Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
249051 9.3 危険 Irfan Skiljan - IrfanView 用 FlashPix PlugIn におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-0278 2012-04-19 15:58 2012-04-18 Show GitHub Exploit DB Packet Storm
249052 3.2 注意 ヒューレット・パッカード - HP System Management Homepage におけるデータを改ざんされる脆弱性 CWE-noinfo
情報不足 		CVE-2012-1993 2012-04-19 15:55 2012-04-16 Show GitHub Exploit DB Packet Storm
249053 3.5 注意 ヒューレット・パッカード - HP System Management Homepage におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2012-0135 2012-04-19 15:55 2012-04-16 Show GitHub Exploit DB Packet Storm
249054 5 警告 AdAstrA Research Group - AdAstrA TRACE MODE Data Center における任意のファイルを読まれる脆弱性 CWE-noinfo
情報不足 		CVE-2011-5087 2012-04-19 15:54 2012-04-18 Show GitHub Exploit DB Packet Storm
249055 6.8 警告 Unitronics - Unitronics UniOPC の https50.ocx におけるサービス運用妨害 (アプリケーションクラッシュ) の脆弱性 CWE-20
不適切な入力確認 		CVE-2011-5086 2012-04-19 15:52 2011-10-12 Show GitHub Exploit DB Packet Storm
249056 5 警告 Open Automation Software - Open Automation Software の OPC Systems.NET におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2011-4871 2012-04-19 15:50 2012-01-12 Show GitHub Exploit DB Packet Storm
249057 8.3 危険 VMware - 複数の VMware 製品におけるゲスト OS の権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-1518 2012-04-19 15:44 2012-04-12 Show GitHub Exploit DB Packet Storm
249058 5.1 警告 Igor Sysoev - nginx の ngx_http_mp4_module.c におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-2089 2012-04-19 15:41 2012-04-17 Show GitHub Exploit DB Packet Storm
249059 3.5 注意 SyndeoCMS - SyndeoCMS の starnet/index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1979 2012-04-19 15:37 2012-04-17 Show GitHub Exploit DB Packet Storm
249060 9.3 危険 Google - Google SketchUp における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2011-2478 2012-04-19 15:24 2012-04-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
315671 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: ipv6: prevent UAF in ip6_send_skb() syzbot reported an UAF in ip6_send_skb() [1] After ip6_local_out() has returned, we no longe… CWE-416
 Use After Free 		CVE-2024-44987 2024-09-6 02:53 2024-09-5 Show GitHub Exploit DB Packet Storm
315672 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: power: supply: rt5033: Bring back i2c_set_clientdata Commit 3a93da231c12 ("power: supply: rt5033: Use devm_power_supply_register(… NVD-CWE-noinfo
CVE-2024-44936 2024-09-6 02:53 2024-08-26 Show GitHub Exploit DB Packet Storm
315673 7.8 HIGH
Local 		overwolf overwolf A local privilege escalation is caused by Overwolf loading and executing certain dynamic link library files from a user-writeable folder in SYSTEM context on launch. This allows an attacker with unpr… CWE-427
 Uncontrolled Search Path Element 		CVE-2024-7834 2024-09-6 02:52 2024-09-4 Show GitHub Exploit DB Packet Storm
315674 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: cifs: fix potential null pointer use in destroy_workqueue in init_cifs error path Dan Carpenter reported a Smack static checker w… CWE-476
 NULL Pointer Dereference 		CVE-2024-42307 2024-09-6 02:49 2024-08-17 Show GitHub Exploit DB Packet Storm
315675 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: f2fs: let's avoid panic if extent_tree is not created This patch avoids the below panic. pc : __lookup_extent_tree+0xd8/0x760 lr… NVD-CWE-noinfo
CVE-2022-48877 2024-09-6 02:47 2024-08-21 Show GitHub Exploit DB Packet Storm
315676 - - - A vulnerability was found in Windmill 1.380.0. It has been classified as problematic. Affected is an unknown function of the file backend/windmill-api/src/users.rs of the component HTTP Request Handl… CWE-307
mproper Restriction of Excessive Authentication Attempts 		CVE-2024-8462 2024-09-6 02:45 2024-09-5 Show GitHub Exploit DB Packet Storm
315677 - - - SQL Injection vulnerability in ESAFENET CDG 5.6 and before allows an attacker to execute arbitrary code via the id parameter of the data.jsp page. - CVE-2024-42885 2024-09-6 02:44 2024-09-6 Show GitHub Exploit DB Packet Storm
315678 - - - itsourcecode Alton Management System 1.0 is vulnerable to SQL Injection in /noncombo_save.php via the "menu" parameter. - CVE-2024-44587 2024-09-6 02:44 2024-09-5 Show GitHub Exploit DB Packet Storm
315679 9.8 CRITICAL
Network 		multivendorx multivendorx The MultiVendorX – The Ultimate WooCommerce Multivendor Marketplace Solution plugin for WordPress is vulnerable to privilege escalation/de-escalation and account takeover due to an insufficient capab… CWE-862
 Missing Authorization 		CVE-2024-8289 2024-09-6 02:41 2024-09-4 Show GitHub Exploit DB Packet Storm
315680 6.1 MEDIUM
Network 		raspcontrol_project raspcontrol Cross Site Scripting (XSS) vulnerability through the action parameter in index.php. Affected product codebase https://github.com/Bioshox/Raspcontrol and forks such as https://github.com/harmon25/r… CWE-79
Cross-site Scripting 		CVE-2024-8413 2024-09-6 02:40 2024-09-4 Show GitHub Exploit DB Packet Storm