Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 9, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227721 7.5 危険 phpway - PHPWAY Kostenloses Linkmanagementscript における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-2270 2012-12-20 18:52 2008-05-16 Show GitHub Exploit DB Packet Storm
227722 7.5 危険 slashcode.com - Slash における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2231 2012-12-20 18:52 2008-06-5 Show GitHub Exploit DB Packet Storm
227723 4.6 警告 reportbug-ng - reportbug および reportbug-ng における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2008-2230 2012-12-20 18:52 2008-06-4 Show GitHub Exploit DB Packet Storm
227724 6.8 警告 PHP-Fusion - PHP-Fusion Forum Rank System におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-2227 2012-12-20 18:52 2008-05-14 Show GitHub Exploit DB Packet Storm
227725 6.8 警告 sazcart - SazCart における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-2224 2012-12-20 18:52 2008-05-14 Show GitHub Exploit DB Packet Storm
227726 7.5 危険 scorpnews - Thomas Gossmann ScorpNews の example.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-2193 2012-12-20 18:52 2008-05-14 Show GitHub Exploit DB Packet Storm
227727 6.8 警告 postnuke software foundation - PostNuke 用の pnEncyclopedia モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2191 2012-12-20 18:52 2008-05-14 Show GitHub Exploit DB Packet Storm
227728 6.8 警告 romedchim international srl - Online Rent の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2190 2012-12-20 18:52 2008-05-14 Show GitHub Exploit DB Packet Storm
227729 4.3 警告 Toocharger - SMartBlog の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-2185 2012-12-20 18:52 2008-05-13 Show GitHub Exploit DB Packet Storm
227730 7.5 危険 Toocharger - SMartBlog における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2184 2012-12-20 18:52 2008-05-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
312291 8.5 HIGH
Network 		zoom workplace
workplace_desktop
workplace_virtual_desktop_infrastructure
rooms 		Buffer overflow in some Zoom Workplace Apps and Rooms Clients may allow an authenticated user to conduct an escalation of privilege via network access. CWE-787
 Out-of-bounds Write 		CVE-2024-39825 2024-09-5 06:34 2024-08-15 Show GitHub Exploit DB Packet Storm
312292 4.9 MEDIUM
Network 		zoom rooms_controller
rooms
meeting_software_development_kit
workplace_virtual_desktop_infrastructure
workplace_desktop
workplace 		Sensitive information disclosure in some Zoom Workplace Apps, SDKs, Rooms Clients, and Rooms Controllers may allow a privileged user to conduct an information disclosure via network access. NVD-CWE-noinfo
CVE-2024-39824 2024-09-5 06:32 2024-08-15 Show GitHub Exploit DB Packet Storm
312293 4.9 MEDIUM
Network 		zoom rooms_controller
rooms
meeting_software_development_kit
workplace_virtual_desktop_infrastructure
workplace_desktop
workplace 		Sensitive information disclosure in some Zoom Workplace Apps, SDKs, Rooms Clients, and Rooms Controllers may allow a privileged user to conduct an information disclosure via network access. NVD-CWE-noinfo
CVE-2024-39823 2024-09-5 06:30 2024-08-15 Show GitHub Exploit DB Packet Storm
312294 6.5 MEDIUM
Network 		zoom rooms_controller
rooms
meeting_software_development_kit
workplace
workplace_desktop 		Sensitive information exposure in some Zoom Workplace Apps, SDKs, Rooms Clients, and Rooms Controllers may allow an authenticated user to conduct an information disclosure via network access. NVD-CWE-noinfo
CVE-2024-39822 2024-09-5 06:28 2024-08-15 Show GitHub Exploit DB Packet Storm
312295 7.8 HIGH
Local 		- - Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority as this is a duplicate of CVE-2023-36540. - CVE-2023-34122 2024-09-5 04:15 2023-06-14 Show GitHub Exploit DB Packet Storm
312296 8.8 HIGH
Network 		- - Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority as this is a duplicate of CVE-2023-36541. - CVE-2023-34113 2024-09-5 04:15 2023-06-14 Show GitHub Exploit DB Packet Storm
312297 8.3 HIGH
Network 		zohocorp manageengine_endpoint_central Zohocorp ManageEngine Endpoint Central affected by Incorrect authorization vulnerability while isolating the devices.This issue affects Endpoint Central: before 11.3.2406.08 and before 11.3.2400.15 CWE-863
 Incorrect Authorization 		CVE-2024-38868 2024-09-5 04:13 2024-08-31 Show GitHub Exploit DB Packet Storm
312298 7.5 HIGH
Network 		zzcms zzcms A vulnerability classified as critical was found in ZZCMS 2023. Affected by this vulnerability is an unknown functionality of the file /admin/class.php?dowhat=modifyclass. The manipulation of the arg… CWE-22
Path Traversal 		CVE-2024-7927 2024-09-5 03:44 2024-08-20 Show GitHub Exploit DB Packet Storm
312299 7.5 HIGH
Network 		zzcms zzcms A vulnerability classified as critical has been found in ZZCMS 2023. Affected is an unknown function of the file /admin/about_edit.php?action=modify. The manipulation of the argument skin leads to pa… CWE-22
Path Traversal 		CVE-2024-7926 2024-09-5 03:42 2024-08-20 Show GitHub Exploit DB Packet Storm
312300 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: dmaengine: idxd: Let probe fail when workqueue cannot be enabled The workqueue is enabled when the appropriate driver is loaded a… CWE-476
 NULL Pointer Dereference 		CVE-2022-48868 2024-09-5 03:38 2024-08-21 Show GitHub Exploit DB Packet Storm