Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 19, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228651	2.1	注意	レッドハット	-	Red Hat OpenStack Essex および Folsom における重要な情報を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-6120	2013-04-12 15:51	2013-04-4	Show	GitHub Exploit DB Packet Storm

228652	4	警告	フェンリル株式会社	-	Sleipnir Mobile for Android において任意のエクステンション API が呼び出される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-2304	2013-04-12 12:01	2013-04-12	Show	GitHub Exploit DB Packet Storm

228653	4.3	警告	Splunk	-	Splunk Web におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-2766	2013-04-12 11:04	2013-03-25	Show	GitHub Exploit DB Packet Storm

228654	5	警告	Puppet	-	Puppet Labs の Puppet Enterprise におけるコンソールアクセスを取得される脆弱性	CWE-310 暗号の問題	CVE-2013-2716	2013-04-12 11:03	2013-03-28	Show	GitHub Exploit DB Packet Storm

228655	7.5	危険	Digineo	-	Ruby 用 Thumbshooter gem の lib/thumbshooter.rb における任意のコマンドを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2013-1898	2013-04-11 19:42	2013-03-25	Show	GitHub Exploit DB Packet Storm

228656	7.5	危険	Dan Kubb	-	Ruby 用 extlib gem におけるオブジェクトインジェクション攻撃を実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-1802	2013-04-11 19:41	2013-01-14	Show	GitHub Exploit DB Packet Storm

228657	7.5	危険	John Nunemaker	-	Ruby 用 httparty gem におけるオブジェクトインジェクション攻撃を実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-1801	2013-04-11 19:41	2013-01-14	Show	GitHub Exploit DB Packet Storm

228658	7.5	危険	John Nunemaker	-	Ruby 用 crack gem におけるオブジェクトインジェクション攻撃を実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-1800	2013-04-11 19:40	2013-01-14	Show	GitHub Exploit DB Packet Storm

228659	7.5	危険	Daniel Harrington	-	Ruby 用 nori gem におけるオブジェクトインジェクション攻撃を実行される脆弱性	CWE-20 不適切な入力確認	CVE-2013-0285	2013-04-11 19:39	2013-01-14	Show	GitHub Exploit DB Packet Storm

228660	5	警告	New Relic	-	Ruby Agent における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2013-0284	2013-04-11 19:38	2013-02-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 19, 2026, 4:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
319901	7.5	HIGH Network	smart-hmi	webiq	The Windows version of WebIQ 2.15.9 is affected by a directory traversal vulnerability that allows remote attackers to read any file on the system.	CWE-22 Path Traversal	CVE-2024-8752	2024-09-21 07:42	2024-09-17	Show	GitHub Exploit DB Packet Storm

319902	9.1	CRITICAL Network	nextcloud	desktop	In Nextcloud Desktop Client 3.13.1 through 3.13.3 on Linux, synchronized files (between the server and client) may become world writable or world readable. This is fixed in 3.13.4.	NVD-CWE-noinfo	CVE-2024-46958	2024-09-21 07:41	2024-09-16	Show	GitHub Exploit DB Packet Storm

319903	9.8	CRITICAL Network	man	d-tale	D-Tale is a visualizer for Pandas data structures. Users hosting D-Tale publicly can be vulnerable to remote code execution allowing attackers to run malicious code on the server. Users should upgrad…	NVD-CWE-noinfo	CVE-2024-45595	2024-09-21 04:59	2024-09-11	Show	GitHub Exploit DB Packet Storm

319904	8.8	HIGH Network	nixos	nix	Nix is a package manager for Linux and other Unix systems. A bug in Nix 2.24 prior to 2.24.6 allows a substituter or malicious user to craft a NAR that, when unpacked by Nix, causes Nix to write to a…	CWE-22 Path Traversal	CVE-2024-45593	2024-09-21 04:57	2024-09-11	Show	GitHub Exploit DB Packet Storm

319905	6.1	MEDIUM Network	damienharper	auditor-bundle	auditor-bundle, formerly known as DoctrineAuditBundle, integrates auditor library into any Symfony 3.4+ application. Prior to version 5.2.6, there is an unescaped entity property enabling Javascript …	CWE-79 Cross-site Scripting	CVE-2024-45592	2024-09-21 04:57	2024-09-11	Show	GitHub Exploit DB Packet Storm

319906	5.3	MEDIUM Network	xwiki	xwiki	XWiki Platform is a generic wiki platform. The REST API exposes the history of any page in XWiki of which the attacker knows the name. The exposed information includes for each modification of the pa…	CWE-862 Missing Authorization	CVE-2024-45591	2024-09-21 04:55	2024-09-11	Show	GitHub Exploit DB Packet Storm

319907	7.3	HIGH Network	fortinet	forticlient_enterprise_management_server	An improper neutralization of special elements used in a command ('Command Injection') vulnerability [CWE-77] in Fortinet FortiClientEMS 7.2.0 through 7.2.4, 7.0.0 through 7.0.12 may allow an unauthe…	CWE-77 Command Injection	CVE-2024-33508	2024-09-21 04:48	2024-09-11	Show	GitHub Exploit DB Packet Storm

319908	6.5	MEDIUM Network	fortinet	fortisandbox	An exposure of sensitive information to an unauthorized actor in Fortinet FortiSandbox version 4.4.0 through 4.4.4 and 4.2.0 through 4.2.6 and 4.0.0 through 4.0.5 and 3.2.2 through 3.2.4 and 3.1.5 al…	NVD-CWE-noinfo	CVE-2024-31490	2024-09-21 04:48	2024-09-11	Show	GitHub Exploit DB Packet Storm

319909	4.6	MEDIUM Physics	fortinet	forticlient	A cleartext storage of sensitive information in memory vulnerability [CWE-316] affecting FortiClient VPN iOS 7.2 all versions, 7.0 all versions, 6.4 all versions, 6.2 all versions, 6.0 all versions m…	CWE-312 Cleartext Storage of Sensitive Information	CVE-2024-35282	2024-09-21 04:44	2024-09-11	Show	GitHub Exploit DB Packet Storm

319910	3.7	LOW Network	fortinet	fortiadc	An improperly implemented security check for standard vulnerability [CWE-358] in FortiADC Web Application Firewall (WAF) 7.4.0 through 7.4.4, 7.2 all versions, 7.1 all versions, 7.0 all versions, 6.2…	NVD-CWE-noinfo	CVE-2024-36511	2024-09-21 04:43	2024-09-11	Show	GitHub Exploit DB Packet Storm