Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 30, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
249841	7.5	危険	Novell marcus schafer	-	SUSE Studio で使用される Kiwi のファイルブラウザにおける任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2011-2651	2012-03-27 18:43	2011-08-23	Show	GitHub Exploit DB Packet Storm

249842	4.3	警告	Novell marcus schafer	-	SUSE Studio で使用される Kiwi におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-2650	2012-03-27 18:43	2011-08-23	Show	GitHub Exploit DB Packet Storm

249843	7.5	危険	Novell marcus schafer	-	SUSE Studio で使用される Kiwi における任意のコマンドを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2011-2649	2012-03-27 18:43	2011-08-23	Show	GitHub Exploit DB Packet Storm

249844	7.5	危険	Novell marcus schafer	-	SUSE Studio で使用される Kiwi における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2011-2648	2012-03-27 18:43	2011-08-23	Show	GitHub Exploit DB Packet Storm

249845	7.5	危険	Novell marcus schafer	-	SUSE Studio で使用される Kiwi における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2011-2647	2012-03-27 18:43	2011-08-23	Show	GitHub Exploit DB Packet Storm

249846	7.5	危険	Novell marcus schafer	-	SUSE Studio で使用される Kiwi における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2011-2646	2012-03-27 18:43	2011-08-23	Show	GitHub Exploit DB Packet Storm

249847	7.5	危険	Novell marcus schafer	-	SUSE Studio で使用される Kiwi における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2011-2645	2012-03-27 18:43	2011-08-23	Show	GitHub Exploit DB Packet Storm

249848	4.3	警告	Novell marcus schafer	-	SUSE Studio で使用される Kiwi におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-2644	2012-03-27 18:43	2011-08-23	Show	GitHub Exploit DB Packet Storm

249849	6.8	警告	The phpMyAdmin Project	-	phpMyAdmin の sql.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2011-2643	2012-03-27 18:43	2011-07-23	Show	GitHub Exploit DB Packet Storm

249850	2.6	注意	The phpMyAdmin Project	-	phpMyAdmin の table Print view 実装におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-2642	2012-03-27 18:43	2011-07-23	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
312231	7.2	HIGH Network	funadmin	funadmin	funadmin 5.0.2 is vulnerable to SQL Injection via the parentField parameter in the index method of \backend\controller\auth\Auth.php.	CWE-89 SQL Injection	CVE-2024-48230	2024-11-1 00:57	2024-10-26	Show	GitHub Exploit DB Packet Storm

312232	7.5	HIGH Network	mintplexlabs	anythingllm	mintplex-labs/anything-llm version latest contains a vulnerability where sensitive information, specifically a password, is improperly stored within a JWT (JSON Web Token) used as a bearer token in s…	CWE-312 Cleartext Storage of Sensitive Information	CVE-2024-7783	2024-11-1 00:49	2024-10-29	Show	GitHub Exploit DB Packet Storm

312233	7.2	HIGH Network	funadmin	funadmin	funadmin 5.0.2 has a SQL injection vulnerability in the Curd one click command mode plugin.	CWE-89 SQL Injection	CVE-2024-48229	2024-11-1 00:49	2024-10-26	Show	GitHub Exploit DB Packet Storm

312234	4.9	MEDIUM Network	funadmin	funadmin	Funadmin 5.0.2 has a logical flaw in the Curd one click command deletion function, which can result in a Denial of Service (DOS).	NVD-CWE-noinfo	CVE-2024-48227	2024-11-1 00:48	2024-10-26	Show	GitHub Exploit DB Packet Storm

312235	7.2	HIGH Network	funadmin	funadmin	Funadmin v5.0.2 has a SQL injection vulnerability in /curd/table/fieldlist.	CWE-89 SQL Injection	CVE-2024-48223	2024-11-1 00:44	2024-10-26	Show	GitHub Exploit DB Packet Storm

312236	7.2	HIGH Network	funadmin	funadmin	Funadmin v5.0.2 has a SQL injection vulnerability in /curd/table/edit.	CWE-89 SQL Injection	CVE-2024-48222	2024-11-1 00:44	2024-10-26	Show	GitHub Exploit DB Packet Storm

312237	7.2	HIGH Network	funadmin	funadmin	Funadmin v5.0.2 has a SQL injection vulnerability in /curd/table/list.	CWE-89 SQL Injection	CVE-2024-48218	2024-11-1 00:44	2024-10-26	Show	GitHub Exploit DB Packet Storm

312238	9.1	CRITICAL Network	langchain	langchain	A path traversal vulnerability exists in the `getFullPath` method of langchain-ai/langchainjs version 0.2.5. This vulnerability allows attackers to save files anywhere in the filesystem, overwrite ex…	CWE-22 Path Traversal	CVE-2024-7774	2024-11-1 00:39	2024-10-29	Show	GitHub Exploit DB Packet Storm

312239	7.2	HIGH Network	funadmin	funadmin	Funadmin 5.0.2 is vulnerable to SQL Injection in curd/table/savefield.	CWE-89 SQL Injection	CVE-2024-48226	2024-11-1 00:38	2024-10-26	Show	GitHub Exploit DB Packet Storm

312240	6.5	MEDIUM Network	funadmin	funadmin	Funadmin v5.0.2 has an arbitrary file deletion vulnerability in /curd/index/delfile.	NVD-CWE-noinfo	CVE-2024-48225	2024-11-1 00:35	2024-10-26	Show	GitHub Exploit DB Packet Storm