Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 3, 2026, 6:08 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
232161 10 危険 トレンドマイクロ - Windows 用の Trend Micro ServerProtect におけるバッファオーバーフローの脆弱性 - CVE-2007-2528 2012-12-20 18:19 2007-04-13 Show GitHub Exploit DB Packet Storm
232162 9.3 危険 smartcode - SmartCode VNC Manager の VNC Viewer ActiveX コントロールにおけるヒープベースのバッファオーバーフローの脆弱性 - CVE-2007-2526 2012-12-20 18:19 2007-05-8 Show GitHub Exploit DB Packet Storm
232163 10 危険 トレンドマイクロ - Trend Micro ServerProtect におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-2508 2012-12-20 18:19 2007-04-3 Show GitHub Exploit DB Packet Storm
232164 7.8 危険 treble designs - Treble Designs 1024 CMS の includes/download.php におけるディレクトリトラバーサルの脆弱性 - CVE-2007-2507 2012-12-20 18:19 2007-05-3 Show GitHub Exploit DB Packet Storm
232165 7.8 危険 Progress Software Corporation - Progress Software Progress の OpenEdge におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-2506 2012-12-20 18:19 2007-05-3 Show GitHub Exploit DB Packet Storm
232166 7.8 危険 リアルネットワークス - RealNetworks RealPlayer におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-2497 2012-12-20 18:19 2007-05-3 Show GitHub Exploit DB Packet Storm
232167 7.5 危険 postnuke software foundation - PostNuke 用の v4bJournal モジュールにおける SQL インジェクションの脆弱性 - CVE-2007-2492 2012-12-20 18:19 2007-05-3 Show GitHub Exploit DB Packet Storm
232168 7.2 危険 VMware - EMC VMware Workstation などの PIIX4 電源管理サブシステムにおける任意のメモリ領域に書き込まれる脆弱性 - CVE-2007-2491 2012-12-20 18:19 2007-05-3 Show GitHub Exploit DB Packet Storm
232169 7.5 危険 ruben boelinger - WordPress 用の myflash プラグインにおける PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2485 2012-12-20 18:19 2007-05-3 Show GitHub Exploit DB Packet Storm
232170 6.8 警告 ruben boelinger - WordPress 用の wp-Table プラグインにおける PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2484 2012-12-20 18:19 2007-05-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
313921 6.1 MEDIUM
Network 		comfy comfyui A stored cross-site scripting (XSS) vulnerability exists in comfyanonymous/comfyui version 0.2.2 and possibly earlier. The vulnerability occurs when an attacker uploads an HTML file containing a mali… CWE-79
Cross-site Scripting 		CVE-2024-10099 2024-10-22 06:03 2024-10-18 Show GitHub Exploit DB Packet Storm
313922 7.1 HIGH
Network 		microsoft windows_server_2022_23h2
windows_server_2022
windows_server_2019
windows_10_1809
windows_11_21h2
windows_10_21h2
windows_11_22h2
windows_10_22h2
windows_11_23h2
windows_11_… 		Microsoft OpenSSH for Windows Remote Code Execution Vulnerability NVD-CWE-noinfo
CVE-2024-43615 2024-10-22 06:00 2024-10-9 Show GitHub Exploit DB Packet Storm
313923 5.4 MEDIUM
Network 		fahadmahmood rss_feed_widget The RSS Feed Widget plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's rfw-youtube-videos shortcode in all versions up to, and including, 2.9.9 due to insufficient inp… CWE-79
Cross-site Scripting 		CVE-2024-10057 2024-10-22 05:53 2024-10-18 Show GitHub Exploit DB Packet Storm
313924 5.5 MEDIUM
Local 		microsoft defender_for_endpoint Microsoft Defender for Endpoint for Linux Spoofing Vulnerability NVD-CWE-noinfo
CVE-2024-43614 2024-10-22 05:50 2024-10-9 Show GitHub Exploit DB Packet Storm
313925 4.7 MEDIUM
Network 		microsoft power_bi_report_server Power BI Report Server Spoofing Vulnerability NVD-CWE-noinfo
CVE-2024-43612 2024-10-22 05:48 2024-10-9 Show GitHub Exploit DB Packet Storm
313926 7.8 HIGH
Local 		microsoft office
365_apps
office_long_term_servicing_channel 		Microsoft Office Remote Code Execution Vulnerability NVD-CWE-noinfo
CVE-2024-43616 2024-10-22 05:47 2024-10-9 Show GitHub Exploit DB Packet Storm
313927 9.8 CRITICAL
Network 		rittal iot_interface_firmware
cmc_iii_processing_units_firmware 		The devices are vulnerable to session hijacking due to insufficient entropy in its session ID generation algorithm. The session IDs are predictable, with only 32,768 possible values per user, which… CWE-331
 Insufficient Entropy 		CVE-2024-47945 2024-10-22 04:41 2024-10-15 Show GitHub Exploit DB Packet Storm
313928 7.8 HIGH
Local 		autodesk revit A maliciously crafted RFA file, when parsed through Autodesk Revit, can force a Stack-Based Buffer Overflow. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, o… CWE-787
 Out-of-bounds Write 		CVE-2024-7994 2024-10-22 03:35 2024-10-17 Show GitHub Exploit DB Packet Storm
313929 7.8 HIGH
Local 		autodesk revit A maliciously crafted PDF file, when parsed through Autodesk Revit, can force an Out-of-Bounds Write. A malicious actor can leverage this vulnerability to cause a crash, write sensitive data, or exec… CWE-787
 Out-of-bounds Write 		CVE-2024-7993 2024-10-22 03:27 2024-10-17 Show GitHub Exploit DB Packet Storm
313930 4.9 MEDIUM
Network 		oracle application_express Vulnerability in Oracle Application Express (component: General). Supported versions that are affected are 23.2 and 24.1. Difficult to exploit vulnerability allows low privileged attacker with netw… NVD-CWE-noinfo
CVE-2024-21261 2024-10-22 03:27 2024-10-16 Show GitHub Exploit DB Packet Storm