の referrals.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4492	2012-12-20 18:52	2008-10-8	Show	GitHub Exploit DB Packet Storm

226466	10	危険	yerba	-	Yerba で使用される SACphp の index.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-4486	2012-12-20 18:52	2008-10-7	Show	GitHub Exploit DB Packet Storm

226467	6.9	警告	Sympa	-	sympa の sympa.pl における任意のファイルを上書きされる脆弱性	CWE-59 リンク解釈の問題	CVE-2008-4476	2012-12-20 18:52	2008-10-7	Show	GitHub Exploit DB Packet Storm

226468	7.5	危険	Vastal I-Tech & Co.	-	Vastal I-Tech Freelance Zone の view_cresume.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4469	2012-12-20 18:52	2008-10-6	Show	GitHub Exploit DB Packet Storm

226469	7.5	危険	Vastal I-Tech & Co.	-	Vastal I-Tech Share Zone の view_news.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4468	2012-12-20 18:52	2008-10-6	Show	GitHub Exploit DB Packet Storm

226470	7.5	危険	Vastal I-Tech & Co.	-	Vastal I-Tech Toner Cart の show_series_ink.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4467	2012-12-20 18:52	2008-10-6	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
313421	7.8	HIGH Local	-	-	A vulnerability was reported in Lenovo PC Manager prior to version 2.8.90.11211 that could allow a local attacker to escalate privileges.	-	CVE-2019-6197	2024-08-1 21:42	2024-08-1	Show	GitHub Exploit DB Packet Storm

313422	5.5	MEDIUM Local	-	-	A vulnerability was reported in Lenovo PC Manager versions prior to 2.6.40.3154 that could allow an attacker to cause a system reboot.	-	CVE-2017-3772	2024-08-1 21:42	2024-08-1	Show	GitHub Exploit DB Packet Storm

313423	-		-	-	Mobile Security Framework (MobSF) is a security research platform for mobile applications in Android, iOS and Windows Mobile. An open redirect vulnerability exist in MobSF authentication view. Update…	-	CVE-2024-41955	2024-08-1 21:42	2024-08-1	Show	GitHub Exploit DB Packet Storm

313424	-		-	-	Pheonix App is a Python application designed to streamline various tasks, from managing files to playing mini-games. The issue is that the map of encoding/decoding languages are visible in code. The …	-	CVE-2024-41951	2024-08-1 21:42	2024-08-1	Show	GitHub Exploit DB Packet Storm

313425	-		-	-	slpd-lite is a unicast SLP UDP server. Any OpenBMC system that includes the slpd-lite package is impacted. Installing this package is the default when building OpenBMC. Nefarious users can send slp p…	-	CVE-2024-41660	2024-08-1 21:42	2024-08-1	Show	GitHub Exploit DB Packet Storm

313426	-		-	-	A vulnerability was found in IObit iTop Data Recovery Pro 4.4.0.687. It has been declared as critical. Affected by this vulnerability is an unknown functionality in the library madbasic_.bpl of the c…	CWE-427 Uncontrolled Search Path Element	CVE-2024-7324	2024-08-1 21:42	2024-08-1	Show	GitHub Exploit DB Packet Storm

313427	-		-	-	It was discovered by Elastic engineering that when elasticsearch-certutil CLI tool is used with the csr option in order to create a new Certificate Signing Requests, the associated private key that i…	-	CVE-2024-23444	2024-08-1 21:42	2024-08-1	Show	GitHub Exploit DB Packet Storm

313428	-		-	-	Zitadel is an open source identity management system. ZITADEL administrators can enable a setting called "Ignoring unknown usernames" which helps mitigate attacks that try to guess/enumerate username…	-	CVE-2024-41952	2024-08-1 21:42	2024-08-1	Show	GitHub Exploit DB Packet Storm

313429	-		-	-	Zitadel is an open source identity management system. ZITADEL uses HTML for emails and renders certain information such as usernames dynamically. That information can be entered by users or administr…	-	CVE-2024-41953	2024-08-1 21:42	2024-08-1	Show	GitHub Exploit DB Packet Storm

313430	-		-	-	Haystack is an end-to-end LLM framework that allows you to build applications powered by LLMs, Transformer models, vector search and more. Haystack clients that let their users create and run Pipelin…	-	CVE-2024-41950	2024-08-1 21:42	2024-08-1	Show	GitHub Exploit DB Packet Storm