Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 13, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
250741 5 警告 Digium - Asterisk の UDP 実装での SIP におけるユーザ名を列挙される脆弱性 CWE-200
情報漏えい 		CVE-2011-4597 2011-12-19 15:01 2011-07-18 Show GitHub Exploit DB Packet Storm
250742 7.5 危険 Caupo.Net - CaupoShop Pro および CaupoShop Classic におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2011-4832 2011-12-19 13:44 2011-12-15 Show GitHub Exploit DB Packet Storm
250743 4 警告 David Azoulay - Web File Browser の webFileBrowser.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2011-4831 2011-12-19 13:43 2011-12-15 Show GitHub Exploit DB Packet Storm
250744 7.5 危険 e4j Extensions for Joomla - Joomla! 用 Vik Real Estate コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-4823 2011-12-19 11:52 2011-12-15 Show GitHub Exploit DB Packet Storm
250745 3.5 注意 Barter Sites - Joomla! 用 Barter Sites の com_listing コンポーネントにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-4830 2011-12-19 11:51 2011-12-15 Show GitHub Exploit DB Packet Storm
250746 7.5 危険 Barter Sites - Joomla! 用 Barter Sites の com_listing コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-4829 2011-12-19 11:50 2011-12-15 Show GitHub Exploit DB Packet Storm
250747 7.5 危険 AutoSec Tools - AutoSec Tools V-CMS のファイルアップロードにおける任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2011-4828 2011-12-19 11:49 2011-11-27 Show GitHub Exploit DB Packet Storm
250748 4.3 警告 AutoSec Tools - AutoSec Tools V-CMS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-4827 2011-12-19 11:39 2011-12-15 Show GitHub Exploit DB Packet Storm
250749 6.8 警告 AutoSec Tools - AutoSec Tools V-CMS の session.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-4826 2011-12-19 11:30 2011-12-15 Show GitHub Exploit DB Packet Storm
250750 4.3 警告 Google - Google Chrome のソースビュー機能における URL バーを偽造される脆弱性 CWE-20
不適切な入力確認 		CVE-2011-3907 2011-12-16 16:12 2011-12-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
312451 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: drm/msm/dpu: move dpu_encoder's connector assignment to atomic_enable() For cases where the crtc's connectors_changed was set wit… CWE-476
 NULL Pointer Dereference 		CVE-2024-45015 2024-09-14 01:35 2024-09-12 Show GitHub Exploit DB Packet Storm
312452 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: nvme: move stopping keep-alive into nvme_uninit_ctrl() Commit 4733b65d82bd ("nvme: start keep-alive after admin queue setup") mov… CWE-416
 Use After Free 		CVE-2024-45013 2024-09-14 01:35 2024-09-12 Show GitHub Exploit DB Packet Storm
312453 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: nouveau/firmware: use dma non-coherent allocator Currently, enabling SG_DEBUG in the kernel will cause nouveau to hit a BUG() on … CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2024-45012 2024-09-14 01:35 2024-09-12 Show GitHub Exploit DB Packet Storm
312454 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: mptcp: pm: only mark 'subflow' endp as available Adding the following warning ... WARN_ON_ONCE(msk->pm.local_addr_used == 0) … NVD-CWE-noinfo
CVE-2024-45010 2024-09-14 01:35 2024-09-12 Show GitHub Exploit DB Packet Storm
312455 5.4 MEDIUM
Network 		perfexcrm perfex_crm A stored cross-site scripting (XSS) vulnerability in the Discussion section of Perfex CRM v1.1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Cont… CWE-79
Cross-site Scripting 		CVE-2024-44851 2024-09-14 01:34 2024-09-12 Show GitHub Exploit DB Packet Storm
312456 9.8 CRITICAL
Network 		comfast cf-xr11_firmware COMFAST CF-XR11 V2.7.2 has a command injection vulnerability in function sub_424CB4. Attackers can send POST request messages to /usr/bin/webmgnt and inject commands into parameter iface. CWE-77
Command Injection 		CVE-2024-44466 2024-09-14 01:32 2024-09-12 Show GitHub Exploit DB Packet Storm
312457 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: fix bitmap corruption on close_range() with CLOSE_RANGE_UNSHARE copy_fd_bitmaps(new, old, count) is expected to copy the first co… CWE-787
 Out-of-bounds Write 		CVE-2024-45025 2024-09-14 01:30 2024-09-12 Show GitHub Exploit DB Packet Storm
312458 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: mm/hugetlb: fix hugetlb vs. core-mm PT locking We recently made GUP's common page table walking code to also walk hugetlb VMAs wi… CWE-667
 Improper Locking 		CVE-2024-45024 2024-09-14 01:30 2024-09-12 Show GitHub Exploit DB Packet Storm
312459 7.1 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: md/raid1: Fix data corruption for degraded array with slow disk read_balance() will avoid reading from slow disks as much as poss… CWE-787
 Out-of-bounds Write 		CVE-2024-45023 2024-09-14 01:30 2024-09-12 Show GitHub Exploit DB Packet Storm
312460 3.9 LOW
Physics 		redhat
opensc_project 		enterprise_linux
opensc 		A vulnerability was found in pkcs15-init in OpenSC. An attacker could use a crafted USB Device or Smart Card, which would present the system with a specially crafted response to APDUs. Insufficient… CWE-908
 Use of Uninitialized Resource 		CVE-2024-45618 2024-09-14 01:30 2024-09-4 Show GitHub Exploit DB Packet Storm