Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 13, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230281 9.3 危険 x multimedia system - xmms における整数アンダーフローの脆弱性 - CVE-2007-0654 2012-12-20 18:19 2007-03-21 Show GitHub Exploit DB Packet Storm
230282 9.3 危険 x multimedia system - xmms における整数オーバーフローの脆弱性 - CVE-2007-0653 2012-12-20 18:19 2007-03-21 Show GitHub Exploit DB Packet Storm
230283 7.5 危険 rbl - Raymond BERTHOU script collection の tForum における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-0642 2012-12-20 18:19 2007-01-31 Show GitHub Exploit DB Packet Storm
230284 7.5 危険 shaffer solutions corp - SSC DiskAccess NFS Client の EnumPrintersA 関数におけるバッファオーバーフローの脆弱性 - CVE-2007-0641 2012-12-20 18:19 2007-01-31 Show GitHub Exploit DB Packet Storm
230285 10 危険 Zabbix - ZABBIX におけるバッファオーバーフローの脆弱性 - CVE-2007-0640 2012-12-20 18:19 2007-01-31 Show GitHub Exploit DB Packet Storm
230286 5 警告 vlad alexa mancini - Vlad Alexa Mancini PHPFootball の show.php における重要な情報を取得される脆弱性 - CVE-2007-0638 2012-12-20 18:19 2007-01-31 Show GitHub Exploit DB Packet Storm
230287 7.5 危険 t-systems solutions for research gmbh - MyNews の include/themes/themefunc.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-0633 2012-12-20 18:19 2007-01-31 Show GitHub Exploit DB Packet Storm
230288 7.5 危険 x-dev - X-dev xNews の classes/class.news.php における SQL インジェクションの脆弱性 - CVE-2007-0630 2012-12-20 18:19 2007-01-31 Show GitHub Exploit DB Packet Storm
230289 6.4 警告 plain black - Plain Black WebGUI の www_purgeList メソッドにおける許可されていないアセットを削除される脆弱性 - CVE-2007-0629 2012-12-20 18:19 2007-01-31 Show GitHub Exploit DB Packet Storm
230290 4.3 警告 サン・マイクロシステムズ - Sun Java System Access Manager におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-0628 2012-12-20 18:19 2007-01-29 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
313341 9.8 CRITICAL
Network 		oretnom23 music_gallery_site A vulnerability classified as critical was found in SourceCodester Music Gallery Site 1.0. Affected by this vulnerability is an unknown functionality of the file /php-music/classes/Master.php?f=delet… CWE-89
SQL Injection 		CVE-2024-8336 2024-09-5 01:11 2024-08-30 Show GitHub Exploit DB Packet Storm
313342 - - - A sensitive information disclosure vulnerability exists in ZZCMS v.2023 and before within the eginfo.php file located at /3/E_bak5.1/upload/. When accessed with the query parameter phome=ShowPHPInfo,… - CVE-2024-44820 2024-09-5 01:09 2024-09-5 Show GitHub Exploit DB Packet Storm
313343 6.1 MEDIUM
Network 		cdevroe unmark unmark 1.9.2 is vulnerable to Cross Site Scripting (XSS) via application/views/marks/add_by_url.php. CWE-79
Cross-site Scripting 		CVE-2024-41349 2024-09-5 01:08 2024-08-30 Show GitHub Exploit DB Packet Storm
313344 9.8 CRITICAL
Network 		organizr organizr Organizr v1.90 was discovered to contain a SQL injection vulnerability via chat/settyping.php. CWE-89
SQL Injection 		CVE-2024-41372 2024-09-5 01:08 2024-08-30 Show GitHub Exploit DB Packet Storm
313345 6.1 MEDIUM
Network 		organizr organizr Organizr v1.90 is vulnerable to Cross Site Scripting (XSS) via api.php. CWE-79
Cross-site Scripting 		CVE-2024-41371 2024-09-5 01:08 2024-08-30 Show GitHub Exploit DB Packet Storm
313346 9.8 CRITICAL
Network 		organizr organizr Organizr v1.90 was discovered to contain a SQL injection vulnerability via chat/setlike.php. CWE-89
SQL Injection 		CVE-2024-41370 2024-09-5 01:08 2024-08-30 Show GitHub Exploit DB Packet Storm
313347 6.1 MEDIUM
Network 		phpipam phpipam phpipam 1.6 is vulnerable to Cross Site Scripting (XSS) via app\admin\import-export\import-load-data.php. CWE-79
Cross-site Scripting 		CVE-2024-41358 2024-09-5 01:07 2024-08-30 Show GitHub Exploit DB Packet Storm
313348 6.1 MEDIUM
Network 		baijunyao bjyadmin bjyadmin commit a560fd5 is vulnerable to Cross Site Scripting (XSS) via Public/statics/umeditor1_2_3/php/getContent.php CWE-79
Cross-site Scripting 		CVE-2024-41351 2024-09-5 01:07 2024-08-30 Show GitHub Exploit DB Packet Storm
313349 6.1 MEDIUM
Network 		baijunyao bjyadmin bjyadmin commit a560fd5 is vulnerable to Cross Site Scripting (XSS) via Public/statics/umeditor1_2_3/php/imageUp.php CWE-79
Cross-site Scripting 		CVE-2024-41350 2024-09-5 01:07 2024-08-30 Show GitHub Exploit DB Packet Storm
313350 6.1 MEDIUM
Network 		jpatokal openflights openflights commit 5234b5b is vulnerable to Cross-Site Scripting (XSS) via php/alsearch.php CWE-79
Cross-site Scripting 		CVE-2024-41348 2024-09-5 01:06 2024-08-30 Show GitHub Exploit DB Packet Storm