Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 18, 2026, 12:09 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228701	4.3	警告	snarky	-	Snark VisualPic におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-3379	2012-12-20 18:52	2008-07-30	Show	GitHub Exploit DB Packet Storm

228702	7.5	危険	talkback	-	TalkBack の install/help.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-3371	2012-12-20 18:52	2008-07-30	Show	GitHub Exploit DB Packet Storm

228703	7.5	危険	viart	-	ViArt Shop の products_rss.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3369	2012-12-20 18:52	2008-07-30	Show	GitHub Exploit DB Packet Storm

228704	4.3	警告	webwizguide	-	Web Wiz RTE の RTE_popup_link.asp におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-3367	2012-12-20 18:52	2008-07-30	Show	GitHub Exploit DB Packet Storm

228705	7.5	危険	Pligg	-	Pligg CMS の story.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3366	2012-12-20 18:52	2008-07-30	Show	GitHub Exploit DB Packet Storm

228706	6.8	警告	Pixelpost.org	-	Windows 上で稼動する Pixelpost の index.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-3365	2012-12-20 18:52	2008-07-27	Show	GitHub Exploit DB Packet Storm

228707	9.3	危険	トレンドマイクロ	-	Trend Micro OSCE Web-Deployment などの ObjRemoveCtrl Class ActiveX コントロールにおけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-3364	2012-12-20 18:52	2008-07-30	Show	GitHub Exploit DB Packet Storm

228708	7.5	危険	runcms	-	RunCMS の Newbb Plus モジュールにおける PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2008-3354	2012-12-20 18:52	2008-07-28	Show	GitHub Exploit DB Packet Storm

228709	4.3	警告	puresw	-	Pure Software Lore におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-3353	2012-12-20 18:52	2008-07-28	Show	GitHub Exploit DB Packet Storm

228710	5	警告	thekelleys	-	dnsmasq におけるサービス運用妨害 (DoS) の脆弱性	CWE-DesignError	CVE-2008-3350	2012-12-20 18:52	2008-07-28	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
311481	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: ethtool: fail closed if we can't get max channel used in indirection tables Commit 0d1b7d6c9274 ("bnxt: fix crashes when reducing…	NVD-CWE-noinfo	CVE-2024-46834	2024-10-10 00:57	2024-09-27	Show	GitHub Exploit DB Packet Storm

311482	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: net: hns3: void array out of bound when loop tnl_num When query reg inf of SSU, it loops tnl_num times. However, tnl_num comes fr…	CWE-129 Improper Validation of Array Index	CVE-2024-46833	2024-10-10 00:54	2024-09-27	Show	GitHub Exploit DB Packet Storm

311483	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: MIPS: cevt-r4k: Don't call get_c0_compare_int if timer irq is installed This avoids warning: [ 0.118053] BUG: sleeping functi…	NVD-CWE-noinfo	CVE-2024-46832	2024-10-10 00:51	2024-09-27	Show	GitHub Exploit DB Packet Storm

311484	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: usb: gadget: aspeed_udc: validate endpoint index for ast udc We should verify the bound of the array to assure that host may not …	CWE-129 Improper Validation of Array Index	CVE-2024-46836	2024-10-10 00:47	2024-09-27	Show	GitHub Exploit DB Packet Storm

311485	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: drm/panthor: Restrict high priorities on group_create We were allowing any users to create a high priority group without any perm…	NVD-CWE-noinfo	CVE-2024-46837	2024-10-10 00:37	2024-09-27	Show	GitHub Exploit DB Packet Storm

311486	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: userfaultfd: don't BUG_ON() if khugepaged yanks our page table Since khugepaged was changed to allow retracting page tables in fi…	NVD-CWE-noinfo	CVE-2024-46838	2024-10-10 00:35	2024-09-27	Show	GitHub Exploit DB Packet Storm

311487	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: KVM: s390: fix validity interception issue when gisa is switched off We might run into a SIE validity if gisa has been disabled e…	CWE-908 Use of Uninitialized Resource	CVE-2024-45005	2024-10-10 00:30	2024-09-5	Show	GitHub Exploit DB Packet Storm

311488	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: KEYS: trusted: dcp: fix leak of blob encryption key Trusted keys unseal the key blob on load, but keep the sealed payload in the …	CWE-312 Cleartext Storage of Sensitive Information	CVE-2024-45004	2024-10-10 00:19	2024-09-5	Show	GitHub Exploit DB Packet Storm

311489	7.8	HIGH Local	authenticator	authenticator	Authenticator is a browser extension that generates two-step verification codes. In versions 7.0.0 and below, encryption keys for user data were stored encrypted at-rest using only AES-256 and the EV…	CWE-326 CWE-327 Inadequate Encryption Strength Use of a Broken or Risky Cryptographic Algorithm	CVE-2024-45394	2024-10-10 00:15	2024-09-4	Show	GitHub Exploit DB Packet Storm

311490	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: net: mana: Fix RX buf alloc_size alignment and atomic op panic The MANA driver's RX buffer alloc_size is passed into napi_build_s…	NVD-CWE-noinfo	CVE-2024-45001	2024-10-9 23:49	2024-09-5	Show	GitHub Exploit DB Packet Storm