Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 24, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230561 7.5 危険 scribe - Ben Ng Scribe の forum.php における regged/ 配下の特定のファイルへ任意の PHP コードを挿入される脆弱性 CWE-94
コード・インジェクション 		CVE-2007-5822 2012-12-20 18:33 2007-11-5 Show GitHub Exploit DB Packet Storm
230562 7.6 危険 sblog - sBlog の blocks_edit_do.php におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2007-5818 2012-12-20 18:33 2007-11-5 Show GitHub Exploit DB Packet Storm
230563 10 危険 SonicWALL - SonicWall SSL-VPN 200 および SSL-VPN 2000/4000 の WebCacheCleaner ActiveX コントロールにおける絶対パストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-5815 2012-12-20 18:33 2007-11-5 Show GitHub Exploit DB Packet Storm
230564 9.3 危険 SonicWALL - SonicWall SSL-VPN NetExtender NELaunchCtrl ActiveX コントロールにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-5814 2012-12-20 18:33 2007-11-5 Show GitHub Exploit DB Packet Storm
230565 6.8 警告 ssreader - SSReader の Ultra Star Reader ActiveX コントロールにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-5807 2012-12-20 18:33 2007-11-5 Show GitHub Exploit DB Packet Storm
230566 7.5 危険 work system e-commerce - WORK system e-commerce における脆弱性 CWE-noinfo
情報不足 		CVE-2007-5801 2012-12-20 18:33 2007-11-2 Show GitHub Exploit DB Packet Storm
230567 6.8 警告 tom willmot - WordPress 用の BackUpWordPress プラグインにおける PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-5800 2012-12-20 18:33 2007-11-2 Show GitHub Exploit DB Packet Storm
230568 7.1 危険 stonesoft - Stonesoft StoneGate IPS におけるシステムへ侵入される脆弱性 CWE-DesignError
CVE-2007-5793 2012-12-20 18:33 2007-11-1 Show GitHub Exploit DB Packet Storm
230569 7.1 危険 Vonage - Vonage Motorola Phone Adapter VT 2142-VD における盗聴される脆弱性 CWE-310
暗号の問題 		CVE-2007-5792 2012-12-20 18:33 2007-11-1 Show GitHub Exploit DB Packet Storm
230570 10 危険 Vonage - Vonage Motorola Phone Adapter VT 2142-VD における偽造された INVITE メッセージを送信される脆弱性 CWE-287
不適切な認証 		CVE-2007-5791 2012-12-20 18:33 2007-11-1 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 24, 2026, 4:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
312841 6.5 MEDIUM
Network 		ihedvall mdf_library Library MDF (mdflib) v2.1 is vulnerable to a heap-based buffer overread via a crafted mdf4 file is parsed using the ReadData function CWE-787
 Out-of-bounds Write 		CVE-2024-41445 2024-10-2 04:03 2024-09-26 Show GitHub Exploit DB Packet Storm
312842 5.5 MEDIUM
Local 		devolutions remote_desktop_manager An information exposure in Devolutions Remote Desktop Manager 2024.2.20.0 and earlier on Windows allows local attackers with access to system logs to obtain session credentials via passwords included… CWE-532
 Inclusion of Sensitive Information in Log Files 		CVE-2024-7421 2024-10-2 03:36 2024-09-26 Show GitHub Exploit DB Packet Storm
312843 9.8 CRITICAL
Network 		meshtastic meshtastic_firmware Meshtastic is an open source, off-grid, decentralized, mesh network. Meshtastic uses MQTT to communicate over an internet connection to a shared or private MQTT Server. Nodes can communicate directly… CWE-863
 Incorrect Authorization 		CVE-2024-47078 2024-10-2 03:29 2024-09-26 Show GitHub Exploit DB Packet Storm
312844 8.6 HIGH
Network 		circutor q-smt_firmware CIRCUTOR Q-SMT in its firmware version 1.0.4, could be affected by a denial of service (DoS) attack if an attacker with access to the web service bypasses the authentication mechanisms on the login p… CWE-1284
 Improper Validation of Specified Quantity in Input 		CVE-2024-8887 2024-10-2 02:30 2024-09-18 Show GitHub Exploit DB Packet Storm
312845 9.8 CRITICAL
Network 		scriptcase scriptcase Vulnerability in the Scriptcase application version 9.4.019, which involves the arbitrary upload of a file via /scriptcase/devel/lib/third/jquery_plugin/jQuery-File-Upload/server/php/ via a POST requ… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2024-8940 2024-10-2 02:21 2024-09-25 Show GitHub Exploit DB Packet Storm
312846 9.8 CRITICAL
Network 		doverfuelingsolutions progauge_maglink_lx_console_firmware
progauge_maglink_lx4_console_firmware 		A specially crafted POST request to the ProGauge MAGLINK LX CONSOLE UTILITY sub-menu can allow a remote attacker to inject arbitrary commands. CWE-77
Command Injection 		CVE-2024-43693 2024-10-2 02:17 2024-09-25 Show GitHub Exploit DB Packet Storm
312847 7.8 HIGH
Local 		telerik ui_for_wpf In Progress Telerik UI for WinForms versions prior to 2024 Q3 (2024.3.924), a command injection attack is possible through improper neutralization of hyperlink elements. CWE-77
Command Injection 		CVE-2024-7679 2024-10-2 02:16 2024-09-25 Show GitHub Exploit DB Packet Storm
312848 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix bridge mode operations when there are no VFs Currently, trying to set the bridge mode attribute when numvfs=0 leads… CWE-476
 NULL Pointer Dereference 		CVE-2024-46857 2024-10-2 02:10 2024-09-27 Show GitHub Exploit DB Packet Storm
312849 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: firmware: qcom: uefisecapp: Fix deadlock in qcuefi_acquire() If the __qcuefi pointer is not set, then in the original code, we wo… CWE-667
 Improper Locking 		CVE-2024-46868 2024-10-2 02:09 2024-09-27 Show GitHub Exploit DB Packet Storm
312850 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: drm/xe/client: fix deadlock in show_meminfo() There is a real deadlock as well as sleeping in atomic() bug in here, if the bo put… CWE-667
 Improper Locking 		CVE-2024-46867 2024-10-2 02:09 2024-09-27 Show GitHub Exploit DB Packet Storm