Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 25, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
249231	6.8	警告	agaresmedia	-	Agares Media phpAutoVideo の admin/frontpage_right.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2007-6614	2012-06-26 15:54	2008-01-3	Show	GitHub Exploit DB Packet Storm

249232	5	警告	GNU Project	-	GNU Compact Disc Input および libcdio の src/iso-info.c におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2007-6613	2012-06-26 15:54	2007-12-31	Show	GitHub Exploit DB Packet Storm

249233	10	危険	Debian	-	unp における任意のコマンドを実行される脆弱性	CWE-DesignError	CVE-2007-6610	2012-06-26 15:54	2007-10-29	Show	GitHub Exploit DB Packet Storm

249234	5	警告	coolplayer	-	CoolPlayer の CPI_PlaylistItem.c の CPLI_ReadTag_OGG 関数におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2007-6609	2012-06-26 15:54	2007-12-31	Show	GitHub Exploit DB Packet Storm

249235	5	警告	ClamAV	-	ClamAV におけるスキャナを回避される脆弱性	CWE-20 不適切な入力確認	CVE-2007-6596	2012-06-26 15:54	2007-12-31	Show	GitHub Exploit DB Packet Storm

249236	2.1	注意	ClamAV	-	ClamAV における任意のファイルを上書きされる脆弱性	CWE-59 リンク解釈の問題	CVE-2007-6595	2012-06-26 15:54	2007-12-31	Show	GitHub Exploit DB Packet Storm

249237	4.3	警告	アップル	-	Apple Safari におけるなりすまされた Web サイトの無効な証明書を承認する脆弱性	CWE-DesignError	CVE-2007-6592	2012-06-26 15:54	2007-12-28	Show	GitHub Exploit DB Packet Storm

249238	6.4	警告	1024cms	-	1024 CMS におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2007-6584	2012-06-26 15:54	2007-12-28	Show	GitHub Exploit DB Packet Storm

249239	7.5	危険	1024cms	-	1024 CMS の admin/ops/findip/ajax/search.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-6583	2012-06-26 15:54	2007-12-28	Show	GitHub Exploit DB Packet Storm

249240	6.4	警告	C97net	-	mBlog の index.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2007-6582	2012-06-26 15:54	2007-12-28	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 25, 2026, 4:04 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
318401	-		-	-	A vulnerability has been identified in HiMed Cockpit 12 pro (J31032-K2017-H259) (All versions >= V11.5.1 < V11.6.2), HiMed Cockpit 14 pro+ (J31032-K2017-H435) (All versions >= V11.5.1 < V11.6.2), HiM…	CWE-424 Improper Protection of Alternate Path	CVE-2023-52952	2024-10-10 21:56	2024-10-8	Show	GitHub Exploit DB Packet Storm

318402	5.3	MEDIUM Network	-	-	The Limit Login Attempts (Spam Protection) plugin for WordPress is vulnerable to IP Address Spoofing in versions up to, and including, 5.3. This is due to insufficient restrictions on where the IP Ad…	CWE-348 Use of Less Trusted Source	CVE-2022-4534	2024-10-10 21:56	2024-10-8	Show	GitHub Exploit DB Packet Storm

318403	6.4	MEDIUM Network	-	-	The Image Optimizer, Resizer and CDN – Sirv plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 7.2.9 due to insufficient inpu…	CWE-79 Cross-site Scripting	CVE-2024-8964	2024-10-10 21:56	2024-10-8	Show	GitHub Exploit DB Packet Storm

318404	-		-	-	Cross Site Scripting vulnerability in Follet School Solutions Destiny before v22.0.1 AU1 allows a remote attacker to run arbitrary client-side code via the expiredSupportMessage parameter of handlelo…	-	CVE-2024-47095	2024-10-10 21:56	2024-10-8	Show	GitHub Exploit DB Packet Storm

318405	-		-	-	SSL Pinning Bypass in eWeLink Some hardware products allows local ATTACKER to Decrypt TLS communication and Extract secrets to clone the device via Flash the modified firmware	-	CVE-2024-7206	2024-10-10 21:56	2024-10-8	Show	GitHub Exploit DB Packet Storm

318406	-		-	-	Improper input validation in SamsungVideoPlayer prior to versions 7.3.29.1 in Android 12, 7.3.36.1 in Android 13, and 7.3.41.230 in Android 14 allows local attackers to access video file of other use…	-	CVE-2024-34672	2024-10-10 21:56	2024-10-8	Show	GitHub Exploit DB Packet Storm

318407	7.5	HIGH Network	ruby-lang	rexml	REXML is an XML toolkit for Ruby. The REXML gem before 3.3.2 has some DoS vulnerabilities when it parses an XML that has many specific characters such as whitespace character, `>]` and `]>`. The REXM…	CWE-400 Uncontrolled Resource Consumption	CVE-2024-41123	2024-10-10 21:56	2024-08-2	Show	GitHub Exploit DB Packet Storm

318408	6.1	MEDIUM Network	-	-	Adobe Commerce versions 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, 2.4.4-p10 and earlier are affected by a reflected Cross-Site Scripting (XSS) vulnerability. If an attacker is able to convince a victim to visit …	-	CVE-2024-45123	2024-10-10 21:51	2024-10-10	Show	GitHub Exploit DB Packet Storm

318409	4.3	MEDIUM Network	-	-	Adobe Commerce versions 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, 2.4.4-p10 and earlier are affected by an Improper Access Control vulnerability that could result in a Security feature bypass. A low-privileged a…	CWE-284 Improper Access Control	CVE-2024-45122	2024-10-10 21:51	2024-10-10	Show	GitHub Exploit DB Packet Storm

318410	-		-	-	Adobe Commerce versions 2.4.7-p2, 2.4.6-p7, 2.4.5-p9, 2.4.4-p10 and earlier are affected by an Improper Access Control vulnerability that could result in a Security feature bypass. A low-privileged a…	CWE-284 Improper Access Control	CVE-2024-45121	2024-10-10 21:51	2024-10-10	Show	GitHub Exploit DB Packet Storm