Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 7, 2026, 2:09 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
229141	10	危険	Jon Trulson	-	NAS の server/os/connection.c におけるスタックベースのバッファオーバーフローの脆弱性	-	CVE-2007-1543	2012-12-20 18:19	2007-03-20	Show	GitHub Exploit DB Packet Storm

229142	7.5	危険	sql-ledger	-	SQL-Ledger の am.pl におけるディレクトリトラバーサルの脆弱性	-	CVE-2007-1541	2012-12-20 18:19	2007-03-20	Show	GitHub Exploit DB Packet Storm

229143	4.3	警告	pragmamx	-	pragmaMX Landkarten モジュールの inc/map.func.php におけるディレクトリトラバーサルの脆弱性	-	CVE-2007-1539	2012-12-20 18:19	2007-03-20	Show	GitHub Exploit DB Packet Storm

229144	5	警告	zomplog	-	Zomplog の themes/default/ におけるディレクトリトラバーサルの脆弱性	-	CVE-2007-1524	2012-12-20 18:19	2007-03-20	Show	GitHub Exploit DB Packet Storm

229145	6.8	警告	PHPNUKE	-	PHP-Nuke における CSRF 攻撃を実行される脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2007-1520	2012-12-20 18:19	2007-03-20	Show	GitHub Exploit DB Packet Storm

229146	4.3	警告	PHPNUKE	-	PHP-Nuke の modules.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-1519	2012-12-20 18:19	2007-03-20	Show	GitHub Exploit DB Packet Storm

229147	7.5	危険	woltlab	-	wBB の usergroups.php における SQL インジェクションの脆弱性	-	CVE-2007-1518	2012-12-20 18:19	2007-03-20	Show	GitHub Exploit DB Packet Storm

229148	6.8	警告	viperweb	-	ViperWeb Portal の index.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-1514	2012-12-20 18:19	2007-03-20	Show	GitHub Exploit DB Packet Storm

229149	7.5	危険	rhapsody irc	-	Rhapsody IRC の comm.c におけるフォーマットストリングの脆弱性	-	CVE-2007-1503	2012-12-20 18:19	2007-03-19	Show	GitHub Exploit DB Packet Storm

229150	6.8	警告	rhapsody irc	-	Rhapsody IRC におけるバッファオーバーフローの脆弱性	-	CVE-2007-1502	2012-12-20 18:19	2007-03-19	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
312781	4.3	MEDIUM Network	-	-	The Theme My Login plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 7.1.7. This is due to missing or incorrect nonce validation on the tml_admin_…	-	CVE-2024-7422	2024-08-19 22:00	2024-08-16	Show	GitHub Exploit DB Packet Storm

312782	4.3	MEDIUM Network	-	-	The Custom Field For WP Job Manager plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 1.2 via the the 'cm_fieldshow' shortcode due to missin…	-	CVE-2023-7049	2024-08-19 22:00	2024-08-16	Show	GitHub Exploit DB Packet Storm

312783	-		-	-	UNSUPPORTED WHEN ASSIGNED A vulnerability, which was classified as critical, was found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, …	CWE-120 Classic Buffer Overflow	CVE-2024-7849	2024-08-19 22:00	2024-08-16	Show	GitHub Exploit DB Packet Storm

312784	-		-	-	calamares-nixos-extensions provides Calamares branding and modules for NixOS, a distribution of GNU/Linux. Users who installed NixOS through the graphical installer who used manual disk partitioning …	-	CVE-2024-43378	2024-08-19 22:00	2024-08-16	Show	GitHub Exploit DB Packet Storm

312785	-		-	-	gettext.js is a GNU gettext port for node and the browser. There is a cross-site scripting (XSS) injection if `.po` dictionary definition files are corrupted. This vulnerability has been patched in v…	-	CVE-2024-43370	2024-08-19 22:00	2024-08-16	Show	GitHub Exploit DB Packet Storm

312786	-		-	-	Ibexa RichText Field Type is a Field Type for supporting rich formatted text stored in a structured XML format. In versions on the 4.6 branch prior to 4.6.10, the validator for the RichText fieldtype…	-	CVE-2024-43369	2024-08-19 22:00	2024-08-16	Show	GitHub Exploit DB Packet Storm

312787	-		-	-	In setForceHideNonSystemOverlayWindowIfNeeded of WindowState.java, there is a possible way for message content to be visible on the screensaver while lock screen visibility settings are restricted by…	-	CVE-2024-34741	2024-08-19 22:00	2024-08-16	Show	GitHub Exploit DB Packet Storm

312788	-		-	-	In attributeBytesBase64 and attributeBytesHex of BinaryXmlSerializer.java, there is a possible arbitrary XML injection due to an integer overflow. This could lead to local escalation of privilege wit…	-	CVE-2024-34740	2024-08-19 22:00	2024-08-16	Show	GitHub Exploit DB Packet Storm

312789	-		-	-	In shouldRestrictOverlayActivities of UsbProfileGroupSettingsManager.java, there is a possible escape from SUW due to a logic error in the code. This could lead to local escalation of privilege with …	-	CVE-2024-34739	2024-08-19 22:00	2024-08-16	Show	GitHub Exploit DB Packet Storm

312790	-		-	-	In multiple functions of AppOpsService.java, there is a possible way for unprivileged apps to read their own restrictRead app-op states due to a logic error in the code. This could lead to local esca…	-	CVE-2024-34738	2024-08-19 22:00	2024-08-16	Show	GitHub Exploit DB Packet Storm