Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 5, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
232171 7.5 危険 XOOPS - XOOPS 用の XFsection モジュールにおける PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-3222 2012-12-20 18:19 2007-06-14 Show GitHub Exploit DB Packet Storm
232172 6.8 警告 XOOPS - XOOPS 用の XT-Conteudo モジュールにおける PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-3221 2012-12-20 18:19 2007-06-14 Show GitHub Exploit DB Packet Storm
232173 6.8 警告 XOOPS - XOOPS 用の Cjay Content モジュールにおける PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-3220 2012-12-20 18:19 2007-06-14 Show GitHub Exploit DB Packet Storm
232174 7.5 危険 prototype of an php application - PHP アプリケーションの Prototype における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-3217 2012-12-20 18:19 2007-06-14 Show GitHub Exploit DB Packet Storm
232175 6.8 警告 PHPMailer project - PHPMailer における任意のシェルコマンドを実行される脆弱性 - CVE-2007-3215 2012-12-20 18:19 2007-06-11 Show GitHub Exploit DB Packet Storm
232176 10 危険 PhpWiki - PhpWiki の lib/WikiUser/LDAP.php における認証を回避される脆弱性 - CVE-2007-3193 2012-12-20 18:19 2007-06-12 Show GitHub Exploit DB Packet Storm
232177 6.8 警告 vincent hor - Calendarix における SQL インジェクションの脆弱性 - CVE-2007-3183 2012-12-20 18:19 2007-06-26 Show GitHub Exploit DB Packet Storm
232178 4.3 警告 vincent hor - Calendarix におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-3182 2012-12-20 18:19 2007-06-26 Show GitHub Exploit DB Packet Storm
232179 7.5 危険 zindizayn okul web sistemi - Zindizayn Okul Web Sistemi における SQL インジェクションの脆弱性 - CVE-2007-3178 2012-12-20 18:19 2007-06-11 Show GitHub Exploit DB Packet Storm
232180 7.5 危険 w2b - W2B Online Banking における SQL インジェクションの脆弱性 - CVE-2007-3175 2012-12-20 18:19 2007-06-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
313711 - - - This vulnerability exists in Philips lighting devices due to storage of Wi-Fi credentials in plain text within the device firmware. An attacker with physical access could exploit this by extracting t… CWE-312
 Cleartext Storage of Sensitive Information 		CVE-2024-9991 2024-10-28 22:58 2024-10-25 Show GitHub Exploit DB Packet Storm
313712 - - - smartUp, a web browser mouse gestures extension, has a universal cross-site scripting issue in the Edge and Firefox versions of smartUp 7.2.622.1170. The vulnerability allows another extension to exe… CWE-79
Cross-site Scripting 		CVE-2024-49378 2024-10-28 22:58 2024-10-25 Show GitHub Exploit DB Packet Storm
313713 7.8 HIGH
Local 		google android In mm_GetMobileIdIndexForNsUpdate of mm_GmmPduCodec.c, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with no additional ex… CWE-787
 Out-of-bounds Write 		CVE-2024-47012 2024-10-28 22:58 2024-10-25 Show GitHub Exploit DB Packet Storm
313714 7.5 HIGH
Network 		google android In sms_ExtractCbLanguage of sms_CellBroadcast.c, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution pr… CWE-125
Out-of-bounds Read 		CVE-2024-47021 2024-10-28 22:57 2024-10-25 Show GitHub Exploit DB Packet Storm
313715 5.5 MEDIUM
Local 		google android There is a possible Local bypass of user interaction due to an insecure default value. This could lead to local information disclosure with no additional execution privileges needed. User interaction… CWE-863
 Incorrect Authorization 		CVE-2024-44099 2024-10-28 22:56 2024-10-25 Show GitHub Exploit DB Packet Storm
313716 7.5 HIGH
Network 		google android Android before 2024-10-05 on Google Pixel devices allows information disclosure in the ABL component, A-331966488. NVD-CWE-noinfo
CVE-2024-47020 2024-10-28 22:55 2024-10-25 Show GitHub Exploit DB Packet Storm
313717 7.5 HIGH
Network 		google android Android before 2024-10-05 on Google Pixel devices allows information disclosure in the modem component, A-299774545. NVD-CWE-noinfo
CVE-2024-44100 2024-10-28 22:50 2024-10-25 Show GitHub Exploit DB Packet Storm
313718 7.5 HIGH
Network 		google android Android before 2024-10-05 on Google Pixel devices allows information disclosure in the ACPM component, A-331255656. NVD-CWE-noinfo
CVE-2024-47022 2024-10-28 22:47 2024-10-25 Show GitHub Exploit DB Packet Storm
313719 8.1 HIGH
Network 		google android there is a possible man-in-the-middle attack due to a logic error in the code. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is no… NVD-CWE-noinfo
CVE-2024-47023 2024-10-28 22:33 2024-10-25 Show GitHub Exploit DB Packet Storm
313720 - - - Spring WebFlux applications that have Spring Security authorization rules on static resources can be bypassed under certain circumstances. For this to impact an application, all of the following mus… - CVE-2024-38821 2024-10-28 16:15 2024-10-28 Show GitHub Exploit DB Packet Storm