Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 6, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229011 7.5 危険 XOOPS - Xoops における SQL インジェクションの脆弱性 - CVE-2007-0377 2012-12-20 18:19 2007-01-19 Show GitHub Exploit DB Packet Storm
229012 6.8 警告 VirtueMart - Virtuemart におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-0376 2012-12-20 18:19 2007-01-19 Show GitHub Exploit DB Packet Storm
229013 7.5 危険 phpbp - phpBP の index.php における upload/banners/ ファイルに任意の PHP コードを挿入される脆弱性 - CVE-2007-0370 2012-12-20 18:19 2007-01-19 Show GitHub Exploit DB Packet Storm
229014 7.5 危険 phpbp - phpBP における SQL インジェクションの脆弱性 - CVE-2007-0369 2012-12-20 18:19 2007-01-19 Show GitHub Exploit DB Packet Storm
229015 7.5 危険 uberghey - Uberghey CMS の frontpage.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-0359 2012-12-20 18:19 2007-01-18 Show GitHub Exploit DB Packet Storm
229016 6.2 警告 zonelabs - Microsoft Windows XP および Windows Server 2003 における権限を取得される脆弱性 - CVE-2007-0351 2012-12-20 18:19 2007-01-18 Show GitHub Exploit DB Packet Storm
229017 7.5 危険 sme - SmE FileMailer の index.php および dl.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-0350 2012-12-20 18:19 2007-01-18 Show GitHub Exploit DB Packet Storm
229018 7.5 危険 sme - SmE FileMailer の index.php における SQL インジェクションの脆弱性 - CVE-2007-0346 2012-12-20 18:19 2007-01-17 Show GitHub Exploit DB Packet Storm
229019 6.8 警告 The phpMyAdmin Project - phpMyAdmin におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-0341 2012-12-20 18:19 2007-01-17 Show GitHub Exploit DB Packet Storm
229020 7.5 危険 thwboard - ThWboard の inc/header.inc.php における SQL インジェクションの脆弱性 - CVE-2007-0340 2012-12-20 18:19 2007-01-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
312811 - - - The House Manager WordPress plugin through 1.0.8.4 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used aga… - CVE-2024-3973 2024-08-7 15:16 2024-08-7 Show GitHub Exploit DB Packet Storm
312812 - varnish.projects.linpro varnish The Command Line Interface (aka Server CLI or administration interface) in the master process in the reverse proxy server in Varnish before 2.1.0 does not require authentication for commands received… CWE-287
Improper Authentication 		CVE-2009-2936 2024-08-7 15:16 2010-04-6 Show GitHub Exploit DB Packet Storm
312813 - - - Ivanti Docs@Work for Android, before 2.26.0 is affected by the 'Dirty Stream' vulnerability. The application fails to properly sanitize file names, resulting in a path traversal-affiliated vulnerabil… - CVE-2024-37403 2024-08-7 13:17 2024-08-7 Show GitHub Exploit DB Packet Storm
312814 - - - Insufficient verification of authentication controls in EPMM prior to 12.1.0.1 allows a remote attacker to bypass authentication and access sensitive resources. - CVE-2024-36132 2024-08-7 13:17 2024-08-7 Show GitHub Exploit DB Packet Storm
312815 - - - An improper authentication vulnerability in web component of EPMM prior to 12.1.0.1 allows a remote malicious user to access potentially sensitive information - CVE-2024-34788 2024-08-7 13:17 2024-08-7 Show GitHub Exploit DB Packet Storm
312816 - - - Out-of-bounds read in parsing textbox object in Samsung Notes prior to version 4.4.21.62 allows local attacker to access unauthorized memory. - CVE-2024-34635 2024-08-7 11:15 2024-08-7 Show GitHub Exploit DB Packet Storm
312817 - - - Out-of-bounds read in parsing connected object list in Samsung Notes prior to version 4.4.21.62 allows local attacker to access unauthorized memory. - CVE-2024-34634 2024-08-7 11:15 2024-08-7 Show GitHub Exploit DB Packet Storm
312818 - - - Out-of-bounds read in parsing object header in Samsung Notes prior to version 4.4.21.62 allows local attacker to access unauthorized memory. - CVE-2024-34633 2024-08-7 11:15 2024-08-7 Show GitHub Exploit DB Packet Storm
312819 - - - Out-of-bounds read in uuid parsing in Samsung Notes prior to version 4.4.21.62 allows local attacker to access unauthorized memory. - CVE-2024-34632 2024-08-7 11:15 2024-08-7 Show GitHub Exploit DB Packet Storm
312820 - - - Out-of-bounds read in applying new binary in Samsung Notes prior to version 4.4.21.62 allows local attackers to potentially read memory. - CVE-2024-34631 2024-08-7 11:15 2024-08-7 Show GitHub Exploit DB Packet Storm