Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
232571 10 危険 xfairguy - CodeAvalanche News の inc_listnews.asp における SQL インジェクションの脆弱性 - CVE-2007-1021 2012-12-20 18:19 2007-02-21 Show GitHub Exploit DB Packet Storm
232572 6.8 警告 webSPELL - webSPELL の news.php における SQL インジェクションの脆弱性 - CVE-2007-1019 2012-12-20 18:19 2007-02-21 Show GitHub Exploit DB Packet Storm
232573 9.3 危険 virtualsystem - VirtualSystem VS-News-System の tpl/header.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-1018 2012-12-20 18:19 2007-02-21 Show GitHub Exploit DB Packet Storm
232574 9.3 危険 virtualsystem - VirtualSystem VS-News-System の show_news_inc.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-1017 2012-12-20 18:19 2007-02-21 Show GitHub Exploit DB Packet Storm
232575 10 危険 vicftps - VicFTPS におけるスタックベースのバッファオーバーフローの脆弱性 - CVE-2007-1014 2012-12-20 18:19 2007-02-21 Show GitHub Exploit DB Packet Storm
232576 10 危険 virtualsystem - VirtualSystem Htaccess Passwort Generator の generate.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-1013 2012-12-20 18:19 2007-02-21 Show GitHub Exploit DB Packet Storm
232577 7.5 危険 vs-gastebuch - VS-Gastebuch の functions_inc.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-1011 2012-12-20 18:19 2007-02-21 Show GitHub Exploit DB Packet Storm
232578 6.8 警告 zebrafeeds - ZebraFeeds における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-1010 2012-12-20 18:19 2007-02-21 Show GitHub Exploit DB Packet Storm
232579 7.5 危険 phpcc - phpCC の nickpage.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-0985 2012-12-20 18:19 2007-02-16 Show GitHub Exploit DB Packet Storm
232580 4.3 警告 taskfreak - TaskFreak! の error.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-0982 2012-12-20 18:19 2007-02-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
314621 7.3 HIGH
Local 		siemens modelsim
questa 		A vulnerability has been identified in ModelSim (All versions < V2024.3), Questa (All versions < V2024.3). vish2.exe in affected applications allows a specific DLL file to be loaded from the current … CWE-427
 Uncontrolled Search Path Element 		CVE-2024-47194 2024-10-17 03:15 2024-10-8 Show GitHub Exploit DB Packet Storm
314622 7.3 HIGH
Local 		siemens modelsim
questa 		A vulnerability has been identified in ModelSim (All versions < V2024.3), Questa (All versions < V2024.3). gdb.exe in affected applications allows a specific executable file to be loaded from the cur… CWE-427
 Uncontrolled Search Path Element 		CVE-2024-47195 2024-10-17 03:11 2024-10-8 Show GitHub Exploit DB Packet Storm
314623 7.3 HIGH
Local 		siemens modelsim
questa 		A vulnerability has been identified in ModelSim (All versions < V2024.3), Questa (All versions < V2024.3). vsimk.exe in affected applications allows a specific tcl file to be loaded from the current … CWE-427
 Uncontrolled Search Path Element 		CVE-2024-47196 2024-10-17 03:07 2024-10-8 Show GitHub Exploit DB Packet Storm
314624 7.8 HIGH
Local 		schneider-electric zelio_soft_2 CWE-416: Use After Free vulnerability exists that could cause arbitrary code execution, denial of service and loss of confidentiality & integrity when application user opens a malicious Zelio Soft 2 … CWE-416
 Use After Free 		CVE-2024-8422 2024-10-17 03:00 2024-10-8 Show GitHub Exploit DB Packet Storm
314625 8.4 HIGH
Network 		payara payara Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Payara Platform Payara Server (Admin Console modules) allows Remote Code Inclusion.This is… CWE-79
Cross-site Scripting 		CVE-2024-8215 2024-10-17 02:58 2024-10-9 Show GitHub Exploit DB Packet Storm
314626 6.7 MEDIUM
Local 		microsoft windows_server_2012
windows_10_1507
windows_server_2016
windows_server_2022_23h2
windows_server_2022
windows_11_24h2
windows_10_1607
windows_10_1809
windows_11_21h2
windows… 		Windows Resume Extensible Firmware Interface Security Feature Bypass Vulnerability NVD-CWE-noinfo
CVE-2024-37976 2024-10-17 02:56 2024-10-9 Show GitHub Exploit DB Packet Storm
314627 8.8 HIGH
Network 		xerox freeflow_core Authenticated RCE via Path Traversal CWE-22
Path Traversal 		CVE-2024-47559 2024-10-17 02:53 2024-10-8 Show GitHub Exploit DB Packet Storm
314628 8.8 HIGH
Network 		xerox freeflow_core Authenticated RCE via Path Traversal CWE-22
Path Traversal 		CVE-2024-47558 2024-10-17 02:45 2024-10-8 Show GitHub Exploit DB Packet Storm
314629 7.8 HIGH
Local 		microsoft windows_server_2012
windows_10_1507
windows_server_2016
windows_server_2022_23h2
windows_server_2022
windows_11_24h2
windows_10_1607
windows_10_1809
windows_11_21h2
windows… 		Windows Resume Extensible Firmware Interface Security Feature Bypass Vulnerability NVD-CWE-noinfo
CVE-2024-37982 2024-10-17 02:43 2024-10-9 Show GitHub Exploit DB Packet Storm
314630 5.5 MEDIUM
Local 		openatom openharmony in OpenHarmony v4.1.0 and prior versions allow a local attacker cause DOS through out-of-bounds write. CWE-787
 Out-of-bounds Write 		CVE-2024-45382 2024-10-17 02:43 2024-10-8 Show GitHub Exploit DB Packet Storm