Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 11, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
249831	5	警告	BE User Switch	-	TYPO3 用 BE User Switch エクステンションにおける重要な情報を取得される脆弱性	CWE-noinfo 情報不足	CVE-2012-1085	2012-02-17 14:40	2012-02-14	Show	GitHub Exploit DB Packet Storm

249832	4.3	警告	BE User Switch	-	TYPO3 用 BE User Switch エクステンションにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-1084	2012-02-17 14:39	2012-02-14	Show	GitHub Exploit DB Packet Storm

249833	6.8	警告	Terminal PHP Shell	-	TYPO3 用 Terminal PHP Shell エクステンションにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2012-1083	2012-02-17 14:38	2012-02-14	Show	GitHub Exploit DB Packet Storm

249834	3.5	注意	Terminal PHP Shell	-	TYPO3 用 Terminal PHP Shell エクステンションにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-1082	2012-02-17 14:37	2012-02-14	Show	GitHub Exploit DB Packet Storm

249835	4.3	警告	Roderick Braun	-	TYPO3 用 Yet another Google search エクステンションにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-1081	2012-02-17 14:37	2012-02-14	Show	GitHub Exploit DB Packet Storm

249836	4.3	警告	Euro Calculator	-	TYPO3 用 Euro Calculator エクステンションにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-1080	2012-02-17 14:36	2012-02-14	Show	GitHub Exploit DB Packet Storm

249837	6.5	警告	Helut Hummel	-	TYPO3 用 Webservices for TYPO3 エクステンションにおける任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2012-1079	2012-02-17 14:36	2012-02-14	Show	GitHub Exploit DB Packet Storm

249838	5	警告	Claus Due	-	TYPO3 用 System Utilities エクステンションにおける重要な情報を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-1078	2012-02-17 14:35	2012-02-14	Show	GitHub Exploit DB Packet Storm

249839	7.5	危険	Bluechip Software	-	TYPO3 用 Post data records to Facebook エクステンションにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-1077	2012-02-17 14:34	2012-02-14	Show	GitHub Exploit DB Packet Storm

249840	4.3	警告	Robert Gonda	-	TYPO3 用 Documents download エクステンションにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-1076	2012-02-17 14:34	2012-02-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 11, 2026, 4:09 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
313491	9.8	CRITICAL Network	angeljudesuarez	placement_management_system	A vulnerability, which was classified as critical, was found in itsourcecode Placement Management System 1.0. Affected is an unknown function of the file login.php. The manipulation of the argument e…	CWE-89 SQL Injection	CVE-2024-7449	2024-08-21 04:49	2024-08-4	Show	GitHub Exploit DB Packet Storm

313492	5.4	MEDIUM Network	insurance_management_system_project	insurance_management_system	A vulnerability classified as problematic was found in nafisulbari/itsourcecode Insurance Management System 1.0. Affected by this vulnerability is an unknown functionality of the file addNominee.php …	CWE-79 Cross-site Scripting	CVE-2024-7916	2024-08-21 04:38	2024-08-19	Show	GitHub Exploit DB Packet Storm

313493	7.5	HIGH Network	corydolphin	flask-cors	A vulnerability in corydolphin/flask-cors version 4.0.1 allows the `Access-Control-Allow-Private-Network` CORS header to be set to true by default, without any configuration option. This behavior can…	NVD-CWE-Other	CVE-2024-6221	2024-08-21 04:37	2024-08-19	Show	GitHub Exploit DB Packet Storm

313494	-		-	-	An issue in the login component (process_login.php) of Hotel Management System commit 79d688 allows attackers to authenticate without providing a valid password.	-	CVE-2024-42559	2024-08-21 04:35	2024-08-20	Show	GitHub Exploit DB Packet Storm

313495	-		-	-	The Chatbot with ChatGPT WordPress plugin before 2.4.5 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by unauthenticated …	-	CVE-2024-6847	2024-08-21 04:35	2024-08-20	Show	GitHub Exploit DB Packet Storm

313496	7.2	HIGH Network	dedebiz	dedebiz	A vulnerability classified as critical has been found in DedeBIZ 6.3.0. This affects the function AdminUpload of the file admin/archives_do.php. The manipulation of the argument litpic leads to unres…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2024-7905	2024-08-21 04:35	2024-08-18	Show	GitHub Exploit DB Packet Storm

313497	8.8	HIGH Network	dedebiz	dedebiz	A vulnerability was found in DedeBIZ 6.3.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file admin/file_manage_control.php of the component File Extensi…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2024-7904	2024-08-21 04:35	2024-08-18	Show	GitHub Exploit DB Packet Storm

313498	8.8	HIGH Network	dedebiz	dedebiz	A vulnerability was found in DedeBIZ 6.3.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file admin/media_add.php of the component File Extensio…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2024-7903	2024-08-21 04:34	2024-08-18	Show	GitHub Exploit DB Packet Storm

313499	6.1	MEDIUM Network	public_knowledge_project	open_journal_systems	A vulnerability was found in pkp ojs up to 3.4.0-6 and classified as problematic. Affected by this issue is some unknown functionality of the file /login/signOut. The manipulation of the argument sou…	CWE-601 Open Redirect	CVE-2024-7902	2024-08-21 04:34	2024-08-18	Show	GitHub Exploit DB Packet Storm

313500	5.4	MEDIUM Network	scada-lts	scada-lts	A vulnerability has been found in Scada-LTS 2.7.8 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /Scada-LTS/app.shtm#/alarms/Scada of the compon…	CWE-79 Cross-site Scripting	CVE-2024-7901	2024-08-21 04:32	2024-08-18	Show	GitHub Exploit DB Packet Storm