Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
249321 5 警告 mark pilgrim - Universal Feed Parser におけるサービス運用妨害 (メモリ消費) の脆弱性 CWE-399
リソース管理の問題 		CVE-2012-2921 2012-05-23 18:50 2012-05-2 Show GitHub Exploit DB Packet Storm
249322 4.3 警告 Weston Ruter - WordPress 用 User Photo プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2920 2012-05-23 18:48 2012-05-21 Show GitHub Exploit DB Packet Storm
249323 4.3 警告 Andrew Killen - WordPress 用 Share and Follow プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2917 2012-05-23 18:47 2012-05-21 Show GitHub Exploit DB Packet Storm
249324 4.3 警告 dlo - WordPress 用 Sabre プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2916 2012-05-23 18:46 2012-05-21 Show GitHub Exploit DB Packet Storm
249325 4.3 警告 Hind - WordPress 用 Leaflet プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2913 2012-05-23 18:41 2012-05-21 Show GitHub Exploit DB Packet Storm
249326 4.3 警告 Kolja Schleich - WordPress 用 LeagueManager プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2912 2012-05-23 18:25 2012-05-21 Show GitHub Exploit DB Packet Storm
249327 5 警告 Chevereto Software - Chevereto の Upload/engine.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2012-2919 2012-05-23 18:19 2012-05-21 Show GitHub Exploit DB Packet Storm
249328 4.3 警告 Chevereto Software - Chevereto の Upload/engine.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2918 2012-05-23 18:18 2012-05-21 Show GitHub Exploit DB Packet Storm
249329 7.5 危険 Johan Cwiklinski - Galette の includes/picture.class.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-2338 2012-05-23 18:16 2012-05-21 Show GitHub Exploit DB Packet Storm
249330 10 危険 DMSoft Technologies - SkinCrafter の InitLicenKeys 関数におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-2271 2012-05-23 18:15 2012-05-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
317831 9.8 CRITICAL
Network 		rainniar bike_delivery_system A vulnerability, which was classified as critical, was found in itsourcecode Bike Delivery System 1.0. Affected is an unknown function of the file contact_us_action.php. The manipulation of the argum… CWE-89
SQL Injection 		CVE-2024-7505 2024-09-12 04:53 2024-08-6 Show GitHub Exploit DB Packet Storm
317832 6.5 MEDIUM
Network 		cybozu office Insertion of sensitive information into sent data issue exists in Cybozu Office 10.0.0 to 10.8.6, which may allow a user who can login to the product to view data that the user does not have access b… NVD-CWE-noinfo
CVE-2024-39817 2024-09-12 04:36 2024-08-6 Show GitHub Exploit DB Packet Storm
317833 9.8 CRITICAL
Network 		tenda i22_firmware A vulnerability has been found in Tenda i22 1.0.0.3(4687) and classified as critical. Affected by this vulnerability is the function formApPortalWebAuth of the file /goform/apPortalAuth. The manipula… CWE-120
Classic Buffer Overflow 		CVE-2024-7585 2024-09-12 04:32 2024-08-8 Show GitHub Exploit DB Packet Storm
317834 9.8 CRITICAL
Network 		tenda i22_firmware A vulnerability, which was classified as critical, was found in Tenda i22 1.0.0.3(4687). Affected is the function formApPortalPhoneAuth of the file /goform/apPortalPhoneAuth. The manipulation of the … CWE-120
Classic Buffer Overflow 		CVE-2024-7584 2024-09-12 04:25 2024-08-8 Show GitHub Exploit DB Packet Storm
317835 7.8 HIGH
Local 		jetbrains teamcity In JetBrains TeamCity before 2024.07.1 possible privilege escalation due to incorrect directory permissions CWE-276
Incorrect Default Permissions  		CVE-2024-43114 2024-09-12 04:11 2024-08-6 Show GitHub Exploit DB Packet Storm
317836 5.5 MEDIUM
Local 		huawei emui
harmonyos 		LaunchAnywhere vulnerability in the account module. Impact: Successful exploitation of this vulnerability may affect service confidentiality. NVD-CWE-noinfo
CVE-2024-42034 2024-09-12 03:55 2024-08-8 Show GitHub Exploit DB Packet Storm
317837 7.8 HIGH
Local 		huawei harmonyos
emui 		Permission control vulnerability in the App Multiplier module Impact:Successful exploitation of this vulnerability may affect functionality and confidentiality. NVD-CWE-noinfo
CVE-2024-42035 2024-09-12 03:52 2024-08-8 Show GitHub Exploit DB Packet Storm
317838 8.8 HIGH
Network 		pharmacy_management_system_project pharmacy_management_system A vulnerability was found in code-projects Pharmacy Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /index.php?action=editPharmacist. The mani… CWE-89
SQL Injection 		CVE-2024-8147 2024-09-12 03:37 2024-08-25 Show GitHub Exploit DB Packet Storm
317839 5.5 MEDIUM
Local 		logitech options\+ Logitech Options+ on MacOS prior 1.72 allows a local attacker to inject dynamic library within Options+ runtime and abuse permissions granted by the user to Options+ such as Camera. CWE-863
 Incorrect Authorization 		CVE-2024-8011 2024-09-12 03:15 2024-08-25 Show GitHub Exploit DB Packet Storm
317840 5.3 MEDIUM
Network 		purevpn purevpn PureVPN Linux client 2.0.2-Productions fails to properly handle DNS queries, allowing them to bypass the VPN tunnel and be sent directly to the ISP or default DNS servers. NVD-CWE-noinfo
CVE-2023-48957 2024-09-12 03:07 2024-08-26 Show GitHub Exploit DB Packet Storm