Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 28, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
231881 7.5 危険 sam crew - Sam Crew MyBlog の games.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-1990 2012-12-20 18:19 2007-04-12 Show GitHub Exploit DB Packet Storm
231882 4.3 警告 phpecho cms - PHPEcho CMS の kernel/filters.inc.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-1988 2012-12-20 18:19 2007-04-11 Show GitHub Exploit DB Packet Storm
231883 7.5 危険 phpexplorator - phpexplorator の phpexplorator.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-1985 2012-12-20 18:19 2007-04-11 Show GitHub Exploit DB Packet Storm
231884 7.5 危険 really simple php and ajax - RSPA における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-1982 2012-12-20 18:19 2007-04-11 Show GitHub Exploit DB Packet Storm
231885 7.5 危険 有限会社ブルームーン - XOOPS 用の PopnupBlog モジュールにおける SQL インジェクションの脆弱性 - CVE-2007-1979 2012-12-20 18:19 2007-04-11 Show GitHub Exploit DB Packet Storm
231886 7.5 危険 slaed - SLAED CMS における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-1975 2012-12-20 18:19 2007-04-11 Show GitHub Exploit DB Packet Storm
231887 7.5 危険 wf-sections
XOOPS		 - Xoops モジュールで使用される WF-Section における SQL インジェクションの脆弱性 - CVE-2007-1974 2012-12-20 18:19 2007-04-9 Show GitHub Exploit DB Packet Storm
231888 4.3 警告 sam crew - Sam Crew MyBlog の admin/modify.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-1969 2012-12-20 18:19 2007-04-11 Show GitHub Exploit DB Packet Storm
231889 6.8 警告 sam crew - Sam Crew MyBlog の games.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-1968 2012-12-20 18:19 2007-04-11 Show GitHub Exploit DB Packet Storm
231890 7.5 危険 XOOPS - XOOPS 用の WF-Snippets モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-1962 2012-12-20 18:19 2007-04-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
313911 - - - Memory safety bugs present in Firefox 130, Firefox ESR 115.15, Firefox ESR 128.2, and Thunderbird 128.2. Some of these bugs showed evidence of memory corruption and we presume that with enough effort… - CVE-2024-9401 2024-10-4 22:51 2024-10-2 Show GitHub Exploit DB Packet Storm
313912 - - - A potential memory corruption vulnerability could be triggered if an attacker had the ability to trigger an OOM at a specific moment during JIT compilation. This vulnerability affects Firefox < 131, … - CVE-2024-9400 2024-10-4 22:51 2024-10-2 Show GitHub Exploit DB Packet Storm
313913 - - - It is currently unknown if this issue is exploitable but a condition may arise where the structured clone of certain objects could lead to memory corruption. This vulnerability affects Firefox < 131,… - CVE-2024-9396 2024-10-4 22:51 2024-10-2 Show GitHub Exploit DB Packet Storm
313914 - - - A compromised content process could have allowed for the arbitrary loading of cross-origin pages. This vulnerability affects Firefox < 131, Firefox ESR < 128.3, Firefox ESR < 115.16, Thunderbird < 12… - CVE-2024-9392 2024-10-4 22:51 2024-10-2 Show GitHub Exploit DB Packet Storm
313915 - - - OSS Endpoint Manager is an endpoint manager module for FreePBX. OSS Endpoint Manager module activation can allow authenticated web users unauthorized access to read system files with the permissions … CWE-22
Path Traversal 		CVE-2024-47071 2024-10-4 22:51 2024-10-2 Show GitHub Exploit DB Packet Storm
313916 - - - The WebDAV service in Infinera TNMS (Transcend Network Management System) 19.10.3 allows a low-privileged remote attacker to conduct unauthorized file operations, because of execution with unnecessar… - CVE-2024-25660 2024-10-4 22:51 2024-10-2 Show GitHub Exploit DB Packet Storm
313917 - - - In Infinera TNMS (Transcend Network Management System) 19.10.3, an insecure default configuration of the internal SFTP server on Linux servers allows remote attacker to access files and directories o… - CVE-2024-25659 2024-10-4 22:51 2024-10-2 Show GitHub Exploit DB Packet Storm
313918 - - - Pagekit 1.0.18 is vulnerable to Cross Site Scripting (XSS) in index.php/admin/site/widget. - CVE-2024-45967 2024-10-4 22:51 2024-10-2 Show GitHub Exploit DB Packet Storm
313919 - - - eLabFTW is an open source electronic lab notebook for research labs. An incorrect permission check has been found that could allow an authenticated user to access several kinds of otherwise restricte… CWE-284
Improper Access Control 		CVE-2024-45408 2024-10-4 22:51 2024-10-2 Show GitHub Exploit DB Packet Storm
313920 - - - PCAN-Ethernet Gateway FD before 1.3.0 and PCAN-Ethernet Gateway before 2.11.0 are vulnerable to Command injection via shell metacharacters in a Software Update to processing.php. - CVE-2024-44610 2024-10-4 22:51 2024-10-2 Show GitHub Exploit DB Packet Storm