Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 18, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230671 7.5 危険 phpecho cms - PHPEcho CMS の modules/admin/modules/gallery.php における SQL インジェクションの脆弱性 - CVE-2007-2866 2012-12-20 18:19 2007-05-25 Show GitHub Exploit DB Packet Storm
230672 9.3 危険 phpPgAdmin - phpPgAdmin の sqledit.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-2865 2012-12-20 18:19 2007-05-25 Show GitHub Exploit DB Packet Storm
230673 7.5 危険 saxon - SAXON における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2861 2012-12-20 18:19 2007-05-24 Show GitHub Exploit DB Packet Storm
230674 7.5 危険 simpgb - SimpGB における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2859 2012-12-20 18:19 2007-05-24 Show GitHub Exploit DB Packet Storm
230675 6.5 警告 phpBB - phpBB 用の IP-Tracking Mod における SQL インジェクションの脆弱性 - CVE-2007-2858 2012-12-20 18:19 2007-05-24 Show GitHub Exploit DB Packet Storm
230676 7.5 危険 zakkis technology corporation - ABC Excel Parser の sample/xls2mysql における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2857 2012-12-20 18:19 2007-05-24 Show GitHub Exploit DB Packet Storm
230677 10 危険 sky software - Sky Software Shell MegaPack ActiveX の shComboBox ActiveX コントロールにおけるスタックベースのバッファオーバーフローの脆弱性 - CVE-2007-2848 2012-12-20 18:19 2007-05-24 Show GitHub Exploit DB Packet Storm
230678 6.8 警告 unicon-imc2 - unicon-imc2 の ImmModules/cce/ におけるスタックベースのバッファオーバーフローの脆弱性 - CVE-2007-2835 2012-12-20 18:19 2007-07-1 Show GitHub Exploit DB Packet Storm
230679 9.3 危険 wavelink media - TutorialCMS における認証を回避される脆弱性 - CVE-2007-2822 2012-12-20 18:19 2007-05-22 Show GitHub Exploit DB Packet Storm
230680 7.5 危険 WordPress.org - WordPress の wp-admin/admin-ajax.php における SQL インジェクションの脆弱性 - CVE-2007-2821 2012-12-20 18:19 2007-05-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
313401 7.5 HIGH
Network 		nt-ware uniflow_smartclient
uniflow_online_print_\&_scan
uniflow_online 		The registration process of uniFLOW Online (NT-ware product) apps, prior to and including version 2024.1.0, can be compromised when email login is enabled on the tenant. Those tenants utilising email… NVD-CWE-Other
CVE-2024-1621 2024-09-17 23:12 2024-09-3 Show GitHub Exploit DB Packet Storm
313402 7.8 HIGH
Local 		vmware fusion VMware Fusion (13.x before 13.6) contains a code-execution vulnerability due to the usage of an insecure environment variable. A malicious actor with standard user privileges may exploit this vulnera… NVD-CWE-noinfo
CVE-2024-38811 2024-09-17 22:33 2024-09-3 Show GitHub Exploit DB Packet Storm
313403 9.8 CRITICAL
Network 		avtech avm1203_firmware Commands can be injected over the network and executed without authentication. CWE-77
Command Injection 		CVE-2024-7029 2024-09-17 22:30 2024-08-3 Show GitHub Exploit DB Packet Storm
313404 7.8 HIGH
Local 		w1.fi wpa_supplicant An issue was discovered in Ubuntu wpa_supplicant that resulted in loading of arbitrary shared objects, which allows a local unprivileged attacker to escalate privileges to the user that wpa_supplican… CWE-427
 Uncontrolled Search Path Element 		CVE-2024-5290 2024-09-17 22:09 2024-08-7 Show GitHub Exploit DB Packet Storm
313405 6.5 MEDIUM
Network 		fish-shop syntax-check fish-shop/syntax-check is a GitHub action for syntax checking fish shell files. Improper neutralization of delimiters in the `pattern` input (specifically the command separator `;` and command substi… NVD-CWE-Other
CVE-2024-42482 2024-09-17 21:20 2024-08-13 Show GitHub Exploit DB Packet Storm
313406 7.8 HIGH
Local 		nvidia gpu_display_driver
virtual_gpu
cloud_gaming 		NVIDIA GPU Display Driver for Windows contains a vulnerability in the user mode layer, where an unprivileged regular user can cause an out-of-bounds read. A successful exploit of this vulnerability m… CWE-125
Out-of-bounds Read 		CVE-2024-0107 2024-09-17 21:10 2024-08-9 Show GitHub Exploit DB Packet Storm
313407 7.1 HIGH
Local 		huawei emui
harmonyos 		Access control vulnerability in the security verification module mpact: Successful exploitation of this vulnerability will affect integrity and confidentiality. NVD-CWE-noinfo
CVE-2024-42033 2024-09-17 21:06 2024-08-8 Show GitHub Exploit DB Packet Storm
313408 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlink: Initialise extack before use in ACKs Add missing extack initialisation when ACKing BATCH_BEGIN and BATCH_EN… NVD-CWE-noinfo
CVE-2024-44945 2024-09-17 20:42 2024-08-31 Show GitHub Exploit DB Packet Storm
313409 8.8 HIGH
Network 		syscomgo omflow OMFLOW from The SYSCOM Group does not properly restrict access to the system settings modification functionality, allowing remote attackers with regular privileges to update system settings or create… NVD-CWE-Other
CVE-2024-8779 2024-09-17 20:27 2024-09-16 Show GitHub Exploit DB Packet Storm
313410 9.8 CRITICAL
Network 		code-projects crud_operation_system A vulnerability was found in code-projects Crud Operation System 1.0. It has been rated as critical. This issue affects some unknown processing of the file savedata.php. The manipulation of the argum… CWE-89
SQL Injection 		CVE-2024-8868 2024-09-17 19:59 2024-09-15 Show GitHub Exploit DB Packet Storm