Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 27, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230341	6.8	警告	Thecus	-	Thecus N5200Pro NAS Server の usrgetform.html における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2008-0804	2012-12-20 18:34	2008-02-18	Show	GitHub Exploit DB Packet Storm

230342	7.5	危険	VWar	-	VWar の calendar.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-0753	2012-12-20 18:34	2008-02-13	Show	GitHub Exploit DB Packet Storm

230343	10	危険	ソニー・コンピュータエンタテインメント	-	Sony ImageStation 用の SonyISUpload.cab におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-0748	2012-12-20 18:34	2008-02-13	Show	GitHub Exploit DB Packet Storm

230344	7.5	危険	PreProject.com	-	PreProjects.com Pre Hotels & Resorts Management System の user_login.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-0744	2012-12-20 18:34	2008-02-12	Show	GitHub Exploit DB Packet Storm

230345	7.5	危険	powerscripts	-	PowerScripts PowerNews におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-0742	2012-12-20 18:34	2008-02-12	Show	GitHub Exploit DB Packet Storm

230346	7.5	危険	shoppingtree	-	CP の admin/SA_shipFedExMeter.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-0739	2012-12-20 18:34	2008-02-12	Show	GitHub Exploit DB Packet Storm

230347	7.5	危険	shoppingtree	-	CP における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-0738	2012-12-20 18:34	2008-02-12	Show	GitHub Exploit DB Packet Storm

230348	7.5	危険	shoppingtree	-	CP の admin/utilities_ConfigHelp.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-0737	2012-12-20 18:34	2008-02-12	Show	GitHub Exploit DB Packet Storm

230349	5	警告	shoppingtree	-	CP の admin/SA_shipFedExMeter.asp におけるパスを取得される脆弱性	CWE-200 情報漏えい	CVE-2008-0736	2012-12-20 18:34	2008-02-12	Show	GitHub Exploit DB Packet Storm

230350	10	危険	titan	-	Titan FTP Server の FTP サービスなどにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-0725	2012-12-20 18:34	2008-02-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
312221	6.5	MEDIUM Network	gitlab	gitlab	An issue was discovered in GitLab CE/EE affecting all versions starting from 8.16 prior to 17.2.9, starting from 17.3 prior to 17.3.5, and starting from 17.4 prior to 17.4.2, which allows deploy keys…	CWE-863 Incorrect Authorization	CVE-2024-9623	2024-10-17 01:59	2024-10-10	Show	GitHub Exploit DB Packet Storm

312222	5.4	MEDIUM Network	jetbrains	youtrack	In JetBrains YouTrack before 2024.3.46677 improper access control allowed users with project update permission to delete applications via API	CWE-862 Missing Authorization	CVE-2024-48902	2024-10-17 01:57	2024-10-10	Show	GitHub Exploit DB Packet Storm

312223	9.8	CRITICAL Network	seur	seur	The SEUR plugin, in its versions prior to 2.5.11, is vulnerable to time-based SQL injection through the use of the ‘id_order’ parameter of the ‘/modules/seur/ajax/saveCodFee.php’ endpoint.	CWE-89 SQL Injection	CVE-2024-9201	2024-10-17 01:55	2024-10-10	Show	GitHub Exploit DB Packet Storm

312224	5.4	MEDIUM Network	gitlab	gitlab	A cross-site scripting issue has been discovered in GitLab affecting all versions starting from 17.1 prior 17.2.9, starting from 17.3 prior to 17.3.5, and starting from 17.4 prior to 17.4.2. When add…	CWE-79 Cross-site Scripting	CVE-2024-6530	2024-10-17 01:53	2024-10-10	Show	GitHub Exploit DB Packet Storm

312225	6.7	MEDIUM Local	openatom	openharmony	in OpenHarmony v4.1.0 allow a local attacker with high privileges arbitrary code execution in pre-installed apps through use after free.	CWE-416 Use After Free	CVE-2024-39831	2024-10-17 01:53	2024-10-8	Show	GitHub Exploit DB Packet Storm

312226	5.5	MEDIUM Local	openatom	openharmony	in OpenHarmony v4.1.0 and prior versions allow a local attacker cause information leak through out-of-bounds Read.	CWE-125 Out-of-bounds Read	CVE-2024-39806	2024-10-17 01:49	2024-10-8	Show	GitHub Exploit DB Packet Storm

312227	8.8	HIGH Network	dlink	dir-619l_firmware	A vulnerability was found in D-Link DIR-619L B1 2.06. It has been declared as critical. This vulnerability affects the function formEasySetupWWConfig of the file /goform/formEasySetupWWConfig. The ma…	CWE-120 Classic Buffer Overflow	CVE-2024-9782	2024-10-17 01:44	2024-10-10	Show	GitHub Exploit DB Packet Storm

312228	4.8	MEDIUM Network	wikimedia	apex	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in The Wikimedia Foundation Mediawiki - Apex skin allows Stored XSS.This issue affects Mediaw…	CWE-79 Cross-site Scripting	CVE-2024-47840	2024-10-17 01:44	2024-10-5	Show	GitHub Exploit DB Packet Storm

312229	8.8	HIGH Network	dlink	dir-619l_firmware	A vulnerability was found in D-Link DIR-619L B1 2.06. It has been rated as critical. This issue affects the function formLogDnsquery of the file /goform/formLogDnsquery. The manipulation of the argum…	CWE-120 Classic Buffer Overflow	CVE-2024-9783	2024-10-17 01:43	2024-10-10	Show	GitHub Exploit DB Packet Storm

312230	6.1	MEDIUM Network	mediawiki	cargo	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in The Wikimedia Foundation Mediawiki - Cargo allows Cross-Site Scripting (XSS).This issue af…	CWE-79 Cross-site Scripting	CVE-2024-47847	2024-10-17 01:42	2024-10-5	Show	GitHub Exploit DB Packet Storm