Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 25, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
248301	7.5	危険	chaossoft	-	GaesteChaos の eintragen.php における SQL インジェクションの脆弱性	-	CVE-2006-4039	2012-06-26 15:37	2006-08-9	Show	GitHub Exploit DB Packet Storm

248302	4.3	警告	chaossoft	-	GaesteChaos の eintragen.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-4038	2012-06-26 15:37	2006-08-9	Show	GitHub Exploit DB Packet Storm

248303	10	危険	fenestrae	-	Fenestrae Faxination Server における任意のコードを実行される脆弱性	-	CVE-2006-4037	2012-06-26 15:37	2006-08-9	Show	GitHub Exploit DB Packet Storm

248304	7.5	危険	counterchaos	-	CounterChaos の counterchaos.php における SQL インジェクションの脆弱性	-	CVE-2006-4035	2012-06-26 15:37	2006-08-9	Show	GitHub Exploit DB Packet Storm

248305	5	警告	シスコシステムズ	-	Cisco IOS CME におけるSession Initiation Protocol (SIP) ユーザディレクトリから重要な情報を取得される脆弱性	-	CVE-2006-4032	2012-06-26 15:37	2006-08-9	Show	GitHub Exploit DB Packet Storm

248306	4.3	警告	3com	-	3Com OfficeConnect Secure Router の cgi-bin/admin におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-3974	2012-06-26 15:37	2007-06-11	Show	GitHub Exploit DB Packet Storm

248307	5	警告	Bharat Mediratta	-	Gallery の stats モジュールにおける重要な情報を取得される脆弱性	-	CVE-2006-4030	2012-06-26 15:37	2006-08-9	Show	GitHub Exploit DB Packet Storm

248308	7.5	危険	ageet	-	AGEphone の sipd.dll におけるスタックベースのバッファオーバーフローの脆弱性	-	CVE-2006-4029	2012-06-26 15:37	2006-08-9	Show	GitHub Exploit DB Packet Storm

248309	7.5	危険	festalon	-	Festalon の FESTAHES_Load 関数におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-4024	2012-06-26 15:37	2006-08-8	Show	GitHub Exploit DB Packet Storm

248310	7.5	危険	ClamAV	-	ClamAV の pefromupx 関数におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2006-4018	2012-06-26 15:37	2006-08-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 25, 2026, 4:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
314261	7.2	HIGH Network	-	-	A privilege escalation vulnerability was discovered in XCC that could allow a valid, authenticated XCC user with elevated privileges to perform command injection via specially crafted IPMI commands.	-	CVE-2024-8278	2024-09-14 20:47	2024-09-14	Show	GitHub Exploit DB Packet Storm

314262	4.3	MEDIUM Network	-	-	IPMI credentials may be captured in XCC audit log entries when the account username length is 16 characters.	-	CVE-2024-8059	2024-09-14 20:47	2024-09-14	Show	GitHub Exploit DB Packet Storm

314263	6.8	MEDIUM Physics	-	-	A potential vulnerability was reported in the ThinkPad L390 Yoga and 10w Notebook that could allow a local attacker to escalate privileges by accessing an embedded UEFI shell.	-	CVE-2024-7756	2024-09-14 20:47	2024-09-14	Show	GitHub Exploit DB Packet Storm

314264	6.7	MEDIUM Local	-	-	A potential buffer overflow vulnerability was reported in some Lenovo ThinkSystem and ThinkStation products that could allow a local attacker with elevated privileges to execute arbitrary code.	-	CVE-2024-4550	2024-09-14 20:47	2024-09-14	Show	GitHub Exploit DB Packet Storm

314265	6.7	MEDIUM Local	-	-	An internal product security audit discovered a UEFI SMM (System Management Mode) callout vulnerability in some ThinkSystem servers that could allow a local attacker with elevated privileges to execu…	-	CVE-2024-45105	2024-09-14 20:47	2024-09-14	Show	GitHub Exploit DB Packet Storm

314266	6.8	MEDIUM Network	-	-	A privilege escalation vulnerability was discovered when Single Sign On (SSO) is enabled that could allow an attacker to intercept a valid, authenticated LXCA user’s XCC session if they can convince …	-	CVE-2024-45101	2024-09-14 20:47	2024-09-14	Show	GitHub Exploit DB Packet Storm

314267	-		-	-	A potential buffer overflow vulnerability was reported in some Lenovo Notebook products that could allow a local attacker with elevated privileges to execute arbitrary code.	-	CVE-2024-3100	2024-09-14 20:47	2024-09-14	Show	GitHub Exploit DB Packet Storm

314268	-		-	-	The H2-DM1E PLC's authentication protocol appears to utilize either a custom encoding scheme or a challenge-response protocol. However, there's an observed anomaly in the H2-DM1E PLC's protocol execu…	CWE-384 Session Fixation	CVE-2024-45368	2024-09-14 20:47	2024-09-14	Show	GitHub Exploit DB Packet Storm

314269	-		-	-	The session hijacking attack targets the application layer's control mechanism, which manages authenticated sessions between a host PC and a PLC. During such sessions, a session key is utilized to ma…	-	CVE-2024-43099	2024-09-14 20:47	2024-09-14	Show	GitHub Exploit DB Packet Storm

314270	7.5	HIGH Network	fastadmin	fastadmin	A vulnerability, which was classified as problematic, has been found in FastAdmin up to 1.3.3.20220121. Affected by this issue is some unknown functionality of the file /index/ajax/lang. The manipula…	CWE-22 Path Traversal	CVE-2024-7928	2024-09-14 06:33	2024-08-20	Show	GitHub Exploit DB Packet Storm