Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 16, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228151 6.5 警告 GroundWork - GroundWork Monitor Enterprise の NeDi コンポーネントにおける任意のコマンドを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2013-3508 2013-05-9 16:26 2013-03-7 Show GitHub Exploit DB Packet Storm
228152 4 警告 GroundWork - GroundWork Monitor Enterprise の NeDi コンポーネントにおける重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2013-3507 2013-05-9 16:24 2013-03-7 Show GitHub Exploit DB Packet Storm
228153 7.5 危険 GroundWork - GroundWork Monitor Enterprise の Performance コンポーネントにおける任意のコマンドを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-3506 2013-05-9 16:23 2013-03-7 Show GitHub Exploit DB Packet Storm
228154 4 警告 GroundWork - GroundWork Monitor Enterprise の Nagios-App コンポーネントにおけるアクセス制限を回避される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2013-3505 2013-05-9 16:22 2013-03-7 Show GitHub Exploit DB Packet Storm
228155 5.5 警告 GroundWork - GroundWork Monitor Enterprise の MONARCH コンポーネントにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2013-3504 2013-05-9 16:21 2013-03-7 Show GitHub Exploit DB Packet Storm
228156 3.5 注意 GroundWork - GroundWork Monitor Enterprise の MONARCH コンポーネントにおける任意のファイルを読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-3503 2013-05-9 16:18 2013-03-7 Show GitHub Exploit DB Packet Storm
228157 6.5 警告 GroundWork - GroundWork Monitor Enterprise における任意のコマンドを実行される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2013-3502 2013-05-9 16:17 2013-03-7 Show GitHub Exploit DB Packet Storm
228158 4.3 警告 GroundWork - GroundWork Monitor Enterprise におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-3501 2013-05-9 16:16 2013-03-7 Show GitHub Exploit DB Packet Storm
228159 7.5 危険 GroundWork - GroundWork Monitor Enterprise におけるファイルシステムの制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-3500 2013-05-9 16:15 2013-03-7 Show GitHub Exploit DB Packet Storm
228160 7.5 危険 GroundWork - GroundWork Monitor Enterprise における管理者権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-3499 2013-05-9 16:07 2013-03-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
319391 6.5 MEDIUM
Network 		backstage backstage Backstage is an open framework for building developer portals. A malicious actor with authenticated access to a Backstage instance with the catalog backend plugin installed is able to interrupt the s… CWE-1321
 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') 		CVE-2024-45815 2024-09-24 03:31 2024-09-18 Show GitHub Exploit DB Packet Storm
319392 5.4 MEDIUM
Network 		backstage backstage Backstage is an open framework for building developer portals. An attacker with control of the contents of the TechDocs storage buckets is able to inject executable scripts in the TechDocs content th… CWE-79
Cross-site Scripting 		CVE-2024-46976 2024-09-24 03:27 2024-09-18 Show GitHub Exploit DB Packet Storm
319393 6.1 MEDIUM
Network 		google chrome Insufficient data validation in Omnibox in Google Chrome on Android prior to 129.0.6668.58 allowed a remote attacker who convinced a user to engage in specific UI gestures to inject arbitrary scripts… CWE-79
Cross-site Scripting 		CVE-2024-8907 2024-09-24 03:23 2024-09-18 Show GitHub Exploit DB Packet Storm
319394 6.1 MEDIUM
Network 		oretnom23 resort_reservation_system A vulnerability classified as problematic was found in SourceCodester Resort Reservation System 1.0. Affected by this vulnerability is an unknown functionality of the file manage_fee.php. The manipul… CWE-79
Cross-site Scripting 		CVE-2024-8951 2024-09-24 03:12 2024-09-18 Show GitHub Exploit DB Packet Storm
319395 7.5 HIGH
Network 		micropython micropython A vulnerability was found in MicroPython 1.23.0. It has been rated as critical. Affected by this issue is the function mpz_as_bytes of the file py/objint.c. The manipulation leads to heap-based buffe… CWE-787
 Out-of-bounds Write 		CVE-2024-8948 2024-09-24 03:10 2024-09-18 Show GitHub Exploit DB Packet Storm
319396 8.8 HIGH
Network 		oretnom23 online_eyewear_shop A vulnerability classified as critical has been found in SourceCodester Online Eyewear Shop 1.0. This affects an unknown part of the file /classes/Master.php of the component Cart Content Handler. Th… CWE-282
 Improper Ownership Management 		CVE-2024-8949 2024-09-24 03:05 2024-09-18 Show GitHub Exploit DB Packet Storm
319397 4.3 MEDIUM
Network 		google chrome Inappropriate implementation in Autofill in Google Chrome prior to 129.0.6668.58 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low) NVD-CWE-noinfo
CVE-2024-8908 2024-09-24 02:59 2024-09-18 Show GitHub Exploit DB Packet Storm
319398 6.1 MEDIUM
Network 		netcat netcat_content_management_system A vulnerability in NetCat CMS allows an attacker to execute JavaScript code in a user's browser when they visit specific paths on the site. This issue affects NetCat CMS v. 6.4.0.24126.2 and possibly… CWE-79
Cross-site Scripting 		CVE-2024-8653 2024-09-24 02:55 2024-09-20 Show GitHub Exploit DB Packet Storm
319399 6.1 MEDIUM
Network 		netcat netcat_content_management_system A vulnerability in NetCat CMS allows an attacker to execute JavaScript code in a user's browser when they visit specific path on the site. This issue affects NetCat CMS v. 6.4.0.24126.2 and possibly … CWE-79
Cross-site Scripting 		CVE-2024-8652 2024-09-24 02:53 2024-09-20 Show GitHub Exploit DB Packet Storm
319400 5.3 MEDIUM
Network 		netcat netcat_content_management_system A vulnerability in NetCat CMS allows an attacker to send a specially crafted http request that can be used to check whether a user exists in the system, which could be a basis for further attacks. Th… CWE-203
 Information Exposure Through Discrepancy 		CVE-2024-8651 2024-09-24 02:51 2024-09-20 Show GitHub Exploit DB Packet Storm