Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
248631	6.5	警告	ITechScripts	-	Travelon Express における任意のコードを実行される脆弱性	CWE-Other その他	CVE-2012-2939	2012-05-29 15:01	2012-05-27	Show	GitHub Exploit DB Packet Storm

248632	4.3	警告	ITechScripts	-	Travelon Express におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-2938	2012-05-29 15:00	2012-05-27	Show	GitHub Exploit DB Packet Storm

248633	7.5	危険	Pligg	-	Pligg CMS における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-2937	2012-05-29 14:58	2012-05-27	Show	GitHub Exploit DB Packet Storm

248634	4.3	警告	Pligg	-	Pligg CMS におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-2936	2012-05-29 14:58	2012-05-27	Show	GitHub Exploit DB Packet Storm

248635	4.3	警告	Pligg	-	Pligg CMS におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-2436	2012-05-29 14:57	2012-05-27	Show	GitHub Exploit DB Packet Storm

248636	4.3	警告	osCommerce	-	OSCommerce Online Merchant におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-2935	2012-05-29 14:18	2012-05-27	Show	GitHub Exploit DB Packet Storm

248637	2.6	注意	osCommerce	-	OSCommerce Online Merchant におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-1792	2012-05-29 14:18	2012-05-27	Show	GitHub Exploit DB Packet Storm

248638	4.3	警告	The Support Incident Tracker Project	-	Support Incident Tracker におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-2235	2012-05-29 14:14	2012-05-27	Show	GitHub Exploit DB Packet Storm

248639	2.6	注意	Zen Cart	-	Zen Cart におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-1413	2012-05-29 14:13	2012-05-27	Show	GitHub Exploit DB Packet Storm

248640	10	危険	Seagate Technology LLC	-	Seagate BlackArmor NAS に脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-2568	2012-05-29 13:47	2012-05-24	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
315161	4.3	MEDIUM Network	sap	shared_service_framework	SAP shared service framework allows an authenticated non-administrative user to call a remote-enabled function, which will allow them to insert value entries into a non-sensitive table, causing low i…	CWE-862 Missing Authorization	CVE-2024-42377	2024-09-12 22:42	2024-08-13	Show	GitHub Exploit DB Packet Storm

315162	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: mptcp: Correctly set DATA_FIN timeout when number of retransmits is large Syzkaller with UBSAN uncovered a scenario where a large…	NVD-CWE-noinfo	CVE-2022-48906	2024-09-12 22:41	2024-08-22	Show	GitHub Exploit DB Packet Storm

315163	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: net: arcnet: com20020: Fix null-ptr-deref in com20020pci_probe() During driver initialization, the pointer of card info, i.e. the…	CWE-476 NULL Pointer Dereference	CVE-2022-48908	2024-09-12 22:37	2024-08-22	Show	GitHub Exploit DB Packet Storm

315164	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: net/smc: fix connection leak There's a potential leak issue under following execution sequence : smc_release smc_connect_wo…	CWE-401 Missing Release of Memory after Effective Lifetime	CVE-2022-48909	2024-09-12 22:36	2024-08-22	Show	GitHub Exploit DB Packet Storm

315165	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: auxdisplay: lcd2s: Fix memory leak in ->remove() Once allocated the struct lcd2s_data is never freed. Fix the memory leak by swit…	CWE-401 Missing Release of Memory after Effective Lifetime	CVE-2022-48907	2024-09-12 22:33	2024-08-22	Show	GitHub Exploit DB Packet Storm

315166	5.3	MEDIUM Network	sap	document_builder	SAP Document Builder does not perform necessary authorization checks for one of the function modules resulting in escalation of privileges causing low impact on confidentiality of the application.	CWE-862 Missing Authorization	CVE-2024-39591	2024-09-12 22:29	2024-08-13	Show	GitHub Exploit DB Packet Storm

315167	4.3	MEDIUM Network	sap	netweaver_application_server_abap	Due to missing authorization check in SAP NetWeaver Application Server ABAP and ABAP Platform, an authenticated attacker could call an underlying transaction, which leads to disclosure of user relate…	CWE-862 Missing Authorization	CVE-2024-41734	2024-09-12 22:28	2024-08-13	Show	GitHub Exploit DB Packet Storm

315168	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: xen/netfront: destroy queues before real_num_tx_queues is zeroed xennet_destroy_queues() relies on info->netdev->real_num_tx_queu…	CWE-476 NULL Pointer Dereference	CVE-2022-48914	2024-09-12 22:27	2024-08-22	Show	GitHub Exploit DB Packet Storm

315169	5.4	MEDIUM Network	sap	student_life_cycle_management	SAP Student Life Cycle Management (SLcM) fails to conduct proper authorization checks for authenticated users, leading to the potential escalation of privileges. On successful exploitation it could a…	CWE-862 Missing Authorization	CVE-2024-42373	2024-09-12 22:26	2024-08-13	Show	GitHub Exploit DB Packet Storm

315170	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_queue: fix possible use-after-free Eric Dumazet says: The sock_hold() side seems suspect, because there is no gua…	CWE-416 Use After Free	CVE-2022-48911	2024-09-12 22:24	2024-08-22	Show	GitHub Exploit DB Packet Storm