Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228881 7.5 危険 ssl-explorer - SSL-Explorer の selectLanguage.do における HTTP トランザクション内にデータを挿入される脆弱性 CWE-20
不適切な入力確認 		CVE-2007-5832 2012-12-20 18:33 2007-08-3 Show GitHub Exploit DB Packet Storm
228882 5 警告 ssl-explorer - SSL-Explorer の fileSystem.do におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-5831 2012-12-20 18:33 2007-11-5 Show GitHub Exploit DB Packet Storm
228883 6 警告 シマンテック - Macintosh 用の Symantec AntiVirus などの製品の Disk Mount スキャナにおける root 権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-5829 2012-12-20 18:33 2007-11-1 Show GitHub Exploit DB Packet Storm
228884 7.5 危険 scribe - Ben Ng Scribe の forum.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-5823 2012-12-20 18:33 2007-11-5 Show GitHub Exploit DB Packet Storm
228885 7.5 危険 scribe - Ben Ng Scribe の forum.php における regged/ 配下の特定のファイルへ任意の PHP コードを挿入される脆弱性 CWE-94
コード・インジェクション 		CVE-2007-5822 2012-12-20 18:33 2007-11-5 Show GitHub Exploit DB Packet Storm
228886 7.6 危険 sblog - sBlog の blocks_edit_do.php におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2007-5818 2012-12-20 18:33 2007-11-5 Show GitHub Exploit DB Packet Storm
228887 10 危険 SonicWALL - SonicWall SSL-VPN 200 および SSL-VPN 2000/4000 の WebCacheCleaner ActiveX コントロールにおける絶対パストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-5815 2012-12-20 18:33 2007-11-5 Show GitHub Exploit DB Packet Storm
228888 9.3 危険 SonicWALL - SonicWall SSL-VPN NetExtender NELaunchCtrl ActiveX コントロールにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-5814 2012-12-20 18:33 2007-11-5 Show GitHub Exploit DB Packet Storm
228889 6.8 警告 ssreader - SSReader の Ultra Star Reader ActiveX コントロールにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-5807 2012-12-20 18:33 2007-11-5 Show GitHub Exploit DB Packet Storm
228890 7.5 危険 work system e-commerce - WORK system e-commerce における脆弱性 CWE-noinfo
情報不足 		CVE-2007-5801 2012-12-20 18:33 2007-11-2 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
312021 9.8 CRITICAL
Network 		blakeembrey template @blakeembrey/template is a string template library. Prior to version 1.2.0, it is possible to inject and run code within the template if the attacker has access to write the template name. Version 1.… CWE-94
Code Injection 		CVE-2024-45390 2024-09-13 05:15 2024-09-4 Show GitHub Exploit DB Packet Storm
312022 7.5 HIGH
Network 		tina tina Tina is an open-source content management system (CMS). Sites building with Tina CMS's command line interface (CLI) prior to version 1.6.2 that use a search token may be vulnerable to the search toke… CWE-312
 Cleartext Storage of Sensitive Information 		CVE-2024-45391 2024-09-13 05:13 2024-09-4 Show GitHub Exploit DB Packet Storm
312023 4.2 MEDIUM
Physics 		yubico yubikey_5c_nfc_firmware
yubikey_5_nfc_firmware
yubikey_5c_firmware
yubikey_5_nano_firmware
yubikey_5c_nano_firmware
yubikey_5ci_firmware
yubikey_5_nfc_fips_firmware
yubikey_5c_nf… 		Yubico YubiKey 5 Series devices with firmware before 5.7.0 and YubiHSM 2 devices with firmware before 2.4.0 allow an ECDSA secret-key extraction attack (that requires physical access and expensive eq… CWE-203
 Information Exposure Through Discrepancy 		CVE-2024-45678 2024-09-13 05:07 2024-09-4 Show GitHub Exploit DB Packet Storm
312024 4.7 MEDIUM
Network 		mozilla firefox_focus Websites could utilize Javascript links to spoof URL addresses in the Focus navigation bar This vulnerability affects Focus for iOS < 130. NVD-CWE-noinfo
CVE-2024-8399 2024-09-13 04:45 2024-09-4 Show GitHub Exploit DB Packet Storm
312025 7.5 HIGH
Network 		huawei emui
harmonyos 		Access control vulnerability in the SystemUI module Impact: Successful exploitation of this vulnerability may affect service confidentiality. NVD-CWE-noinfo
CVE-2024-42039 2024-09-13 04:37 2024-09-4 Show GitHub Exploit DB Packet Storm
312026 7.5 HIGH
Network 		huawei emui
harmonyos 		Input verification vulnerability in the system service module Impact: Successful exploitation of this vulnerability will affect availability. NVD-CWE-noinfo
CVE-2024-45441 2024-09-13 04:35 2024-09-4 Show GitHub Exploit DB Packet Storm
312027 7.5 HIGH
Network 		huawei emui
harmonyos 		Permission control vulnerability in the software update module. Impact: Successful exploitation of this vulnerability may affect service confidentiality. NVD-CWE-noinfo
CVE-2024-45450 2024-09-13 04:30 2024-09-4 Show GitHub Exploit DB Packet Storm
312028 7.8 HIGH
Local 		intel tdx_module_software Incomplete filtering of special elements in Intel(R) TDX module software before version TDX_1.5.01.00.592 may allow an authenticated user to potentially enable escalation of privilege via local acces… NVD-CWE-Other
CVE-2024-39283 2024-09-13 04:15 2024-08-14 Show GitHub Exploit DB Packet Storm
312029 8.2 HIGH
Local 		intel nuc_x15_laptop_kit_lapbc510_firmware
nuc_x15_laptop_kit_lapbc710_firmware
nuc_x15_laptop_kit_lapac71g_firmware
nuc_x15_laptop_kit_lapac71h_firmware
nuc_x15_laptop_kit_lapkc51e_firmware 		Improper input validation in firmware for some Intel(R) NUC may allow a privileged user to potentially enableescalation of privilege via local access. NVD-CWE-noinfo
CVE-2024-34163 2024-09-13 03:59 2024-08-14 Show GitHub Exploit DB Packet Storm
312030 7.8 HIGH
Local 		intel vtune_profiler
oneapi_base_toolkit 		Uncontrolled search path in some Intel(R) VTune(TM) Profiler software before versions 2024.1 may allow an authenticated user to potentially enable escalation of privilege via local access. CWE-427
 Uncontrolled Search Path Element 		CVE-2024-29015 2024-09-13 03:53 2024-08-14 Show GitHub Exploit DB Packet Storm