Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 10, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229381 5.8 警告 sky gunning - Sky GUNNING MySpeach の chat.php におけるディレクトリトラバーサルの脆弱性 - CVE-2007-1896 2012-12-20 18:19 2007-04-9 Show GitHub Exploit DB Packet Storm
229382 6.8 警告 sky gunning - Sky GUNNING MySpeach の chat.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-1895 2012-12-20 18:19 2007-04-9 Show GitHub Exploit DB Packet Storm
229383 4.3 警告 WordPress.org - WordPress の wp-includes/general-template.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-1894 2012-12-20 18:19 2007-03-9 Show GitHub Exploit DB Packet Storm
229384 4.9 警告 WordPress.org - WordPress の xmlrpc におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-1893 2012-12-20 18:19 2007-04-9 Show GitHub Exploit DB Packet Storm
229385 7.8 危険 VMware - VMware Workstation におけるゲスト OS がサービス運用妨害 (DoS) 状態となる脆弱性 - CVE-2007-1877 2012-12-20 18:19 2007-05-2 Show GitHub Exploit DB Packet Storm
229386 7.2 危険 VMware - VMware Workstation における "仮想マシンに登録されたコンテキストが破損" する脆弱性 - CVE-2007-1876 2012-12-20 18:19 2007-05-2 Show GitHub Exploit DB Packet Storm
229387 4.3 警告 toenda software development - toendaCMS におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-1872 2012-12-20 18:19 2007-04-13 Show GitHub Exploit DB Packet Storm
229388 7.5 危険 webasyst llc - Shop-Script FREE の smarty/smarty_class.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-1855 2012-12-20 18:19 2007-04-3 Show GitHub Exploit DB Packet Storm
229389 7.5 危険 really simple php and ajax - RSPA におけるディレクトリトラバーサルの脆弱性 - CVE-2007-1851 2012-12-20 18:19 2007-04-3 Show GitHub Exploit DB Packet Storm
229390 7.5 危険 XOOPS - XOOPS 用の Repository モジュールにおける SQL インジェクションの脆弱性 - CVE-2007-1847 2012-12-20 18:19 2007-04-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 10, 2026, 4:58 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
312731 6.1 MEDIUM
Network 		mozilla firefox
firefox_esr 		Firefox adds web-compatibility shims in place of some tracking scripts blocked by Enhanced Tracking Protection. On a site protected by Content Security Policy in "strict-dynamic" mode, an attacker a… CWE-79
Cross-site Scripting 		CVE-2024-7524 2024-08-30 02:35 2024-08-6 Show GitHub Exploit DB Packet Storm
312732 6.1 MEDIUM
Network 		insurance_management_system_project insurance_management_system A vulnerability has been found in nafisulbari/itsourcecode Insurance Management System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file editCl… CWE-79
Cross-site Scripting 		CVE-2024-8208 2024-08-30 02:27 2024-08-28 Show GitHub Exploit DB Packet Storm
312733 6.1 MEDIUM
Network 		insurance_management_system_project insurance_management_system A vulnerability was found in nafisulbari/itsourcecode Insurance Management System 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file addClient.php. Th… CWE-79
Cross-site Scripting 		CVE-2024-8209 2024-08-30 02:23 2024-08-28 Show GitHub Exploit DB Packet Storm
312734 4.3 MEDIUM
Network 		ibm infosphere_information_server IBM InfoSphere Information Server 11.7 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be use… CWE-209
Information Exposure Through an Error Message 		CVE-2024-39751 2024-08-30 01:56 2024-08-7 Show GitHub Exploit DB Packet Storm
312735 6.1 MEDIUM
Network 		mozilla firefox Long pressing on a download link could potentially allow Javascript commands to be executed within the browser This vulnerability affects Firefox for iOS < 129. CWE-79
Cross-site Scripting 		CVE-2024-43111 2024-08-30 01:53 2024-08-7 Show GitHub Exploit DB Packet Storm
312736 6.1 MEDIUM
Network 		mozilla firefox The contextual menu for links could provide an opportunity for cross-site scripting attacks This vulnerability affects Firefox for iOS < 129. CWE-79
Cross-site Scripting 		CVE-2024-43113 2024-08-30 01:51 2024-08-7 Show GitHub Exploit DB Packet Storm
312737 6.1 MEDIUM
Network 		mozilla firefox Long pressing on a download link could potentially provide a means for cross-site scripting This vulnerability affects Firefox for iOS < 129. CWE-79
Cross-site Scripting 		CVE-2024-43112 2024-08-30 01:51 2024-08-7 Show GitHub Exploit DB Packet Storm
312738 5.5 MEDIUM
Local 		samsung email Use of implicit intent for sensitive communication in Samsung Email prior to version 6.1.94.2 allows local attackers to get sensitive information. NVD-CWE-Other
CVE-2024-34636 2024-08-30 01:47 2024-08-7 Show GitHub Exploit DB Packet Storm
312739 10.0 CRITICAL
Network 		openhab openhab_web_interface openHAB, a provider of open-source home automation software, has add-ons including the visualization add-on CometVisu. Prior to version 4.2.1, the proxy endpoint of openHAB's CometVisu add-on can be … NVD-CWE-noinfo
CVE-2024-42467 2024-08-30 01:26 2024-08-12 Show GitHub Exploit DB Packet Storm
312740 9.8 CRITICAL
Network 		dlink dns-315l_firmware
dns-320lw_firmware
dns-1550-04_firmware
dns-1200-05_firmware
dns-1100-4_firmware
dns-726-4_firmware
dns-345_firmware
dns-343_firmware
dns-340l_firmware
dn… 		A vulnerability was found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, … CWE-78
OS Command  		CVE-2024-8210 2024-08-30 01:04 2024-08-28 Show GitHub Exploit DB Packet Storm