Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 13, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
227301	7.5	危険	vignette	-	Vignette Content Management における管理者権限を取得される脆弱性	CWE-noinfo 情報不足	CVE-2008-6412	2012-12-20 19:10	2009-03-6	Show	GitHub Exploit DB Packet Storm

227302	4.3	警告	refbase	-	refbase におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-6400	2012-12-20 19:10	2009-03-5	Show	GitHub Exploit DB Packet Storm

227303	10	危険	psi-im	-	PSI Jabber クライアントにおける整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2008-6393	2012-12-20 19:10	2009-03-3	Show	GitHub Exploit DB Packet Storm

227304	4.3	警告	w3matter	-	W3matter RevSense の index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-6385	2012-12-20 19:10	2009-03-2	Show	GitHub Exploit DB Packet Storm

227305	7.5	危険	phpbb-seo	-	Multi SEO phpBB の include/global.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2008-6377	2012-12-20 19:10	2009-03-2	Show	GitHub Exploit DB Packet Storm

227306	8.5	危険	socialgroupie	-	Social Groupie の Photos/create_album.php における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2008-6367	2012-12-20 19:10	2009-03-2	Show	GitHub Exploit DB Packet Storm

227307	4.3	警告	phpf1	-	Max's Guestbook の index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-6359	2012-12-20 19:10	2009-03-2	Show	GitHub Exploit DB Packet Storm

227308	7.5	危険	socialgroupie	-	Social Groupie の group_index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6358	2012-12-20 19:10	2009-03-2	Show	GitHub Exploit DB Packet Storm

227309	5	警告	the net guys	-	The Net Guys ASPired2Protect におけるユーザ名などを含むデータベースをダウンロードされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-6355	2012-12-20 19:10	2009-03-2	Show	GitHub Exploit DB Packet Storm

227310	5	警告	the net guys	-	The Net Guys ASPired2poll におけるユーザ名などを含むデータベースをダウンロードされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-6354	2012-12-20 19:10	2009-03-2	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
312111	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: pinctrl: qcom: x1e80100: Fix special pin offsets Remove the erroneus 0x100000 offset to prevent the boards from crashing on pin s…	NVD-CWE-noinfo	CVE-2024-46708	2024-09-19 22:28	2024-09-13	Show	GitHub Exploit DB Packet Storm

312112	5.3	MEDIUM Network	miniorange	web_application_firewall	The Web Application Firewall plugin for WordPress is vulnerable to IP Address Spoofing in versions up to, and including, 2.1.2. This is due to insufficient restrictions on where the IP Address inform…	CWE-345 Insufficient Verification of Data Authenticity	CVE-2022-4539	2024-09-19 22:27	2024-08-31	Show	GitHub Exploit DB Packet Storm

312113	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: drm/vmwgfx: Fix prime with external buffers Make sure that for external buffers mapping goes through the dma_buf interface instea…	NVD-CWE-noinfo	CVE-2024-46709	2024-09-19 22:26	2024-09-13	Show	GitHub Exploit DB Packet Storm

312114	4.7	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: mptcp: pm: fix ID 0 endp usage after multiple re-creations 'local_addr_used' and 'add_addr_accepted' are decremented for addresse…	NVD-CWE-noinfo	CVE-2024-46711	2024-09-19 22:12	2024-09-13	Show	GitHub Exploit DB Packet Storm

312115	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: drm/vmwgfx: Disable coherent dumb buffers without 3d Coherent surfaces make only sense if the host renders to them using accelera…	NVD-CWE-noinfo	CVE-2024-46712	2024-09-19 22:09	2024-09-13	Show	GitHub Exploit DB Packet Storm

312116	9.8	CRITICAL Network	tnbmobil	cockpit	Use of Hard-coded Credentials vulnerability in TNB Mobile Solutions Cockpit Software allows Read Sensitive Strings Within an Executable.This issue affects Cockpit Software: before v2.13.	CWE-798 Use of Hard-coded Credentials	CVE-2024-6656	2024-09-19 22:05	2024-09-13	Show	GitHub Exploit DB Packet Storm

312117	5.3	MEDIUM Network	secreto31126	whatsapp-api-js	whatsapp-api-js is a TypeScript server agnostic Whatsapp's Official API framework. It's possible to check the payload validation using the WhatsAppAPI.verifyRequestSignature and expect false when the…	NVD-CWE-Other	CVE-2024-45607	2024-09-19 11:05	2024-09-13	Show	GitHub Exploit DB Packet Storm

312118	8.8	HIGH Network	rockwellautomation	2800c_optixpanel_compact_firmware 2800s_optixpanel_standard_firmware embedded_edge_compute_module_firmware	A privilege escalation vulnerability exists in the Rockwell Automation affected products. The vulnerability occurs due to improper default file permissions allowing users to exfiltrate credentials an…	CWE-276 Incorrect Default Permissions	CVE-2024-8533	2024-09-19 10:57	2024-09-13	Show	GitHub Exploit DB Packet Storm

312119	9.8	CRITICAL Network	rockwellautomation	pavilion8	A path traversal vulnerability exists in the Rockwell Automation affected product. If exploited, the threat actor could upload arbitrary files to the server that could result in a remote code execut…	CWE-22 Path Traversal	CVE-2024-7961	2024-09-19 10:52	2024-09-13	Show	GitHub Exploit DB Packet Storm

312120	9.1	CRITICAL Network	rockwellautomation	pavilion8	The Rockwell Automation affected product contains a vulnerability that allows a threat actor to view sensitive information and change settings. The vulnerability exists due to having an incorrect pri…	NVD-CWE-noinfo	CVE-2024-7960	2024-09-19 10:52	2024-09-13	Show	GitHub Exploit DB Packet Storm