Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
250591 10 危険 SmarterTools Inc. - SmarterTools SmarterStats における詳細不明な脆弱性 CWE-DesignError
CVE-2011-4752 2011-12-19 16:18 2011-12-16 Show GitHub Exploit DB Packet Storm
250592 5 警告 SmarterTools Inc. - SmarterTools SmarterStats における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2011-4751 2011-12-19 16:17 2011-12-16 Show GitHub Exploit DB Packet Storm
250593 4.3 警告 SmarterTools Inc. - SmarterTools SmarterStats におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-4750 2011-12-19 16:16 2011-12-16 Show GitHub Exploit DB Packet Storm
250594 4.6 警告 ヒューレット・パッカード
IBM
オラクル		 - HP ALM 内の getInstalledPackages 関数における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-4834 2011-12-19 15:08 2011-12-15 Show GitHub Exploit DB Packet Storm
250595 7.5 危険 SugarCRM - SugarCRM の Leads モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-4833 2011-12-19 15:08 2011-12-15 Show GitHub Exploit DB Packet Storm
250596 7.5 危険 Moxiecode Systems AB
phpMyFAQ
PHPletter		 - 複数の製品で使用される inc/function.base.php における PHP コードを挿入される脆弱性 CWE-94
コード・インジェクション 		CVE-2011-4825 2011-12-19 15:07 2011-10-25 Show GitHub Exploit DB Packet Storm
250597 7.5 危険 The Cacti Group - Cacti の auth_login.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-4824 2011-12-19 15:06 2011-09-26 Show GitHub Exploit DB Packet Storm
250598 4.3 警告 Atlassian - Atlassian FishEye のユーザプロファイル機能におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-4822 2011-12-19 15:05 2011-10-24 Show GitHub Exploit DB Packet Storm
250599 3.6 注意 Artsoft Entertainment - Artsoft Entertainment の Rocks'n'Diamonds における任意のファイルを上書きされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-4606 2011-12-19 15:05 2011-12-15 Show GitHub Exploit DB Packet Storm
250600 4.3 警告 Digium - Asterisk の channels/chan_sip.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-200
情報漏えい 		CVE-2011-4598 2011-12-19 15:03 2011-11-2 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
312701 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: btrfs: prevent copying too big compressed lzo segment Compressed length can be corrupted to be a lot larger than memory we have a… CWE-787
 Out-of-bounds Write 		CVE-2022-48923 2024-09-12 21:50 2024-08-22 Show GitHub Exploit DB Packet Storm
312702 7.2 HIGH
Network 		lifterlms lifterlms The LifterLMS – WP LMS for eLearning, Online Courses, & Quizzes plugin for WordPress is vulnerable to blind SQL Injection via the 'order' parameter in all versions up to, and including, 7.7.5 due to … CWE-89
SQL Injection 		CVE-2024-7349 2024-09-12 21:43 2024-09-6 Show GitHub Exploit DB Packet Storm
312703 9.8 CRITICAL
Network 		plechevandrey wp-recall The WP-Recall – Registration, Profile, Commerce & More plugin for WordPress is vulnerable to privilege escalation/account takeover in all versions up to, and including, 16.26.8. This is due to to plu… CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2024-8292 2024-09-12 21:37 2024-09-6 Show GitHub Exploit DB Packet Storm
312704 - - - A vulnerability was found in Shandong Star Measurement and Control Equipment Heating Network Wireless Monitoring System 5.6.2 and classified as critical. Affected by this issue is the function GetDat… CWE-89
SQL Injection 		CVE-2024-8705 2024-09-12 21:35 2024-09-12 Show GitHub Exploit DB Packet Storm
312705 - - - A vulnerability, which was classified as problematic, was found in JFinalCMS up to 20240903. This affects the function update of the file /admin/template/update of the component com.cms.controller.ad… CWE-22
Path Traversal 		CVE-2024-8694 2024-09-12 21:35 2024-09-12 Show GitHub Exploit DB Packet Storm
312706 - - - A vulnerability, which was classified as problematic, has been found in Kaon CG3000 1.01.43. Affected by this issue is some unknown functionality of the component dhcpcd Command Handler. The manipula… CWE-79
Cross-site Scripting 		CVE-2024-8693 2024-09-12 21:35 2024-09-12 Show GitHub Exploit DB Packet Storm
312707 - - - evilnapsis Inventio Lite Versions v4 and before is vulnerable to SQL Injection via the "username" parameter in "/?action=processlogin." - CVE-2024-44541 2024-09-12 21:35 2024-09-12 Show GitHub Exploit DB Packet Storm
312708 - - - A problem with the ActiveMQ integration for both Cortex XSOAR and Cortex XSIAM can result in the cleartext exposure of the configured ActiveMQ credentials in log bundles. - CVE-2024-8689 2024-09-12 21:35 2024-09-12 Show GitHub Exploit DB Packet Storm
312709 - - - Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Payara Platform Payara Server (Logging modules) allows Sensitive credentials posted in plain-text on the server log.This is… - CVE-2024-8097 2024-09-12 21:35 2024-09-12 Show GitHub Exploit DB Packet Storm
312710 - - - RELY-PCIe v22.2.1 to v23.1.0 was discovered to contain a command injection vulnerability via the time_date function. - CVE-2024-44577 2024-09-12 21:35 2024-09-12 Show GitHub Exploit DB Packet Storm