Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228681 7.5 危険 pragmaticutopia - Joomla! 用の Pragmatic Utopia PU Arcade コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-6663 2012-12-20 18:34 2008-01-4 Show GitHub Exploit DB Packet Storm
228682 7.5 危険 xcms - XCMS の cpie.php における静的コードを直接挿入する攻撃を実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2007-6652 2012-12-20 18:34 2008-01-4 Show GitHub Exploit DB Packet Storm
228683 5 警告 sanybee gallery - SanyBee Gallery の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-6648 2012-12-20 18:34 2008-01-4 Show GitHub Exploit DB Packet Storm
228684 7.5 危険 W-Agora - w-Agora の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-6647 2012-12-20 18:34 2008-01-4 Show GitHub Exploit DB Packet Storm
228685 6.8 警告 xml2owl - xml2owl の showCode.php における任意のコマンドを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2007-6632 2012-12-20 18:34 2008-01-3 Show GitHub Exploit DB Packet Storm
228686 6.8 警告 pnphpbb - PNphpBB2 の printview.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-6624 2012-12-20 18:34 2008-01-3 Show GitHub Exploit DB Packet Storm
228687 5 警告 zeuscms - ZeusCMS における絶対パストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-6623 2012-12-20 18:34 2008-01-3 Show GitHub Exploit DB Packet Storm
228688 7.5 危険 zeuscms - ZeusCMS の security.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-6622 2012-12-20 18:34 2008-01-3 Show GitHub Exploit DB Packet Storm
228689 4.3 警告 simpleforum - SimpleForum の simpleforum.cgi におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-6616 2012-12-20 18:34 2008-01-3 Show GitHub Exploit DB Packet Storm
228690 5.8 警告 skyfex - SkyFex Client の SkyFexClient.ocx におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-6605 2012-12-20 18:34 2007-12-31 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
311901 8.8 HIGH
Network 		mayurik best_house_rental_management_system A vulnerability classified as critical has been found in SourceCodester Best House Rental Management System 1.0. Affected is the function delete_user/save_user of the file /admin_class.php. The manip… CWE-89
SQL Injection 		CVE-2024-8709 2024-09-14 01:27 2024-09-12 Show GitHub Exploit DB Packet Storm
311902 6.1 MEDIUM
Network 		payara payara URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Payara Platform Payara Server (REST Management Interface modules) allows Session Hijacking.This issue affects Payara Server: from … CWE-601
Open Redirect 		CVE-2024-7312 2024-09-14 01:27 2024-09-12 Show GitHub Exploit DB Packet Storm
311903 8.8 HIGH
Network 		code-projects inventory_management A vulnerability classified as critical was found in code-projects Inventory Management 1.0. Affected by this vulnerability is an unknown functionality of the file /model/viewProduct.php of the compon… CWE-89
SQL Injection 		CVE-2024-8710 2024-09-14 01:25 2024-09-12 Show GitHub Exploit DB Packet Storm
311904 7.5 HIGH
Network 		oretnom23 food_ordering_management_system A vulnerability, which was classified as problematic, has been found in SourceCodester Food Ordering Management System 1.0. Affected by this issue is some unknown functionality of the file /includes/… NVD-CWE-Other
CVE-2024-8711 2024-09-14 01:18 2024-09-12 Show GitHub Exploit DB Packet Storm
311905 6.1 MEDIUM
Network 		scriptonite music_request_manager The Music Request Manager WordPress plugin through 1.3 does not have CSRF check in some places, and is missing sanitisation as well as escaping, which could allow attackers to make logged in admin ad… CWE-352
 Origin Validation Error 		CVE-2024-6017 2024-09-14 01:17 2024-09-12 Show GitHub Exploit DB Packet Storm
311906 6.1 MEDIUM
Network 		scriptonite music_request_manager The Music Request Manager WordPress plugin through 1.3 does not escape the $_SERVER['REQUEST_URI'] parameter before outputting it back in an attribute, which could lead to Reflected Cross-Site Script… CWE-79
Cross-site Scripting 		CVE-2024-6018 2024-09-14 01:15 2024-09-12 Show GitHub Exploit DB Packet Storm
311907 6.1 MEDIUM
Network 		scriptonite music_request_manager The Music Request Manager WordPress plugin through 1.3 does not sanitise and escape incoming music requests, which could allow unauthenticated users to perform Cross-Site Scripting attacks against ad… CWE-79
Cross-site Scripting 		CVE-2024-6019 2024-09-14 01:13 2024-09-12 Show GitHub Exploit DB Packet Storm
311908 4.8 MEDIUM
Network 		pega infinity Pega Platform versions 8.1 to Infinity 24.1.2 are affected by an XSS issue with App name. CWE-79
Cross-site Scripting 		CVE-2024-6700 2024-09-14 01:09 2024-09-13 Show GitHub Exploit DB Packet Storm
311909 4.8 MEDIUM
Network 		pega infinity Pega Platform versions 8.1 to Infinity 24.1.2 are affected by an XSS issue with case type. CWE-79
Cross-site Scripting 		CVE-2024-6701 2024-09-14 01:08 2024-09-13 Show GitHub Exploit DB Packet Storm
311910 4.8 MEDIUM
Network 		pega infinity Pega Platform versions 8.1 to Infinity 24.1.2 are affected by an HTML Injection issue with Stage. CWE-79
Cross-site Scripting 		CVE-2024-6702 2024-09-14 01:07 2024-09-13 Show GitHub Exploit DB Packet Storm