Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 23, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
231471	7.5	危険	sam crew	-	Sam Crew MyBlog の games.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-1990	2012-12-20 18:19	2007-04-12	Show	GitHub Exploit DB Packet Storm

231472	4.3	警告	phpecho cms	-	PHPEcho CMS の kernel/filters.inc.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-1988	2012-12-20 18:19	2007-04-11	Show	GitHub Exploit DB Packet Storm

231473	7.5	危険	phpexplorator	-	phpexplorator の phpexplorator.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-1985	2012-12-20 18:19	2007-04-11	Show	GitHub Exploit DB Packet Storm

231474	7.5	危険	really simple php and ajax	-	RSPA における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-1982	2012-12-20 18:19	2007-04-11	Show	GitHub Exploit DB Packet Storm

231475	7.5	危険	有限会社ブルームーン	-	XOOPS 用の PopnupBlog モジュールにおける SQL インジェクションの脆弱性	-	CVE-2007-1979	2012-12-20 18:19	2007-04-11	Show	GitHub Exploit DB Packet Storm

231476	7.5	危険	slaed	-	SLAED CMS における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-1975	2012-12-20 18:19	2007-04-11	Show	GitHub Exploit DB Packet Storm

231477	7.5	危険	wf-sections XOOPS	-	Xoops モジュールで使用される WF-Section における SQL インジェクションの脆弱性	-	CVE-2007-1974	2012-12-20 18:19	2007-04-9	Show	GitHub Exploit DB Packet Storm

231478	4.3	警告	sam crew	-	Sam Crew MyBlog の admin/modify.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-1969	2012-12-20 18:19	2007-04-11	Show	GitHub Exploit DB Packet Storm

231479	6.8	警告	sam crew	-	Sam Crew MyBlog の games.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-1968	2012-12-20 18:19	2007-04-11	Show	GitHub Exploit DB Packet Storm

231480	7.5	危険	XOOPS	-	XOOPS 用の WF-Snippets モジュールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-1962	2012-12-20 18:19	2007-04-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
313901	5.9	MEDIUM Network	consensys	gnark-crypto	gnark is a fast zk-SNARK library that offers a high-level API to design circuits. Prior to version 0.11.0, commitments to private witnesses in Groth16 as implemented break the zero-knowledge property…	NVD-CWE-noinfo	CVE-2024-45040	2024-09-20 09:13	2024-09-6	Show	GitHub Exploit DB Packet Storm

313902	6.2	MEDIUM Local	consensys	gnark-crypto	gnark is a fast zk-SNARK library that offers a high-level API to design circuits. Versions prior to 0.11.0 have a soundness issue - in case of multiple commitments used inside the circuit the prover …	NVD-CWE-noinfo	CVE-2024-45039	2024-09-20 09:12	2024-09-6	Show	GitHub Exploit DB Packet Storm

313903	8.8	HIGH Network	thimpress	wp_events_manager	The WP Events Manager plugin for WordPress is vulnerable to time-based SQL Injection via the ‘order’ parameter in all versions up to, and including, 2.1.11 due to insufficient escaping on the user su…	CWE-89 SQL Injection	CVE-2024-7717	2024-09-20 09:08	2024-08-31	Show	GitHub Exploit DB Packet Storm

313904	5.3	MEDIUM Network	wpcerber	cerber_security_antispam_\&_malware_scan	The WP Cerber Security plugin for WordPress is vulnerable to IP Protection bypass in versions up to, and including 9.4 due to the plugin improperly checking for a visitor's IP address. This makes it …	NVD-CWE-noinfo	CVE-2022-4100	2024-09-20 09:08	2024-08-31	Show	GitHub Exploit DB Packet Storm

313905	5.3	MEDIUM Network	youtag	ip-vault-wp-firewall	The IP Vault – WP Firewall plugin for WordPress is vulnerable to IP Address Spoofing in versions up to, and including, 1.1. This is due to insufficient restrictions on where the IP Address informatio…	NVD-CWE-Other	CVE-2022-4536	2024-09-20 09:04	2024-08-31	Show	GitHub Exploit DB Packet Storm

313906	6.3	MEDIUM Network	microsoft	edge_chromium	Microsoft Edge (HTML-based) Memory Corruption Vulnerability	CWE-787 Out-of-bounds Write	CVE-2024-38207	2024-09-20 07:15	2024-08-24	Show	GitHub Exploit DB Packet Storm

313907	7.8	HIGH Local	microsoft	edge_chromium	Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability	CWE-125 Out-of-bounds Read	CVE-2024-38210	2024-09-20 07:15	2024-08-23	Show	GitHub Exploit DB Packet Storm

313908	7.8	HIGH Local	microsoft	edge_chromium	Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability	CWE-843 Type Confusion	CVE-2024-38209	2024-09-20 07:15	2024-08-23	Show	GitHub Exploit DB Packet Storm

313909	6.1	MEDIUM Network	microsoft	edge	Microsoft Edge for Android Spoofing Vulnerability	CWE-79 Cross-site Scripting	CVE-2024-38208	2024-09-20 07:15	2024-08-23	Show	GitHub Exploit DB Packet Storm

313910	5.4	MEDIUM Network	wpbeaveraddons	powerpack_lite_for_beaver_builder	The Beaver Builder – WordPress Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘type’ parameter in all versions up to, and including, 2.8.3.5 due to insufficien…	CWE-79 Cross-site Scripting	CVE-2024-7895	2024-09-20 07:13	2024-08-29	Show	GitHub Exploit DB Packet Storm