Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 9, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229571 6.4 警告 web-app.org - WebAPP における Guest プロフィールを編集される脆弱性 - CVE-2007-1182 2012-12-20 18:19 2007-03-2 Show GitHub Exploit DB Packet Storm
229572 5 警告 web-app.org - WebAPP における脆弱性 - CVE-2007-1181 2012-12-20 18:19 2007-03-2 Show GitHub Exploit DB Packet Storm
229573 4.3 警告 web-app.org - WebAPP におけるクロスサイトリクエストフォージェリ攻撃を仕掛けられる脆弱性 - CVE-2007-1180 2012-12-20 18:19 2007-03-2 Show GitHub Exploit DB Packet Storm
229574 5 警告 web-app.org - WebAPP における脆弱性 - CVE-2007-1179 2012-12-20 18:19 2007-03-2 Show GitHub Exploit DB Packet Storm
229575 7.5 危険 web-app.org - WebAPP における脆弱性 - CVE-2007-1178 2012-12-20 18:19 2007-03-2 Show GitHub Exploit DB Packet Storm
229576 5.8 警告 web-app.org - WebAPP における脆弱性 - CVE-2007-1177 2012-12-20 18:19 2007-03-2 Show GitHub Exploit DB Packet Storm
229577 4.3 警告 web-app.org - WebAPP におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-1176 2012-12-20 18:19 2007-03-2 Show GitHub Exploit DB Packet Storm
229578 4.3 警告 web-app.org - WebAPP の admin 機能におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-1175 2012-12-20 18:19 2007-03-2 Show GitHub Exploit DB Packet Storm
229579 4.3 警告 web-app.org - WebAPP におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-1174 2012-12-20 18:19 2007-03-2 Show GitHub Exploit DB Packet Storm
229580 5 警告 simbin - SimBin GTR - FIA GT Racing Game などにおけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-1170 2012-12-20 18:19 2007-03-2 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
312981 7.2 HIGH
Network 		enphase iq_gateway_firmware Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability via the url parameter of an authenticated enpoint in Enphase IQ Gateway (formerly known as Enphase) a… CWE-78
OS Command  		CVE-2024-21880 2024-08-24 02:38 2024-08-12 Show GitHub Exploit DB Packet Storm
312982 - - - A Reflected Cross Site Scripting (XSS) vulnerability was found in the "/schedule.php" page of the Kashipara Bus Ticket Reservation System v1.0, which allows remote attackers to execute arbitrary code… - CVE-2024-42763 2024-08-24 02:35 2024-08-23 Show GitHub Exploit DB Packet Storm
312983 9.8 CRITICAL
Network 		squirrelly squirrelly squirrellyjs squirrelly v9.0.0 and fixed in v.9.0.1 was discovered to contain a code injection vulnerability via the component options.varName. CWE-94
Code Injection 		CVE-2024-40453 2024-08-24 02:35 2024-08-22 Show GitHub Exploit DB Packet Storm
312984 6.1 MEDIUM
Network 		okfn ckan CKAN is an open-source data management system for powering data hubs and data portals. The Datatables view plugin did not properly escape record data coming from the DataStore, leading to a potential… CWE-79
Cross-site Scripting 		CVE-2024-41675 2024-08-24 02:07 2024-08-22 Show GitHub Exploit DB Packet Storm
312985 5.3 MEDIUM
Network 		okfn ckan CKAN is an open-source data management system for powering data hubs and data portals. If there were connection issues with the Solr server, the internal Solr URL (potentially including credentials) … CWE-209
Information Exposure Through an Error Message 		CVE-2024-41674 2024-08-24 02:06 2024-08-22 Show GitHub Exploit DB Packet Storm
312986 7.8 HIGH
Local 		microfocus netiq_privileged_access_manager SSH authenticated user when access the PAM server can execute an OS command to gain the full system access using bash. This issue affects Privileged Access Manager before 3.7.0.1. CWE-78
OS Command  		CVE-2020-11847 2024-08-24 02:04 2024-08-21 Show GitHub Exploit DB Packet Storm
312987 7.5 HIGH
Network 		microfocus netiq_privileged_access_manager A vulnerability found in OpenText Privileged Access Manager that issues a token. on successful issuance of the token, a cookie gets set that allows unrestricted access to all the application resource… NVD-CWE-noinfo
CVE-2020-11846 2024-08-24 02:03 2024-08-21 Show GitHub Exploit DB Packet Storm
312988 6.1 MEDIUM
Network 		microfocus netiq_self_service_password_reset Improper Input Validation vulnerability in OpenText Self Service Password Reset allows Cross-Site Scripting (XSS). This issue affects Self Service Password Reset before 4.5.0.2 and 4.4.0.6 CWE-79
Cross-site Scripting 		CVE-2020-11850 2024-08-24 02:02 2024-08-21 Show GitHub Exploit DB Packet Storm
312989 7.5 HIGH
Network 		gitlab gitlab An issue was discovered in GitLab CE/EE affecting all versions starting from 8.16 prior to 17.0.6, starting from 17.1 prior to 17.1.4, and starting from 17.2 prior to 17.2.2, which causes the web int… CWE-116
 Improper Encoding or Escaping of Output 		CVE-2024-6329 2024-08-24 02:01 2024-08-8 Show GitHub Exploit DB Packet Storm
312990 5.4 MEDIUM
Network 		gitlab gitlab An issue was discovered in GitLab EE starting from version 16.7 before 17.0.6, version 17.1 before 17.1.4 and 17.2 before 17.2.2 that allowed bypassing the password re-entry requirement to approve a … CWE-287
Improper Authentication 		CVE-2024-4784 2024-08-24 01:59 2024-08-8 Show GitHub Exploit DB Packet Storm