Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230341 3.6 注意 scribe - Scribe の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-0822 2012-12-20 18:34 2008-02-19 Show GitHub Exploit DB Packet Storm
230342 3.6 注意 plutostatus - PlutoStatus Locator の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-0819 2012-12-20 18:34 2008-02-19 Show GitHub Exploit DB Packet Storm
230343 6.4 警告 truc - TRUC の download.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-0814 2012-12-20 18:34 2008-02-18 Show GitHub Exploit DB Packet Storm
230344 5 警告 xpweb - XPWeb の Download.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-0813 2012-12-20 18:34 2008-02-18 Show GitHub Exploit DB Packet Storm
230345 9.3 危険 reality - PHPizabi の image.php における任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-0805 2012-12-20 18:34 2008-02-18 Show GitHub Exploit DB Packet Storm
230346 6.8 警告 Thecus - Thecus N5200Pro NAS Server の usrgetform.html における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-0804 2012-12-20 18:34 2008-02-18 Show GitHub Exploit DB Packet Storm
230347 7.5 危険 VWar - VWar の calendar.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-0753 2012-12-20 18:34 2008-02-13 Show GitHub Exploit DB Packet Storm
230348 10 危険 ソニー・コンピュータエンタテインメント - Sony ImageStation 用の SonyISUpload.cab におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-0748 2012-12-20 18:34 2008-02-13 Show GitHub Exploit DB Packet Storm
230349 7.5 危険 PreProject.com - PreProjects.com Pre Hotels & Resorts Management System の user_login.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-0744 2012-12-20 18:34 2008-02-12 Show GitHub Exploit DB Packet Storm
230350 7.5 危険 powerscripts - PowerScripts PowerNews におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-0742 2012-12-20 18:34 2008-02-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
312121 4.3 MEDIUM
Network 		splunk splunk In Splunk Enterprise versions 9.3.0, 9.2.3, and 9.1.6, a low-privileged user that does not hold the "admin" or "power" Splunk roles could view images on the machine that runs Splunk Enterprise by usi… NVD-CWE-noinfo
CVE-2024-45734 2024-10-17 07:20 2024-10-15 Show GitHub Exploit DB Packet Storm
312122 6.5 MEDIUM
Network 		splunk splunk
splunk_cloud_platform 		In Splunk Enterprise versions below 9.3.1, 9.2.3, and 9.1.6 and Splunk Cloud Platform versions below 9.2.2403.107, 9.1.2312.204, and 9.1.2312.111, a low-privileged user that does not hold the "admin"… NVD-CWE-noinfo
CVE-2024-45736 2024-10-17 07:19 2024-10-15 Show GitHub Exploit DB Packet Storm
312123 3.5 LOW
Network 		splunk splunk
splunk_cloud_platform 		In Splunk Enterprise versions below 9.3.1, 9.2.3, and 9.1.6 and Splunk Cloud Platform versions below 9.2.2403.108, and 9.1.2312.204, a low-privileged user that does not hold the "admin" or "power" Sp… CWE-352
 Origin Validation Error 		CVE-2024-45737 2024-10-17 07:18 2024-10-15 Show GitHub Exploit DB Packet Storm
312124 7.5 HIGH
Network 		- - An Out-of-Bounds Read vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated network-based attacker sending a specifically … CWE-125
Out-of-bounds Read 		CVE-2024-39516 2024-10-17 07:15 2024-10-10 Show GitHub Exploit DB Packet Storm
312125 8.8 HIGH
Network 		blood_bank_system_project blood_bank_system A vulnerability, which was classified as critical, was found in code-projects Blood Bank System 1.0. Affected is an unknown function of the file reset.php. The manipulation of the argument useremail … CWE-89
SQL Injection 		CVE-2024-9894 2024-10-17 07:13 2024-10-12 Show GitHub Exploit DB Packet Storm
312126 5.4 MEDIUM
Network 		oretnom23 online_eyewear_shop A vulnerability, which was classified as problematic, was found in SourceCodester Online Eyewear Shop 1.0. Affected is an unknown function of the file /admin/?page=inventory/view_inventory&id=2. The … CWE-79
Cross-site Scripting 		CVE-2024-9906 2024-10-17 07:12 2024-10-13 Show GitHub Exploit DB Packet Storm
312127 8.8 HIGH
Network 		oretnom23 online_eyewear_shop A vulnerability, which was classified as critical, has been found in SourceCodester Online Eyewear Shop 1.0. This issue affects some unknown processing of the file /admin/?page=inventory/view_invento… CWE-89
SQL Injection 		CVE-2024-9905 2024-10-17 07:12 2024-10-13 Show GitHub Exploit DB Packet Storm
312128 9.8 CRITICAL
Network 		usualtool usualtoolcms A vulnerability, which was classified as critical, has been found in HuangDou UTCMS V9. Affected by this issue is some unknown functionality of the file app/modules/ut-cac/admin/cli.php. The manipula… CWE-78
OS Command  		CVE-2024-9916 2024-10-17 07:11 2024-10-14 Show GitHub Exploit DB Packet Storm
312129 9.8 CRITICAL
Network 		ragic enterprise_cloud_database Enterprise Cloud Database from Ragic does not authenticate access to specific functionality, allowing unauthenticated remote attackers to use this functionality to obtain any user's session cookie. CWE-306
Missing Authentication for Critical Function 		CVE-2024-9984 2024-10-17 07:03 2024-10-15 Show GitHub Exploit DB Packet Storm
312130 7.5 HIGH
Network 		ragic enterprise_cloud_database Enterprise Cloud Database from Ragic does not properly validate a specific page parameter, allowing unauthenticated remote attackers to exploit this vulnerability to read arbitrary system files. CWE-22
Path Traversal 		CVE-2024-9983 2024-10-17 07:03 2024-10-15 Show GitHub Exploit DB Packet Storm