Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 18, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
232511	5	警告	simpledns	-	Simple DNS Plus におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2008-3208	2012-12-20 18:52	2008-07-18	Show	GitHub Exploit DB Packet Storm

232512	9.3	危険	pragyan	-	Pragyan CMS の cms/modules/form.lib.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2008-3207	2012-12-20 18:52	2008-07-18	Show	GitHub Exploit DB Packet Storm

232513	4.3	警告	xomol	-	Xomol CMS の index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-3202	2012-12-20 18:52	2008-07-17	Show	GitHub Exploit DB Packet Storm

232514	7.8	危険	reSIProcate	-	ReSIProcate におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2008-3199	2012-12-20 18:52	2008-07-14	Show	GitHub Exploit DB Packet Storm

232515	3.5	注意	The phpMyAdmin Project	-	phpMyAdmin におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2008-3197	2012-12-20 18:52	2008-07-15	Show	GitHub Exploit DB Packet Storm

232516	7.8	危険	yacc	-	yacc 内の skeleton.c における範囲外メモリのスタックにアクセスされる脆弱性	CWE-399 リソース管理の問題	CVE-2008-3196	2012-12-20 18:52	2008-07-16	Show	GitHub Exploit DB Packet Storm

232517	6.8	警告	TWiki	-	TWiki の bin/configure におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-3195	2012-12-20 18:52	2008-08-5	Show	GitHub Exploit DB Packet Storm

232518	6.8	警告	Pluck CMS	-	pluck の data/inc/themes/predefined_variables.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-3194	2012-12-20 18:52	2008-07-16	Show	GitHub Exploit DB Packet Storm

232519	7.5	危険	Sclek	-	jSite における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3193	2012-12-20 18:52	2008-07-16	Show	GitHub Exploit DB Packet Storm

232520	6.8	警告	Sclek	-	jSite の index.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-3192	2012-12-20 18:52	2008-07-16	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 19, 2026, 4:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
313591	-		-	-	A security vulnerability has been identified in HPE Data Management Framework (DMF) Suite (CXFS). Depending on configuration, this vulnerability may lead to local/cluster unauthorized access.	-	CVE-2024-51764	2024-11-20 02:35	2024-11-16	Show	GitHub Exploit DB Packet Storm

313592	-		-	-	In the read() function of ProcessStats.java, there is a possible read/write serialization issue leading to a permissions bypass. This could lead to local escalation of privilege where an app can star…	-	CVE-2017-13311	2024-11-20 02:35	2024-11-16	Show	GitHub Exploit DB Packet Storm

313593	-		-	-	In createFromParcel of ViewPager.java, there is a possible read/write serialization issue leading to a permissions bypass. This could lead to local escalation of privilege where an app can start an a…	-	CVE-2017-13310	2024-11-20 02:35	2024-11-16	Show	GitHub Exploit DB Packet Storm

313594	-		-	-	An uninitialized pointer dereference in OpenAirInterface CN5G AMF up to v2.0.0 allows attackers to cause a Denial of Service (DoS) via a crafted InitialContextSetupResponse message sent to the AMF.	-	CVE-2024-24446	2024-11-20 02:35	2024-11-16	Show	GitHub Exploit DB Packet Storm

313595	-		-	-	Magma v1.8.0 and OAI EPC Federation v1.20 were discovered to contain an out-of-bounds read in the amf_as_establish_req function at /tasks/amf/amf_as.cpp. This vulnerability allows attackers to cause …	-	CVE-2024-24425	2024-11-20 02:35	2024-11-16	Show	GitHub Exploit DB Packet Storm

313596	-		-	-	An issue in Snipe-IT v.7.0.13 build 15514 allows a low-privileged attacker to modify their profile name and inject a malicious payload into the "Name" field. When an administrator later accesses the …	-	CVE-2024-51094	2024-11-20 02:35	2024-11-13	Show	GitHub Exploit DB Packet Storm

313597	-		-	-	The End-User Portal module before 1.0.65 for FreeScout sometimes allows an attacker to authenticate as an arbitrary user because a session token can be sent to the /auth endpoint. NOTE: this module i…	-	CVE-2023-52268	2024-11-20 02:35	2024-11-13	Show	GitHub Exploit DB Packet Storm

313598	-		-	-	Sublime Text 4 was discovered to contain a command injection vulnerability via the New Build System module.	-	CVE-2024-25255	2024-11-20 02:35	2024-11-12	Show	GitHub Exploit DB Packet Storm

313599	-		-	-	Driver Booster v10.6 was discovered to contain a buffer overflow via the Host parameter under the Customize proxy module.	-	CVE-2024-25253	2024-11-20 02:35	2024-11-12	Show	GitHub Exploit DB Packet Storm

313600	9.8	CRITICAL Network	schneider-electric	ecostruxure_it_gateway	CWE-862: Missing Authorization vulnerability exists that could cause unauthorized access when enabled on the network and potentially impacting connected devices.	CWE-862 Missing Authorization	CVE-2024-10575	2024-11-20 02:28	2024-11-13	Show	GitHub Exploit DB Packet Storm