Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 18, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
231381 10 危険 VMware - EMC VMware Workstation などの SC dhcpd および DHCP サーバにおける整数オーバーフローの脆弱性 CWE-119
CWE-189
CVE-2007-0062 2012-12-20 18:19 2007-09-21 Show GitHub Exploit DB Packet Storm
231382 10 危険 VMware - EMC VMware Workstation などの DHCP サーバにおける任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2007-0061 2012-12-20 18:19 2007-09-21 Show GitHub Exploit DB Packet Storm
231383 7.5 危険 vizayn haber - Vizayn Haber の haberdetay.asp における SQL インジェクションの脆弱性 - CVE-2007-0052 2012-12-20 18:19 2007-01-4 Show GitHub Exploit DB Packet Storm
231384 6.8 警告 VideoLAN - VideoLAN VLC の CDDA プラグイなどにおけるフォーマットストリングの脆弱性 CWE-134
書式文字列の問題 		CVE-2007-0017 2012-12-20 18:19 2007-01-2 Show GitHub Exploit DB Packet Storm
231385 4.4 警告 サン・マイクロシステムズ - ChainKey Java Code Protection における Java クラスファイルをデコンパイルされる脆弱性 CWE-310
暗号の問題 		CVE-2007-0014 2012-12-20 18:19 2007-01-16 Show GitHub Exploit DB Packet Storm
231386 7.8 危険 Canonical - Ubuntu 上で稼動する Linux Kernel の skge ドライバにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2006-7229 2012-12-20 18:19 2007-11-14 Show GitHub Exploit DB Packet Storm
231387 7.8 危険 SAP - SAP SAPLPD におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-7220 2012-12-20 18:19 2007-07-9 Show GitHub Exploit DB Packet Storm
231388 4.3 警告 ZoneO-soft - phpTrafficA におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-7209 2012-12-20 18:19 2007-06-26 Show GitHub Exploit DB Packet Storm
231389 6.8 警告 republique francaise - Agora の modules/Mysqlfinder/MysqlfinderAdmin.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-7194 2012-12-20 18:19 2007-04-18 Show GitHub Exploit DB Packet Storm
231390 4.3 警告 web-app.net - web-app.net WebAPP の cgi-bin/user-lib/topics.pl におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-7190 2012-12-20 18:19 2007-04-2 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
314351 4.3 MEDIUM
Network 		discourse discourse_calendar discourse-calendar is a discourse plugin which adds the ability to create a dynamic calendar in the first post of a topic. The limit on region value length is too generous. This allows a malicious ac… CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2024-21658 2024-09-5 23:39 2024-08-31 Show GitHub Exploit DB Packet Storm
314352 5.4 MEDIUM
Network 		azurecurve toggle_show\/hide Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in azurecurve azurecurve Toggle Show/Hide allows Stored XSS.This issue affects azurecurve Tog… CWE-79
Cross-site Scripting 		CVE-2024-43961 2024-09-5 23:39 2024-08-30 Show GitHub Exploit DB Packet Storm
314353 9.8 CRITICAL
Network 		semtekyazilim semtek_sempos Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Semtek Informatics Software Consulting Inc. Semtek Sempos allows SQL Injection.This issue affects… CWE-89
SQL Injection 		CVE-2024-7078 2024-09-5 23:38 2024-09-5 Show GitHub Exploit DB Packet Storm
314354 7.2 HIGH
Network 		zyxel zld_firmware A post-authentication command injection vulnerability in Zyxel ATP series firmware versions from V5.00 through V5.38, USG FLEX series firmware versions from V5.00 through V5.38, USG FLEX 50(W) series… CWE-78
OS Command  		CVE-2024-42059 2024-09-5 23:38 2024-09-3 Show GitHub Exploit DB Packet Storm
314355 7.2 HIGH
Network 		zyxel zld_firmware A post-authentication command injection vulnerability in Zyxel ATP series firmware versions from V4.32 through V5.38, USG FLEX series firmware versions from V4.50 through V5.38, USG FLEX 50(W) series… CWE-78
OS Command  		CVE-2024-42060 2024-09-5 23:37 2024-09-3 Show GitHub Exploit DB Packet Storm
314356 - - - Webmin before 2.202 and Virtualmin before 7.20.2 allow a network traffic loop via spoofed UDP packets on port 10000. - CVE-2024-45692 2024-09-5 23:35 2024-09-5 Show GitHub Exploit DB Packet Storm
314357 4.9 MEDIUM
Network 		zyxel zld_firmware A buffer overflow vulnerability in the CGI program of Zyxel ATP series firmware versions from V4.32 through V5.38, USG FLEX series firmware versions from V4.50 through V5.38, USG FLEX 50(W) series fi… CWE-120
Classic Buffer Overflow 		CVE-2024-6343 2024-09-5 23:35 2024-09-3 Show GitHub Exploit DB Packet Storm
314358 7.2 HIGH
Network 		zyxel zld_firmware A post-authentication command injection vulnerability in Zyxel ATP series firmware versions from V4.60 through V5.38 and USG FLEX series firmware versions from V4.60 through V5.38 could allow an auth… CWE-78
OS Command  		CVE-2024-7203 2024-09-5 23:33 2024-09-3 Show GitHub Exploit DB Packet Storm
314359 6.1 MEDIUM
Network 		zyxel zld_firmware A reflected cross-site scripting (XSS) vulnerability in the CGI program "dynamic_script.cgi" of Zyxel ATP series firmware versions from V4.32 through V5.38, USG FLEX series firmware versions from V4.… CWE-79
Cross-site Scripting 		CVE-2024-42061 2024-09-5 23:32 2024-09-3 Show GitHub Exploit DB Packet Storm
314360 9.8 CRITICAL
Network 		linen linen Linen before cd37c3e does not verify that the domain is linen.dev or www.linen.dev when resetting a password. This occurs in create in apps/web/pages/api/forgot-password/index.ts. NVD-CWE-Other
CVE-2024-45522 2024-09-5 23:29 2024-09-2 Show GitHub Exploit DB Packet Storm