Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 1, 2026, 2:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
231801	5	警告	rdiffweb	-	rdiffWeb の rdw_helpers.py におけるディレクトリトラバーサルの脆弱性	-	CVE-2007-2747	2012-12-20 18:19	2007-05-17	Show	GitHub Exploit DB Packet Storm

231802	3.5	注意	plain black	-	Plain Black WebGUI の lib/WebGUI/Asset/Wobject/DataForm.pm における重要な情報を取得される脆弱性	-	CVE-2007-2746	2012-12-20 18:19	2007-05-17	Show	GitHub Exploit DB Packet Storm

231803	4.3	警告	vdesk	-	vDesk Webmail の printcal.pl におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-2745	2012-12-20 18:19	2007-05-17	Show	GitHub Exploit DB Packet Storm

231804	7.5	危険	precisionid barcode	-	PrecisionID_Barcode.dll の PrecisionID Barcode ActiveX コントロールにおけるスタックベースのバッファオーバーフローの脆弱性	-	CVE-2007-2744	2012-12-20 18:19	2007-05-17	Show	GitHub Exploit DB Packet Storm

231805	6.8	警告	xajax-project	-	xajax における脆弱性	-	CVE-2007-2740	2012-12-20 18:19	2007-05-17	Show	GitHub Exploit DB Packet Storm

231806	4.3	警告	xajax-project	-	xajax におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-2739	2012-12-20 18:19	2007-05-17	Show	GitHub Exploit DB Packet Storm

231807	7.5	危険	XOOPS	-	XOOPS 用の Glossaire モジュールにおける SQL インジェクションの脆弱性	-	CVE-2007-2738	2012-12-20 18:19	2007-05-17	Show	GitHub Exploit DB Packet Storm

231808	7.5	危険	XOOPS	-	Xoops 用の MyConference モジュールにおける SQL インジェクションの脆弱性	-	CVE-2007-2737	2012-12-20 18:19	2007-05-17	Show	GitHub Exploit DB Packet Storm

231809	7.5	危険	touteresa	-	Xoops 用の ResManager モジュールにおける SQL インジェクションの脆弱性	-	CVE-2007-2735	2012-12-20 18:19	2007-05-17	Show	GitHub Exploit DB Packet Storm

231810	10	危険	snaps gallery	-	Snaps! Gallery の Admin/users.php における任意のユーザ名を変更される脆弱性	-	CVE-2007-2715	2012-12-20 18:19	2007-05-16	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
313701	8.8	HIGH Network	filemanagerpro	file_manager	The File Manager Pro plugin for WordPress is vulnerable to arbitrary backup file downloads and uploads due to missing file type validation via the 'mk_file_folder_manager_shortcode' ajax action in al…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2024-8746	2024-10-18 03:22	2024-10-16	Show	GitHub Exploit DB Packet Storm

313702	8.8	HIGH Network	filemanagerpro	file_manager	The File Manager Pro plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 8.3.9. This is due to missing or incorrect nonce validation on the 'mk_file…	CWE-352 Origin Validation Error	CVE-2024-8507	2024-10-18 03:20	2024-10-16	Show	GitHub Exploit DB Packet Storm

313703	7.8	HIGH Local	microsoft	windows_11_24h2	Windows Kernel Elevation of Privilege Vulnerability	NVD-CWE-noinfo	CVE-2024-43527	2024-10-18 03:18	2024-10-9	Show	GitHub Exploit DB Packet Storm

313704	7.8	HIGH Local	microsoft	office 365_apps office_long_term_servicing_channel	Microsoft Office Visio Remote Code Execution Vulnerability	NVD-CWE-noinfo	CVE-2024-43505	2024-10-18 03:16	2024-10-9	Show	GitHub Exploit DB Packet Storm

313705	5.9	MEDIUM Network	-	-	An Improper Handling of Exceptional Conditions vulnerability in the Routing Protocol Daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows a network-based, unauthenticated attacker to…	CWE-755 Improper Handling of Exceptional Conditions	CVE-2024-47491	2024-10-18 03:15	2024-10-12	Show	GitHub Exploit DB Packet Storm

313706	6.5	MEDIUM Adjacent	gotenna	gotenna_pro	The goTenna Pro App allows unauthenticated attackers to remotely update the local public keys used for P2P and group messages. It is advised to update your app to the current release for enhanced e…	CWE-306 Missing Authentication for Critical Function	CVE-2024-47130	2024-10-18 03:15	2024-09-27	Show	GitHub Exploit DB Packet Storm

313707	4.3	MEDIUM Adjacent	gotenna	gotenna_pro	The goTenna Pro App does not inject extra characters into broadcasted frames to obfuscate the length of messages. This makes it possible to tell the length of the payload regardless of the encrypti…	CWE-203 Information Exposure Through Discrepancy	CVE-2024-47129	2024-10-18 03:15	2024-09-27	Show	GitHub Exploit DB Packet Storm

313708	4.3	MEDIUM Adjacent	gotenna	gotenna_pro	The goTenna Pro App encryption key name is always sent unencrypted when the key is shared over RF through a broadcast message. It is advised to share the encryption key via local QR for higher secu…	NVD-CWE-noinfo	CVE-2024-47128	2024-10-18 03:15	2024-09-27	Show	GitHub Exploit DB Packet Storm

313709	3.1	LOW Adjacent	gotenna	gotenna_pro	In the goTenna Pro App there is a vulnerability that makes it possible to inject any custom message with any GID and Callsign using a software defined radio in existing goTenna mesh networks. This …	CWE-287 Improper Authentication	CVE-2024-47127	2024-10-18 03:15	2024-09-27	Show	GitHub Exploit DB Packet Storm

313710	8.8	HIGH Adjacent	gotenna	gotenna_pro	The goTenna Pro App does not use SecureRandom when generating passwords for sharing cryptographic keys. The random function in use makes it easier for attackers to brute force this password if the …	CWE-338 Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG)	CVE-2024-47126	2024-10-18 03:15	2024-09-27	Show	GitHub Exploit DB Packet Storm