Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 11, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228301	9.3	危険	phprpg	-	phpRPG の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-6469	2012-12-20 18:34	2007-12-19	Show	GitHub Exploit DB Packet Storm

228302	10	危険	planamesa	-	Planamesa NeoOffice の OpenOffice.org コードにおける脆弱性	CWE-noinfo 情報不足	CVE-2007-6456	2012-12-20 18:34	2007-12-19	Show	GitHub Exploit DB Packet Storm

228303	9.3	危険	SAP	-	Business Objects の RptViewerAX.dll におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2007-6254	2012-12-20 18:34	2008-03-19	Show	GitHub Exploit DB Packet Storm

228304	6.8	警告	viart	-	ViArt CMS などの blocks/block_site_map.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2007-6347	2012-12-20 18:34	2007-12-13	Show	GitHub Exploit DB Packet Storm

228305	7.5	危険	Trivantis Corporation Inc.	-	Trivantis CourseMill Enterprise Learning Management System の userlogin.jsp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-6338	2012-12-20 18:34	2007-12-14	Show	GitHub Exploit DB Packet Storm

228306	5	警告	sergey lyubka	-	Windows 上で稼動する Sergey Lyubka Simple HTTPD におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2007-6326	2012-12-20 18:34	2007-12-13	Show	GitHub Exploit DB Packet Storm

228307	5	警告	xml2owl	-	xml2owl の filedownload.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2007-6322	2012-12-20 18:34	2007-12-13	Show	GitHub Exploit DB Packet Storm

228308	4.3	警告	Roundcube.net	-	RoundCube webmail におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-6321	2012-12-20 18:34	2007-12-11	Show	GitHub Exploit DB Packet Storm

228309	6.8	警告	WordPress.org	-	WordPress の wp-includes/query.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-6318	2012-12-20 18:34	2007-12-11	Show	GitHub Exploit DB Packet Storm

228310	5.5	警告	Real Time Logic	-	BarracudaDrive Web Server におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2007-6317	2012-12-20 18:34	2007-12-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 11, 2026, 4:09 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
311921	4.3	MEDIUM Network	sap	shared_service_framework	SAP shared service framework allows an authenticated non-administrative user to call a remote-enabled function, which will allow them to insert value entries into a non-sensitive table, causing low i…	CWE-862 Missing Authorization	CVE-2024-42377	2024-09-12 22:42	2024-08-13	Show	GitHub Exploit DB Packet Storm

311922	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: mptcp: Correctly set DATA_FIN timeout when number of retransmits is large Syzkaller with UBSAN uncovered a scenario where a large…	NVD-CWE-noinfo	CVE-2022-48906	2024-09-12 22:41	2024-08-22	Show	GitHub Exploit DB Packet Storm

311923	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: net: arcnet: com20020: Fix null-ptr-deref in com20020pci_probe() During driver initialization, the pointer of card info, i.e. the…	CWE-476 NULL Pointer Dereference	CVE-2022-48908	2024-09-12 22:37	2024-08-22	Show	GitHub Exploit DB Packet Storm

311924	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: net/smc: fix connection leak There's a potential leak issue under following execution sequence : smc_release smc_connect_wo…	CWE-401 Missing Release of Memory after Effective Lifetime	CVE-2022-48909	2024-09-12 22:36	2024-08-22	Show	GitHub Exploit DB Packet Storm

311925	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: auxdisplay: lcd2s: Fix memory leak in ->remove() Once allocated the struct lcd2s_data is never freed. Fix the memory leak by swit…	CWE-401 Missing Release of Memory after Effective Lifetime	CVE-2022-48907	2024-09-12 22:33	2024-08-22	Show	GitHub Exploit DB Packet Storm

311926	5.3	MEDIUM Network	sap	document_builder	SAP Document Builder does not perform necessary authorization checks for one of the function modules resulting in escalation of privileges causing low impact on confidentiality of the application.	CWE-862 Missing Authorization	CVE-2024-39591	2024-09-12 22:29	2024-08-13	Show	GitHub Exploit DB Packet Storm

311927	4.3	MEDIUM Network	sap	netweaver_application_server_abap	Due to missing authorization check in SAP NetWeaver Application Server ABAP and ABAP Platform, an authenticated attacker could call an underlying transaction, which leads to disclosure of user relate…	CWE-862 Missing Authorization	CVE-2024-41734	2024-09-12 22:28	2024-08-13	Show	GitHub Exploit DB Packet Storm

311928	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: xen/netfront: destroy queues before real_num_tx_queues is zeroed xennet_destroy_queues() relies on info->netdev->real_num_tx_queu…	CWE-476 NULL Pointer Dereference	CVE-2022-48914	2024-09-12 22:27	2024-08-22	Show	GitHub Exploit DB Packet Storm

311929	5.4	MEDIUM Network	sap	student_life_cycle_management	SAP Student Life Cycle Management (SLcM) fails to conduct proper authorization checks for authenticated users, leading to the potential escalation of privileges. On successful exploitation it could a…	CWE-862 Missing Authorization	CVE-2024-42373	2024-09-12 22:26	2024-08-13	Show	GitHub Exploit DB Packet Storm

311930	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_queue: fix possible use-after-free Eric Dumazet says: The sock_hold() side seems suspect, because there is no gua…	CWE-416 Use After Free	CVE-2022-48911	2024-09-12 22:24	2024-08-22	Show	GitHub Exploit DB Packet Storm