Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 20, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
232201	9.3	危険	VideoLAN	-	VLC Media Player の Ty demux プラグインにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-4654	2012-12-20 18:52	2008-10-21	Show	GitHub Exploit DB Packet Storm

232202	7.5	危険	XOOPS	-	XOOPS 用の Makale モジュールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4653	2012-12-20 18:52	2008-10-21	Show	GitHub Exploit DB Packet Storm

232203	7.5	危険	sweetcms	-	sweetCMS の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4647	2012-12-20 18:52	2008-10-21	Show	GitHub Exploit DB Packet Storm

232204	2.1	注意	ウェブセンス	-	Websense Enterprise の Websense Reporter Module におけるデータベースへの権限を取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2008-4646	2012-12-20 18:52	2008-10-21	Show	GitHub Exploit DB Packet Storm

232205	9	危険	phpwebgallery	-	PhpWebGallery の plugins/event_tracer/event_list.php における任意の PHP コードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2008-4645	2012-12-20 18:52	2008-10-21	Show	GitHub Exploit DB Packet Storm

232206	10	危険	Matthias Wandel	-	Matthias Wandel jhead の jhead.c における任意のコマンドを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2008-4641	2012-12-20 18:52	2008-10-21	Show	GitHub Exploit DB Packet Storm

232207	3.6	注意	Matthias Wandel	-	Matthias Wandel jhead の jhead.c における任意のファイルを削除される脆弱性	CWE-20 不適切な入力確認	CVE-2008-4640	2012-12-20 18:52	2008-10-21	Show	GitHub Exploit DB Packet Storm

232208	4.6	警告	Matthias Wandel	-	Matthias Wandel jhead の jhead.c における任意のファイルを上書きされる脆弱性	CWE-59 リンク解釈の問題	CVE-2008-4639	2012-12-20 18:52	2008-10-21	Show	GitHub Exploit DB Packet Storm

232209	7.5	危険	rgallery	-	WBB 用の rGallery プラグインにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4627	2012-12-20 18:52	2008-10-20	Show	GitHub Exploit DB Packet Storm

232210	6.8	警告	zirkon box	-	Fritz Berger yappa-ng の yappa-ng におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-4626	2012-12-20 18:52	2008-10-20	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 20, 2026, 4:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
313591	-		-	-	A security vulnerability has been identified in HPE Data Management Framework (DMF) Suite (CXFS). Depending on configuration, this vulnerability may lead to local/cluster unauthorized access.	-	CVE-2024-51764	2024-11-20 02:35	2024-11-16	Show	GitHub Exploit DB Packet Storm

313592	-		-	-	In the read() function of ProcessStats.java, there is a possible read/write serialization issue leading to a permissions bypass. This could lead to local escalation of privilege where an app can star…	-	CVE-2017-13311	2024-11-20 02:35	2024-11-16	Show	GitHub Exploit DB Packet Storm

313593	-		-	-	In createFromParcel of ViewPager.java, there is a possible read/write serialization issue leading to a permissions bypass. This could lead to local escalation of privilege where an app can start an a…	-	CVE-2017-13310	2024-11-20 02:35	2024-11-16	Show	GitHub Exploit DB Packet Storm

313594	-		-	-	An uninitialized pointer dereference in OpenAirInterface CN5G AMF up to v2.0.0 allows attackers to cause a Denial of Service (DoS) via a crafted InitialContextSetupResponse message sent to the AMF.	-	CVE-2024-24446	2024-11-20 02:35	2024-11-16	Show	GitHub Exploit DB Packet Storm

313595	-		-	-	Magma v1.8.0 and OAI EPC Federation v1.20 were discovered to contain an out-of-bounds read in the amf_as_establish_req function at /tasks/amf/amf_as.cpp. This vulnerability allows attackers to cause …	-	CVE-2024-24425	2024-11-20 02:35	2024-11-16	Show	GitHub Exploit DB Packet Storm

313596	-		-	-	An issue in Snipe-IT v.7.0.13 build 15514 allows a low-privileged attacker to modify their profile name and inject a malicious payload into the "Name" field. When an administrator later accesses the …	-	CVE-2024-51094	2024-11-20 02:35	2024-11-13	Show	GitHub Exploit DB Packet Storm

313597	-		-	-	The End-User Portal module before 1.0.65 for FreeScout sometimes allows an attacker to authenticate as an arbitrary user because a session token can be sent to the /auth endpoint. NOTE: this module i…	-	CVE-2023-52268	2024-11-20 02:35	2024-11-13	Show	GitHub Exploit DB Packet Storm

313598	-		-	-	Sublime Text 4 was discovered to contain a command injection vulnerability via the New Build System module.	-	CVE-2024-25255	2024-11-20 02:35	2024-11-12	Show	GitHub Exploit DB Packet Storm

313599	-		-	-	Driver Booster v10.6 was discovered to contain a buffer overflow via the Host parameter under the Customize proxy module.	-	CVE-2024-25253	2024-11-20 02:35	2024-11-12	Show	GitHub Exploit DB Packet Storm

313600	9.8	CRITICAL Network	schneider-electric	ecostruxure_it_gateway	CWE-862: Missing Authorization vulnerability exists that could cause unauthorized access when enabled on the network and potentially impacting connected devices.	CWE-862 Missing Authorization	CVE-2024-10575	2024-11-20 02:28	2024-11-13	Show	GitHub Exploit DB Packet Storm