Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 31, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230131 7.5 危険 scripteen - Scripteen Free Image Hosting Script における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2008-3211 2012-12-20 18:52 2008-07-18 Show GitHub Exploit DB Packet Storm
230132 5 警告 reSIProcate - repro で使用されている ReSIProcate におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2008-3210 2012-12-20 18:52 2008-07-3 Show GitHub Exploit DB Packet Storm
230133 5 警告 simpledns - Simple DNS Plus におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2008-3208 2012-12-20 18:52 2008-07-18 Show GitHub Exploit DB Packet Storm
230134 9.3 危険 pragyan - Pragyan CMS の cms/modules/form.lib.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-3207 2012-12-20 18:52 2008-07-18 Show GitHub Exploit DB Packet Storm
230135 4.3 警告 xomol - Xomol CMS の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-3202 2012-12-20 18:52 2008-07-17 Show GitHub Exploit DB Packet Storm
230136 7.8 危険 reSIProcate - ReSIProcate におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2008-3199 2012-12-20 18:52 2008-07-14 Show GitHub Exploit DB Packet Storm
230137 3.5 注意 The phpMyAdmin Project - phpMyAdmin におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2008-3197 2012-12-20 18:52 2008-07-15 Show GitHub Exploit DB Packet Storm
230138 7.8 危険 yacc - yacc 内の skeleton.c における範囲外メモリのスタックにアクセスされる脆弱性 CWE-399
リソース管理の問題 		CVE-2008-3196 2012-12-20 18:52 2008-07-16 Show GitHub Exploit DB Packet Storm
230139 6.8 警告 TWiki - TWiki の bin/configure におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-3195 2012-12-20 18:52 2008-08-5 Show GitHub Exploit DB Packet Storm
230140 6.8 警告 Pluck CMS - pluck の data/inc/themes/predefined_variables.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-3194 2012-12-20 18:52 2008-07-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
311851 8.8 HIGH
Network 		mozilla thunderbird
firefox 		Memory safety bugs present in Firefox 131, Firefox ESR 128.3, and Thunderbird 128.3. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could… CWE-787
 Out-of-bounds Write 		CVE-2024-10467 2024-11-4 22:26 2024-10-29 Show GitHub Exploit DB Packet Storm
311852 6.1 MEDIUM
Network 		mozilla thunderbird
firefox 		In multipart/x-mixed-replace responses, `Content-Disposition: attachment` in the response header was not respected and did not force a download, which could allow XSS attacks. This vulnerability affe… CWE-79
Cross-site Scripting 		CVE-2024-10461 2024-11-4 22:25 2024-10-29 Show GitHub Exploit DB Packet Storm
311853 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: tracing: Free buffers when a used dynamic event is removed After 65536 dynamic events have been added and removed, the "type" fie… CWE-416
 Use After Free 		CVE-2022-49006 2024-11-4 22:16 2024-10-22 Show GitHub Exploit DB Packet Storm
311854 - - - Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none. - CVE-2024-48342 2024-11-4 16:15 2024-11-4 Show GitHub Exploit DB Packet Storm
311855 10.0 CRITICAL
Network 		- - IDExpert from CHANGING Information Technology does not properly validate a specific parameter in the administrator interface, allowing remote attackers with administrative privileges to inject and ex… CWE-78
OS Command  		CVE-2024-10653 2024-11-4 16:15 2024-11-1 Show GitHub Exploit DB Packet Storm
311856 - - - An issue in the PepeGxng smart contract (which can be run on the Ethereum blockchain) allows remote attackers to have an unspecified impact via the mint function. NOTE: this is disputed by third part… - CVE-2024-51427 2024-11-4 15:15 2024-10-31 Show GitHub Exploit DB Packet Storm
311857 - - - An issue in the PepeGxng smart contract (which can be run on the Ethereum blockchain) allows remote attackers to have an unspecified impact via the _transfer function. NOTE: this is disputed by third… - CVE-2024-51426 2024-11-4 15:15 2024-10-31 Show GitHub Exploit DB Packet Storm
311858 - - - An issue in the WaterToken smart contract (which can be run on the Ethereum blockchain) allows remote attackers to have an unspecified impact. NOTE: this is disputed by third parties because the impa… - CVE-2024-51425 2024-11-4 15:15 2024-10-31 Show GitHub Exploit DB Packet Storm
311859 - - - An issue in the PepeGxng smart contract (which can be run on the Ethereum blockchain) allows remote attackers to have an unspecified impact via the Owned.setOwner function. NOTE: this is disputed by … - CVE-2024-51424 2024-11-4 15:15 2024-10-31 Show GitHub Exploit DB Packet Storm
311860 - - - In vdec, there is a possible out of bounds read due to improper structure design. This could lead to local information disclosure with System execution privileges needed. User interaction is not need… - CVE-2024-20124 2024-11-4 11:15 2024-11-4 Show GitHub Exploit DB Packet Storm