Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 24, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228761 5 警告 IBM - IBM Sterling Connect:Direct のブラウザにおける Cookie をキャプチャされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-0529 2013-06-25 15:48 2013-06-11 Show GitHub Exploit DB Packet Storm
228762 1.9 注意 IBM - IBM Sterling Connect:Direct のブラウザにおける管理者コンソールの重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2013-0527 2013-06-25 15:48 2013-06-11 Show GitHub Exploit DB Packet Storm
228763 6.8 警告 WordPress.org - WordPress 用 WP Maintenance Mode プラグインにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2013-3250 2013-06-25 14:15 2013-06-5 Show GitHub Exploit DB Packet Storm
228764 4.3 警告 Suksit Sripitchayaphan - Drupal 用 Inf08 テーマの template.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-6572 2013-06-25 13:54 2012-09-12 Show GitHub Exploit DB Packet Storm
228765 4.3 警告 シスコシステムズ - Cisco WebEx Social におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2013-3392 2013-06-25 13:44 2013-06-21 Show GitHub Exploit DB Packet Storm
228766 8.3 危険 シスコシステムズ - Cisco TelePresence TC Software におけるルート権限のシェルアクセスを取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-3379 2013-06-24 18:32 2013-06-19 Show GitHub Exploit DB Packet Storm
228767 7.8 危険 シスコシステムズ - Cisco TelePresence TC Software および TE Software におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2013-3378 2013-06-24 18:16 2013-06-19 Show GitHub Exploit DB Packet Storm
228768 7.8 危険 シスコシステムズ - Cisco TelePresence TC Software および TE Software におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2013-3377 2013-06-24 18:08 2013-06-19 Show GitHub Exploit DB Packet Storm
228769 9 危険 Huawei - Huawei Seco Versatile Security Manager における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-4633 2013-06-24 16:58 2013-04-3 Show GitHub Exploit DB Packet Storm
228770 7.8 危険 Huawei - Huawei Access Router (AR) におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2013-4632 2013-06-24 16:57 2013-04-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 25, 2026, 4:04 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
320261 6.1 MEDIUM
Network 		mayurik best_house_rental_management_system A vulnerability was found in SourceCodester Best House Rental Management System 1.0. It has been rated as problematic. This issue affects some unknown processing of the file categories.php. The manip… CWE-79
Cross-site Scripting 		CVE-2024-8708 2024-09-19 04:11 2024-09-12 Show GitHub Exploit DB Packet Storm
320262 6.5 MEDIUM
Network 		microsoft edge Microsoft Edge (Chromium-based) Information Disclosure Vulnerability NVD-CWE-noinfo
CVE-2024-38222 2024-09-19 04:01 2024-09-12 Show GitHub Exploit DB Packet Storm
320263 7.3 HIGH
Local 		cisco meraki_systems_manager A vulnerability in Cisco Meraki Systems Manager (SM) Agent for Windows could allow an authenticated, local attacker to execute arbitrary code with elevated privileges.  This vulnerability is … CWE-427
 Uncontrolled Search Path Element 		CVE-2024-20430 2024-09-19 03:56 2024-09-13 Show GitHub Exploit DB Packet Storm
320264 8.8 HIGH
Network 		owasp defectdojo An issue in OWASP DefectDojo before v.1.5.3.1 allows a remote attacker to escalate privileges via the user permissions component. NVD-CWE-Other
CVE-2023-48171 2024-09-19 03:54 2024-08-13 Show GitHub Exploit DB Packet Storm
320265 7.5 HIGH
Network 		i-doit i-doit SQL injection vulnerability in idoit pro version 28. This vulnerability could allow an attacker to send a specially crafted query to the ID parameter in /var/www/html/src/classes/modules/api/model/cm… CWE-89
SQL Injection 		CVE-2024-8749 2024-09-19 03:53 2024-09-12 Show GitHub Exploit DB Packet Storm
320266 8.8 HIGH
Network 		sir gnuboard Gnuboard g6 6.0.7 is vulnerable to Session hijacking due to a CORS misconfiguration. CWE-346
 Origin Validation Error 		CVE-2024-41475 2024-09-19 03:51 2024-08-13 Show GitHub Exploit DB Packet Storm
320267 9.8 CRITICAL
Network 		soplanning soplanning An unauthenticated Insecure Direct Object Reference (IDOR) to the database has been found in the SO Planning tool that occurs when the public view setting is enabled. An attacker could use this vulne… CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2024-27113 2024-09-19 03:43 2024-09-11 Show GitHub Exploit DB Packet Storm
320268 9.8 CRITICAL
Network 		soplanning soplanning A unauthenticated SQL Injection has been found in the SO Planning tool that occurs when the public view setting is enabled. An attacker could use this vulnerability to gain access to the underlying d… CWE-89
SQL Injection 		CVE-2024-27112 2024-09-19 03:42 2024-09-11 Show GitHub Exploit DB Packet Storm
320269 9.8 CRITICAL
Network 		agpt autogpt A vulnerability in significant-gravitas/autogpt version 0.5.1 allows an attacker to bypass the shell commands denylist settings. The issue arises when the denylist is configured to block specific com… CWE-78
OS Command  		CVE-2024-6091 2024-09-19 03:41 2024-09-11 Show GitHub Exploit DB Packet Storm
320270 9.8 CRITICAL
Network 		reedos aim-star This vulnerability exists in Reedos aiM-Star version 2.0.1 due to missing restrictions for excessive failed authentication attempts on its API based login. A remote attacker could exploit this vulner… CWE-307
mproper Restriction of Excessive Authentication Attempts 		CVE-2024-45790 2024-09-19 03:38 2024-09-11 Show GitHub Exploit DB Packet Storm