Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 23, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228561 10 危険 ourproject.org - White_Dune White_Dune におけるフォーマットストリングの脆弱性 CWE-134
書式文字列の問題 		CVE-2008-7228 2012-12-20 19:10 2009-09-14 Show GitHub Exploit DB Packet Storm
228562 7.5 危険 PHPNUKE - PHP-Nuke 用の Recipes モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-7226 2012-12-20 19:10 2009-09-14 Show GitHub Exploit DB Packet Storm
228563 4.3 警告 runcms - RunCMS の system/admin.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-7222 2012-12-20 19:10 2009-09-14 Show GitHub Exploit DB Packet Storm
228564 6.8 警告 runcms - RunCMS におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2008-7221 2012-12-20 19:10 2009-09-14 Show GitHub Exploit DB Packet Storm
228565 7.5 危険 prototypejs - Prototype JavaScript フレームワークにおける "クロスサイト ajax リクエスト" を実行される脆弱性 CWE-Other
その他 		CVE-2008-7220 2012-12-20 19:10 2009-09-13 Show GitHub Exploit DB Packet Storm
228566 4.3 警告 WordPress.org - WordPress 用の Peter's Math Anti-Spam Spinoff プラグインにおける CAPTCHA 保護を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-7216 2012-12-20 19:10 2009-09-11 Show GitHub Exploit DB Packet Storm
228567 6.9 警告 soundblaster - Ensoniq PCI 1371 サウンドカードで使用されている CreativeLabs es1371mp.sys WDM 音声ドライバにおける SYSTEM 権限を取得される脆弱性 CWE-Other
その他 		CVE-2008-7211 2012-12-20 19:10 2009-09-11 Show GitHub Exploit DB Packet Storm
228568 2.1 注意 RivetCode Software - RivetTracker におけるパスワードを特定される脆弱性 CWE-310
暗号の問題 		CVE-2008-7207 2012-12-20 19:10 2009-09-11 Show GitHub Exploit DB Packet Storm
228569 4.3 警告 stefan ritt - ELOG における脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-7206 2012-12-20 19:10 2009-09-11 Show GitHub Exploit DB Packet Storm
228570 4.3 警告 VirtueMart - VirtueMart の製品ビュー機能における任意のファイルを読み取られる脆弱性 CWE-20
不適切な入力確認 		CVE-2008-7205 2012-12-20 19:10 2009-09-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
311151 8.0 HIGH
Network 		microfocus application_automation_tools Improper Restriction of XML External Entity Reference vulnerability in OpenText Application Automation Tools allows DTD Injection.This issue affects OpenText Application Automation Tools: 24.1.0 and … CWE-611
XXE 		CVE-2024-4690 2024-10-22 00:51 2024-10-17 Show GitHub Exploit DB Packet Storm
311152 8.1 HIGH
Network 		oracle e-business_suite Vulnerability in the Oracle Cost Management product of Oracle E-Business Suite (component: Cost Planning). Supported versions that are affected are 12.2.12-12.2.13. Easily exploitable vulnerability … NVD-CWE-noinfo
CVE-2024-21267 2024-10-22 00:50 2024-10-16 Show GitHub Exploit DB Packet Storm
311153 8.1 HIGH
Network 		oracle e-business_suite Vulnerability in the Oracle Advanced Pricing product of Oracle E-Business Suite (component: Price List). Supported versions that are affected are 12.2.3-12.2.13. Easily exploitable vulnerability all… NVD-CWE-noinfo
CVE-2024-21266 2024-10-22 00:49 2024-10-16 Show GitHub Exploit DB Packet Storm
311154 8.1 HIGH
Network 		oracle e-business_suite Vulnerability in the Oracle Site Hub product of Oracle E-Business Suite (component: Site Hierarchy Flows). Supported versions that are affected are 12.2.3-12.2.13. Easily exploitable vulnerability a… NVD-CWE-noinfo
CVE-2024-21265 2024-10-22 00:49 2024-10-16 Show GitHub Exploit DB Packet Storm
311155 8.0 HIGH
Network 		microfocus application_automation_tools Improper Restriction of XML External Entity Reference vulnerability in OpenText Application Automation Tools allows DTD Injection.This issue affects OpenText Application Automation Tools: 24.1.0 and … CWE-611
XXE 		CVE-2024-4184 2024-10-21 23:09 2024-10-17 Show GitHub Exploit DB Packet Storm
311156 8.0 HIGH
Network 		microfocus application_automation_tools Improper Restriction of XML External Entity Reference vulnerability in OpenText Application Automation Tools allows DTD Injection.This issue affects OpenText Application Automation Tools: 24.1.0 and … CWE-611
XXE 		CVE-2024-4189 2024-10-21 23:08 2024-10-17 Show GitHub Exploit DB Packet Storm
311157 5.5 MEDIUM
Network 		ibm websphere_application_server IBM WebSphere Application Server 8.5 and 9.0 is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A privileged user could exploit this vulnerability to expose sens… CWE-611
XXE 		CVE-2024-45072 2024-10-21 22:41 2024-10-17 Show GitHub Exploit DB Packet Storm
311158 4.8 MEDIUM
Network 		ibm websphere_application_server IBM WebSphere Application Server 8.5 and 9.0 is vulnerable to stored cross-site scripting. This vulnerability allows a privileged user to embed arbitrary JavaScript code in the Web UI thus altering t… CWE-79
Cross-site Scripting 		CVE-2024-45071 2024-10-21 22:41 2024-10-17 Show GitHub Exploit DB Packet Storm
311159 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix state management in error path of log writing function After commit a694291a6211 ("nilfs2: separate wait function fro… NVD-CWE-noinfo
CVE-2024-47669 2024-10-21 22:28 2024-10-10 Show GitHub Exploit DB Packet Storm
311160 7.5 HIGH
Network 		rockwellautomation controllogix_5580_firmware
controllogix_5580_process_firmware
guardlogix_5580_firmware
compactlogix_5380_firmware
compact_guardlogix_5380_sil_2_firmware
compact_guardlogix_5380_sil_3_f… 		CVE 2021-22681 https://www.rockwellautomation.com/en-us/trust-center/security-advisories/advisory.PN1550.html  and send a specially crafted CIP message to the device. If exploited, a threat actor co… NVD-CWE-noinfo
CVE-2024-6207 2024-10-21 22:20 2024-10-15 Show GitHub Exploit DB Packet Storm