Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 9, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228141	6	警告	taskfreak	-	TaskFreak! の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-0270	2012-12-20 18:34	2008-01-15	Show	GitHub Exploit DB Packet Storm

228142	6.8	警告	wavelink media	-	TutorialCMS の activate.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-0254	2012-12-20 18:34	2008-01-15	Show	GitHub Exploit DB Packet Storm

228143	5	警告	php webquest	-	PHP Webquest におけるデータベースの資格情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2008-0249	2012-12-20 18:34	2008-01-11	Show	GitHub Exploit DB Packet Storm

228144	9.3	危険	streamaudio	-	StreamAudio ChainCast ProxyManager の ccpm_0237.dll におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-0248	2012-12-20 18:34	2008-01-11	Show	GitHub Exploit DB Packet Storm

228145	10	危険	uploadscript	-	UploadScript の admin.php における管理者の権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-0246	2012-12-20 18:34	2008-01-11	Show	GitHub Exploit DB Packet Storm

228146	7.5	危険	uploadscript	-	UploadImage の admin.php における管理者の権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-0245	2012-12-20 18:34	2008-01-11	Show	GitHub Exploit DB Packet Storm

228147	10	危険	SAP	-	SAP MaxDB における任意のコマンドを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2008-0244	2012-12-20 18:34	2008-01-11	Show	GitHub Exploit DB Packet Storm

228148	5.8	警告	サン・マイクロシステムズ	-	Sun Java System Identity Manager の /idm/user/login.jsp におけるオープンリダイレクトの脆弱性	CWE-20 不適切な入力確認	CVE-2008-0241	2012-12-20 18:34	2008-01-9	Show	GitHub Exploit DB Packet Storm

228149	4.3	警告	サン・マイクロシステムズ	-	Sun Java System Identity Manager の /idm/help/index.jsp におけるフィッシング攻撃を実行される脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-0240	2012-12-20 18:34	2008-01-9	Show	GitHub Exploit DB Packet Storm

228150	4.3	警告	サン・マイクロシステムズ	-	Sun Java System Identity Manager におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-0239	2012-12-20 18:34	2008-01-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
312091	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: bonding: fix xfrm real_dev null pointer dereference We shouldn't set real_dev to NULL because packets can be in transit and xfrm …	CWE-476 NULL Pointer Dereference	CVE-2024-44989	2024-09-7 01:31	2024-09-5	Show	GitHub Exploit DB Packet Storm

312092	5.9	MEDIUM Network	dlink	dns-320_firmware	A vulnerability, which was classified as problematic, has been found in D-Link DNS-320 2.02b01. Affected by this issue is some unknown functionality of the file /cgi-bin/widget_api.cgi of the compone…	NVD-CWE-noinfo	CVE-2024-8460	2024-09-7 01:30	2024-09-5	Show	GitHub Exploit DB Packet Storm

312093	8.8	HIGH Network	bitapps	bit_form	Unrestricted Upload of File with Dangerous Type vulnerability in Bit Apps Bit Form Pro allows Command Injection.This issue affects Bit Form Pro: from n/a through 2.6.4.	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2024-43249	2024-09-7 01:30	2024-08-20	Show	GitHub Exploit DB Packet Storm

312094	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: smb/client: avoid possible NULL dereference in cifs_free_subrequest() Clang static checker (scan-build) warning: cifsglob.h:line…	CWE-476 NULL Pointer Dereference	CVE-2024-44992	2024-09-7 01:29	2024-09-5	Show	GitHub Exploit DB Packet Storm

312095	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: atm: idt77252: prevent use after free in dequeue_rx() We can't dereference "skb" after calling vcc->push() because the skb is rel…	CWE-416 Use After Free	CVE-2024-44998	2024-09-7 01:28	2024-09-5	Show	GitHub Exploit DB Packet Storm

312096	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: net: ethernet: mtk_wed: fix use-after-free panic in mtk_wed_setup_tc_block_cb() When there are multiple ap interfaces on one band…	CWE-416 Use After Free	CVE-2024-44997	2024-09-7 01:28	2024-09-5	Show	GitHub Exploit DB Packet Storm

312097	7.1	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: drm/v3d: Fix out-of-bounds read in `v3d_csd_job_run()` When enabling UBSAN on Raspberry Pi 5, we get the following warning: [ 3…	CWE-125 Out-of-bounds Read	CVE-2024-44993	2024-09-7 01:28	2024-09-5	Show	GitHub Exploit DB Packet Storm

312098	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: rtla/osnoise: Prevent NULL dereference in error handling If the "tool->data" allocation fails then there is no need to call osnoi…	CWE-476 NULL Pointer Dereference	CVE-2024-45002	2024-09-7 01:27	2024-09-5	Show	GitHub Exploit DB Packet Storm

312099	7.1	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: gtp: pull network headers in gtp_dev_xmit() syzbot/KMSAN reported use of uninit-value in get_dev_xmit() [1] We must make sure th…	CWE-908 Use of Uninitialized Resource	CVE-2024-44999	2024-09-7 01:27	2024-09-5	Show	GitHub Exploit DB Packet Storm

312100	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: fs/netfs/fscache_cookie: add missing "n_accesses" check This fixes a NULL pointer dereference bug due to a data race which looks …	CWE-476 NULL Pointer Dereference	CVE-2024-45000	2024-09-7 01:27	2024-09-5	Show	GitHub Exploit DB Packet Storm