Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 28, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
231861 4.9 警告 レッドハット - lha の lharc.c におけるファイルを読み書きされる脆弱性 - CVE-2007-2030 2012-12-20 18:19 2007-04-16 Show GitHub Exploit DB Packet Storm
231862 7.5 危険 PhpWiki - PhpWiki の lib/plugin/UpLoad.php における二重拡張子を伴う任意の PHP ファイルを実行される脆弱性 - CVE-2007-2025 2012-12-20 18:19 2007-04-13 Show GitHub Exploit DB Packet Storm
231863 6.8 警告 PhpWiki - PhpWiki の lib/plugin/UpLoad.php における任意の PHP ファイルアップロードされる脆弱性 - CVE-2007-2024 2012-12-20 18:19 2007-04-13 Show GitHub Exploit DB Packet Storm
231864 7.2 危険 secustick - Secustick USB フラッシュドライブの USB20.dll における認証要件を回避される脆弱性 - CVE-2007-2023 2012-12-20 18:19 2007-04-13 Show GitHub Exploit DB Packet Storm
231865 7.5 危険 pineapple technologies - Pineapple Technologies Lore における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2021 2012-12-20 18:19 2007-04-12 Show GitHub Exploit DB Packet Storm
231866 7.5 危険 tomex - phpGalleryScript の init.gallery.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2019 2012-12-20 18:19 2007-04-12 Show GitHub Exploit DB Packet Storm
231867 4.3 警告 The phpMyAdmin Project - phpMyAdmin の mysql/phpinfo.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-2016 2012-12-20 18:19 2007-04-12 Show GitHub Exploit DB Packet Storm
231868 6.8 警告 request it - Request It の index.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2015 2012-12-20 18:19 2007-04-12 Show GitHub Exploit DB Packet Storm
231869 6.8 警告 simpcms - SimpCMS Light の filename.asp における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2009 2012-12-20 18:19 2007-04-12 Show GitHub Exploit DB Packet Storm
231870 7.5 危険 pl-php - pL-PHP の admin.php におけるディレクトリトラバーサルの脆弱性 - CVE-2007-2008 2012-12-20 18:19 2007-04-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
313901 8.8 HIGH
Network 		planet gs-4210-24p2s_firmware
gs-4210-24pl4c_firmware 		Certain switch models from PLANET Technology have a web application that is vulnerable to Cross-Site Request Forgery (CSRF). An unauthenticated remote attacker can trick a user into visiting a malici… CWE-352
 Origin Validation Error 		CVE-2024-8458 2024-10-4 23:42 2024-09-30 Show GitHub Exploit DB Packet Storm
313902 7.5 HIGH
Network 		echostar fusion Credentials to access device configuration were transmitted using an unencrypted protocol. These credentials would allow read-only access to network configuration information and terminal configurati… NVD-CWE-noinfo
CVE-2024-42495 2024-10-4 23:37 2024-09-6 Show GitHub Exploit DB Packet Storm
313903 4.6 MEDIUM
Physics 		echostar fusion Credentials to access device configuration information stored unencrypted in flash memory. These credentials would allow read-only access to network configuration information and terminal configurati… CWE-522
 Insufficiently Protected Credentials 		CVE-2024-39278 2024-10-4 23:36 2024-09-6 Show GitHub Exploit DB Packet Storm
313904 - - - Scriptcase v9.10.023 and before is vulnerable to Remote Code Execution (RCE) via the nm_zip function. - CVE-2024-46080 2024-10-4 22:51 2024-10-2 Show GitHub Exploit DB Packet Storm
313905 - - - A vulnerability classified as problematic has been found in OFCMS 1.1.2. This affects the function add of the file /admin/system/dict/add.json?sqlid=system.dict.save. The manipulation of the argument… CWE-79
Cross-site Scripting 		CVE-2024-9411 2024-10-4 22:51 2024-10-2 Show GitHub Exploit DB Packet Storm
313906 - - - Scriptcase v9.10.023 and before is vulnerable to Cross Site Scripting (XSS). An authenticated user can craft malicious payloads using the messages feature, which allows the injection of malicious cod… - CVE-2024-46083 2024-10-4 22:51 2024-10-2 Show GitHub Exploit DB Packet Storm
313907 - - - Scriptcase v9.10.023 and before is vulnerable to Cross Site Scripting (XSS). An authenticated user can craft malicious payloads in the To-Do List. The assigned user will trigger a stored XSS, which i… - CVE-2024-46081 2024-10-4 22:51 2024-10-2 Show GitHub Exploit DB Packet Storm
313908 - - - Scriptcase v9.10.023 and before is vulnerable to Cross Site Scripting (XSS) in proj_new.php via the Descricao parameter. - CVE-2024-46079 2024-10-4 22:51 2024-10-2 Show GitHub Exploit DB Packet Storm
313909 - - - Memory safety bugs present in Firefox 130. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code… - CVE-2024-9403 2024-10-4 22:51 2024-10-2 Show GitHub Exploit DB Packet Storm
313910 - - - Memory safety bugs present in Firefox 130, Firefox ESR 128.2, and Thunderbird 128.2. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could… - CVE-2024-9402 2024-10-4 22:51 2024-10-2 Show GitHub Exploit DB Packet Storm