Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 14, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228071 9.3 危険 IBM - IBM Cognos Disclosure Management およびその他の製品における任意のファイルを読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-0501 2013-04-16 16:15 2013-04-5 Show GitHub Exploit DB Packet Storm
228072 9.3 危険 IBM - 複数の IBM 製品における任意のコマンドを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2012-5937 2013-04-16 15:56 2013-04-10 Show GitHub Exploit DB Packet Storm
228073 5 警告 OpenStack - 複数の OpenStack コンポーネントにおけるアクセスの制限を回避される脆弱性 CWE-287
不適切な認証 		CVE-2013-0282 2013-04-16 15:52 2013-02-20 Show GitHub Exploit DB Packet Storm
228074 5 警告 OpenStack - OpenStack Keystone の Grizzly および Folsom におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2013-0270 2013-04-16 15:47 2013-04-4 Show GitHub Exploit DB Packet Storm
228075 7.5 危険 ZAPms - ZAPms における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-3050 2013-04-16 15:40 2013-04-10 Show GitHub Exploit DB Packet Storm
228076 7.1 危険 シスコシステムズ - Cisco Adaptive Security Appliances におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2013-1151 2013-04-15 11:42 2013-04-10 Show GitHub Exploit DB Packet Storm
228077 5.7 警告 シスコシステムズ - Cisco ユニバーサルブロードバンド 10000 シリーズルータにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2013-1189 2013-04-15 11:39 2013-04-10 Show GitHub Exploit DB Packet Storm
228078 6.6 警告 シスコシステムズ - Cisco AnyConnect Secure Mobility Client におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-1173 2013-04-15 11:38 2013-04-10 Show GitHub Exploit DB Packet Storm
228079 6.6 警告 シスコシステムズ - Cisco AnyConnect Secure Mobility Client における権限を取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2013-1172 2013-04-15 11:38 2013-04-10 Show GitHub Exploit DB Packet Storm
228080 7.5 危険 シスコシステムズ - Cisco Prime Network Control System アプライアンスにおけるデータベースの設定を変更される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2013-1170 2013-04-15 11:34 2013-04-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 14, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
319091 6.1 MEDIUM
Network 		elizsoftware panel Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Eliz Software Panel allows Reflected XSS.This issue affects Panel: before v2.3.24. CWE-79
Cross-site Scripting 		CVE-2024-6877 2024-09-26 03:57 2024-09-19 Show GitHub Exploit DB Packet Storm
319092 9.8 CRITICAL
Network 		elizsoftware panel Plaintext Storage of a Password vulnerability in Eliz Software Panel allows : Use of Known Domain Credentials.This issue affects Panel: before v2.3.24. CWE-256
Plaintext Storage of a Password  		CVE-2024-5960 2024-09-26 03:55 2024-09-19 Show GitHub Exploit DB Packet Storm
319093 5.3 MEDIUM
Network 		felixmoira limit_login_attempts_plus The Limit Login Attempts Plus plugin for WordPress is vulnerable to IP Address Spoofing in versions up to, and including, 1.1.0. This is due to insufficient restrictions on where the IP Address infor… CWE-345
 Insufficient Verification of Data Authenticity 		CVE-2022-4533 2024-09-26 03:53 2024-09-19 Show GitHub Exploit DB Packet Storm
319094 6.1 MEDIUM
Network 		ibericode mailchimp The MC4WP: Mailchimp for WordPress plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'email' parameter when a placeholder such as {email} is used for the field in versions … CWE-79
Cross-site Scripting 		CVE-2024-8850 2024-09-26 03:49 2024-09-19 Show GitHub Exploit DB Packet Storm
319095 8.8 HIGH
Network 		jeanmarc77 123solar A vulnerability was found in jeanmarc77 123solar 1.8.4.5. It has been rated as critical. Affected by this issue is some unknown functionality of the file config/config_invt1.php. The manipulation of … CWE-94
Code Injection 		CVE-2024-9006 2024-09-26 03:44 2024-09-20 Show GitHub Exploit DB Packet Storm
319096 5.4 MEDIUM
Network 		jeanmarc77 123solar A vulnerability classified as problematic has been found in jeanmarc77 123solar 1.8.4.5. This affects an unknown part of the file /detailed.php. The manipulation of the argument date1 leads to cross … CWE-79
Cross-site Scripting 		CVE-2024-9007 2024-09-26 03:40 2024-09-20 Show GitHub Exploit DB Packet Storm
319097 5.3 MEDIUM
Network 		overleaf overleaf Overleaf is a web-based collaborative LaTeX editor. Overleaf Community Edition and Server Pro prior to version 5.0.7 (or 4.2.7 for the 4.x series) contain a vulnerability that allows an arbitrary lan… CWE-74
Injection 		CVE-2024-45312 2024-09-26 03:37 2024-09-3 Show GitHub Exploit DB Packet Storm
319098 6.0 MEDIUM
Network 		fortinet forticlient_endpoint_management_server A improper limitation of a pathname to a restricted directory ('path traversal') in Fortinet FortiClientEMS versions 7.2.0 through 7.2.4, 7.0.0 through 7.0.13, 6.4.0 through 6.4.9, 6.2.0 through 6.2.… CWE-22
Path Traversal 		CVE-2024-21753 2024-09-26 03:36 2024-09-11 Show GitHub Exploit DB Packet Storm
319099 5.4 MEDIUM
Network 		overleaf overleaf Overleaf is a web-based collaborative LaTeX editor. When installing Server Pro using the Overleaf Toolkit from before 2024-07-17 or legacy docker-compose.yml from before 2024-08-28, the configuration… CWE-1188
 Insecure Default Initialization of Resource 		CVE-2024-45313 2024-09-26 03:12 2024-09-3 Show GitHub Exploit DB Packet Storm
319100 6.5 MEDIUM
Network 		opendaylight model-driven_service_abstraction_layer In OpenDaylight Model-Driven Service Abstraction Layer (MD-SAL) through 13.0.1, a controller with a follower role can configure flow entries in an OpenDaylight clustering deployment. NVD-CWE-noinfo
CVE-2024-46942 2024-09-26 03:08 2024-09-16 Show GitHub Exploit DB Packet Storm