Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 16, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
247051 4.3 警告 firmchannel - firmCHANNEL Digital Signage の account モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-4931 2012-06-26 16:03 2008-11-5 Show GitHub Exploit DB Packet Storm
247052 9.3 危険 マイクロソフト
djvu		 - DjVu_ActiveX_MSOffice.dll の DjVu ActiveX コントロール におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-4922 2012-06-26 16:03 2008-11-4 Show GitHub Exploit DB Packet Storm
247053 4.6 警告 VMware - 複数の VMware 製品のゲスト仮想デバイスドライバにおけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2008-4916 2012-06-26 16:02 2009-04-3 Show GitHub Exploit DB Packet Storm
247054 9.3 危険 EZB Systems - UltraISO におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-4825 2012-06-26 16:02 2009-04-1 Show GitHub Exploit DB Packet Storm
247055 7.5 危険 Chipmunk Scripts - Chipmunk CMS の board/admin/reguser.php における管理者権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-4921 2012-06-26 16:02 2008-11-4 Show GitHub Exploit DB Packet Storm
247056 7.5 危険 chattaitaliano - Chattaitaliano Istant-Replay の read.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-4911 2012-06-26 16:02 2008-11-3 Show GitHub Exploit DB Packet Storm
247057 4.3 警告 compact cms - CompactCMS におけるクロスサイトリクエストフォージェリの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-4909 2012-06-26 16:02 2008-11-3 Show GitHub Exploit DB Packet Storm
247058 3.3 注意 crossfire - CrossFire crossfire-maps の maps/Info/combine.pl における任意のファイルを上書きされる脆弱性 CWE-59
リンク解釈の問題 		CVE-2008-4908 2012-06-26 16:02 2008-11-3 Show GitHub Exploit DB Packet Storm
247059 7.5 危険 1st news - 1st News 4 Professional の products.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4890 2012-06-26 16:02 2008-11-3 Show GitHub Exploit DB Packet Storm
247060 7.5 危険 deV!L'z Clanportal - DZCP の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4889 2012-06-26 16:02 2008-11-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 17, 2026, 4:19 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
314491 8.8 HIGH
Network 		ultrapress unseen_blog The Unseen Blog theme for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 1.0.0 via deserialization of untrusted input. This makes it possible for authenticated … CWE-502
 Deserialization of Untrusted Data 		CVE-2024-7432 2024-11-14 07:03 2024-10-1 Show GitHub Exploit DB Packet Storm
314492 3.7 LOW
Network 		netadmin netadmin_iam A vulnerability was found in Netadmin Software NetAdmin IAM up to 3.5 and classified as problematic. Affected by this issue is some unknown functionality of the file /controller/api/Answer/ReturnUser… CWE-203
 Information Exposure Through Discrepancy 		CVE-2024-9513 2024-11-14 06:57 2024-10-4 Show GitHub Exploit DB Packet Storm
314493 9.8 CRITICAL
Network 		ruijie rg-nbs2009g-p_firmware An issue in Ruijie RG-NBS2009G-P RGOS v.10.4(1)P2 Release(9736) allows a remote attacker to gain privileges via the system/config_menu.htm. NVD-CWE-noinfo
CVE-2024-24116 2024-11-14 06:43 2024-10-3 Show GitHub Exploit DB Packet Storm
314494 - - - wasm3 139076a is vulnerable to Denial of Service (DoS). - CVE-2024-27527 2024-11-14 06:35 2024-11-9 Show GitHub Exploit DB Packet Storm
314495 8.1 HIGH
Network 		parseplatform parse_server Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. If the Parse Server option allowCustomObjectId: true is set, an attacker that is allowed to cre… CWE-863
 Incorrect Authorization 		CVE-2024-47183 2024-11-14 06:15 2024-10-5 Show GitHub Exploit DB Packet Storm
314496 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: bpf: Fix out-of-bounds write in trie_get_next_key() trie_get_next_key() allocates a node stack with size trie->max_prefixlen, whi… CWE-787
 Out-of-bounds Write 		CVE-2024-50262 2024-11-14 06:10 2024-11-9 Show GitHub Exploit DB Packet Storm
314497 9.8 CRITICAL
Network 		dlink di-8003_firmware A vulnerability was found in D-Link DI-8003 16.07.16A1. It has been classified as critical. Affected is the function upgrade_filter_asp of the file /upgrade_filter.asp. The manipulation of the argume… CWE-78
CWE-77
OS Command 
Command Injection 		CVE-2024-11046 2024-11-14 06:01 2024-11-10 Show GitHub Exploit DB Packet Storm
314498 9.8 CRITICAL
Network 		dlink di-8003_firmware A vulnerability was found in D-Link DI-8003 16.07.16A1. It has been declared as critical. Affected by this vulnerability is the function upgrade_filter_asp of the file /upgrade_filter.asp. The manipu… CWE-119
CWE-121
Incorrect Access of Indexable Resource ('Range Error') 
Stack-based Buffer Overflow 		CVE-2024-11047 2024-11-14 05:56 2024-11-10 Show GitHub Exploit DB Packet Storm
314499 9.8 CRITICAL
Network 		dlink di-8003_firmware A vulnerability was found in D-Link DI-8003 16.07.16A1. It has been rated as critical. Affected by this issue is the function dbsrv_asp of the file /dbsrv.asp. The manipulation of the argument str le… CWE-119
CWE-121
Incorrect Access of Indexable Resource ('Range Error') 
Stack-based Buffer Overflow 		CVE-2024-11048 2024-11-14 05:53 2024-11-10 Show GitHub Exploit DB Packet Storm
314500 7.2 HIGH
Network 		salesagility suitecrm SuiteCRM is an open-source, enterprise-ready Customer Relationship Management (CRM) software application. SuiteCRM relies on the blacklist of functions/methods to prevent installation of malicious ML… NVD-CWE-noinfo
CVE-2024-49774 2024-11-14 05:40 2024-11-6 Show GitHub Exploit DB Packet Storm