Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 13, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228171 4.3 警告 レッドハット - Red Hat Enterprise Linux の IPA サーバにおけるアクセス制限を回避される脆弱性 CWE-16
環境設定 		CVE-2012-4546 2013-04-4 17:25 2013-02-21 Show GitHub Exploit DB Packet Storm
228172 4.3 警告 ジュニパーネットワークス - Juniper Networks Mobility System Software におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1038 2013-04-4 17:24 2012-06-14 Show GitHub Exploit DB Packet Storm
228173 4.3 警告 Terillion - WordPress 用 Terillion Reviews プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-2501 2013-04-4 14:37 2013-03-18 Show GitHub Exploit DB Packet Storm
228174 4.3 警告 レッドハット - Red Hat Subscription Asset Manager の Notification Form におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-1823 2013-04-4 12:22 2012-03-26 Show GitHub Exploit DB Packet Storm
228175 2.1 注意 レッドハット
CandlepinProject.org		 - Red Hat Subscription Asset Manager で使用される Candlepin におけるマニフェストを変更される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-6119 2013-04-4 12:21 2013-03-26 Show GitHub Exploit DB Packet Storm
228176 4.3 警告 GNOME Project
Canonical		 - Gnome Online Accounts における重要な情報を取得される脆弱性 CWE-310
暗号の問題 		CVE-2013-1799 2013-04-3 17:14 2013-03-25 Show GitHub Exploit DB Packet Storm
228177 4.3 警告 GNOME Project
Canonical		 - Gnome Online Accounts における重要な情報を取得される脆弱性 CWE-310
暗号の問題 		CVE-2013-0240 2013-04-3 17:13 2013-03-25 Show GitHub Exploit DB Packet Storm
228178 5 警告 iThemes - WordPress 用 BackupBuddy プラグインにおける設定情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2013-2744 2013-04-3 15:09 2013-04-2 Show GitHub Exploit DB Packet Storm
228179 7.5 危険 iThemes - WordPress 用 BackupBuddy プラグインにおける認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2013-2743 2013-04-3 15:09 2013-04-2 Show GitHub Exploit DB Packet Storm
228180 7.5 危険 iThemes - WordPress 用 BackupBuddy プラグインにおけるアクセス権を取得される脆弱性 CWE-DesignError
CVE-2013-2742 2013-04-3 15:07 2013-04-2 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 14, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
319181 9.8 CRITICAL
Network 		pharmacy_management_system_project pharmacy_management_system A vulnerability has been found in code-projects Pharmacy Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file /index.php?action=editSalesman. The mani… CWE-89
SQL Injection 		CVE-2024-8146 2024-09-25 02:00 2024-08-25 Show GitHub Exploit DB Packet Storm
319182 5.5 MEDIUM
Local 		apple macos This issue was addressed with improved redaction of sensitive information. This issue is fixed in macOS Ventura 13.7, macOS Sonoma 14.7, macOS Sequoia 15. An app may be able to access sensitive data … NVD-CWE-noinfo
CVE-2024-44182 2024-09-25 01:52 2024-09-17 Show GitHub Exploit DB Packet Storm
319183 6.1 MEDIUM
Network 		gitlab gitlab An issue has been discovered in GitLab EE affecting all versions starting from 11.1 before 17.1.7, 17.2 before 17.2.5, and 17.3 before 17.3.2. Under certain conditions an open redirect vulnerability … CWE-601
Open Redirect 		CVE-2024-4283 2024-09-25 01:51 2024-09-17 Show GitHub Exploit DB Packet Storm
319184 7.5 HIGH
Network 		sigstore sigstore-go sigstore-go, a Go library for Sigstore signing and verification, is susceptible to a denial of service attack in versions prior to 0.6.1 when a verifier is provided a maliciously crafted Sigstore Bun… CWE-835
 Loop with Unreachable Exit Condition ('Infinite Loop') 		CVE-2024-45395 2024-09-25 01:50 2024-09-5 Show GitHub Exploit DB Packet Storm
319185 4.3 MEDIUM
Network 		gitlab gitlab An issue was discovered in GitLab CE/EE affecting all versions starting from 16.7 prior to 17.1.7, 17.2 prior to 17.2.5, and 17.3 prior to 17.3.2, where group runners information was disclosed to un… NVD-CWE-noinfo
CVE-2024-6685 2024-09-25 01:48 2024-09-17 Show GitHub Exploit DB Packet Storm
319186 6.1 MEDIUM
Network 		cern indico Indico is an event management system that uses Flask-Multipass, a multi-backend authentication system for Flask. In Indico prior to version 3.3.4, corresponding to Flask-Multipass prior to version 0.… CWE-79
Cross-site Scripting 		CVE-2024-45399 2024-09-25 01:48 2024-09-5 Show GitHub Exploit DB Packet Storm
319187 6.7 MEDIUM
Local 		qnap qvr_smart_client An unquoted search path or element vulnerability has been reported to affect QVR Smart Client. If exploited, the vulnerability could allow local authenticated administrators to execute unauthorized c… CWE-428
 Unquoted Search Path or Element 		CVE-2022-27592 2024-09-25 01:44 2024-09-7 Show GitHub Exploit DB Packet Storm
319188 7.5 HIGH
Network 		draytek vigor3910_firmware Draytek Vigor 3910 v4.3.2.6 was discovered to contain a buffer overflow in the fid parameter at v2x00.cgi. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input. CWE-120
Classic Buffer Overflow 		CVE-2024-46580 2024-09-25 01:42 2024-09-19 Show GitHub Exploit DB Packet Storm
319189 7.5 HIGH
Network 		draytek vigor3910_firmware Draytek Vigor 3910 v4.3.2.6 was discovered to contain a buffer overflow in the sPPPSrvNm parameter at fwuser.cgi. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted … CWE-120
Classic Buffer Overflow 		CVE-2024-46571 2024-09-25 01:42 2024-09-19 Show GitHub Exploit DB Packet Storm
319190 7.5 HIGH
Network 		draytek vigor3910_firmware Draytek Vigor 3910 v4.3.2.6 was discovered to contain a buffer overflow in the sPeerId parameter at vpn.cgi. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input. CWE-120
Classic Buffer Overflow 		CVE-2024-46568 2024-09-25 01:42 2024-09-19 Show GitHub Exploit DB Packet Storm