Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 28, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
251621 4.3 警告 LEPTON Project - LEPTON におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1000 2012-02-27 15:25 2012-02-24 Show GitHub Exploit DB Packet Storm
251622 7.5 危険 LEPTON Project - LEPTON の modules/news/rss.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-0999 2012-02-27 15:24 2012-02-24 Show GitHub Exploit DB Packet Storm
251623 7.5 危険 LEPTON Project - LEPTON の account/preferences.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2012-0998 2012-02-27 15:24 2012-02-24 Show GitHub Exploit DB Packet Storm
251624 6.8 警告 11in1 - 11in1 の admin/index.php におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-0997 2012-02-27 15:23 2012-02-24 Show GitHub Exploit DB Packet Storm
251625 5 警告 11in1 - 11in1 におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2012-0996 2012-02-27 15:21 2012-02-24 Show GitHub Exploit DB Packet Storm
251626 7.5 危険 CONTIMEX - CONTIMEX Impulsio CMS における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-1294 2012-02-27 15:20 2011-02-23 Show GitHub Exploit DB Packet Storm
251627 4.3 警告 BoonEx - Boonex Dolphin におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-0873 2012-02-27 15:20 2011-02-23 Show GitHub Exploit DB Packet Storm
251628 5 警告 John Koleszar - VP8 Codec SDK (libvpx) におけるサービス運用妨害 (アプリケーションクラッシュ)の脆弱性 CWE-20
不適切な入力確認 		CVE-2012-0823 2012-02-27 15:19 2012-02-23 Show GitHub Exploit DB Packet Storm
251629 5 警告 SAP - SAP NetWeaver における MessagingSystem Performance Data についての重要な情報を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2012-1292 2012-02-27 13:49 2012-02-23 Show GitHub Exploit DB Packet Storm
251630 5 警告 SAP - SAP NetWeaver における Adapter Monitor についての重要な情報を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2012-1291 2012-02-27 13:48 2012-02-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
311581 9.8 CRITICAL
Network 		webroot secureanywhere_web_shield Access of Resource Using Incompatible Type ('Type Confusion') vulnerability in Webroot SecureAnywhere - Web Shield on Windows, ARM, 64 bit, 32 bit (wrUrl.Dll modules) allows Functionality Misuse.This… CWE-843
Type Confusion 		CVE-2024-7825 2024-10-30 22:49 2024-10-4 Show GitHub Exploit DB Packet Storm
311582 9.8 CRITICAL
Network 		webroot secureanywhere_web_shield Improper Check for Unusual or Exceptional Conditions vulnerability in Webroot SecureAnywhere - Web Shield on Windows, ARM, 64 bit, 32 bit (wrURL.Dll modules) allows Functionality Misuse.This issue af… CWE-754
 Improper Check for Unusual or Exceptional Conditions 		CVE-2024-7826 2024-10-30 22:48 2024-10-4 Show GitHub Exploit DB Packet Storm
311583 8.8 HIGH
Network 		snyk snyk_cli The package Snyk CLI before 1.1294.0 is vulnerable to Code Injection when scanning an untrusted Gradle project. The vulnerability can be triggered if Snyk test is run inside the untrusted project due… CWE-94
Code Injection 		CVE-2024-48964 2024-10-30 22:46 2024-10-24 Show GitHub Exploit DB Packet Storm
311584 9.8 CRITICAL
Network 		zzcms zzcms A vulnerability was found in ZZCMS 2023 and classified as critical. This issue affects some unknown processing of the file 3/Ebak5.1/upload/ChangeTable.php. The manipulation of the argument savefilen… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2024-10292 2024-10-30 22:40 2024-10-24 Show GitHub Exploit DB Packet Storm
311585 9.8 CRITICAL
Network 		zzcms zzcms A vulnerability was found in ZZCMS 2023. It has been classified as critical. Affected is the function Ebak_SetGotoPak of the file 3/Ebbak5.1/upload/class/functions.php. The manipulation of the argume… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2024-10293 2024-10-30 22:37 2024-10-24 Show GitHub Exploit DB Packet Storm
311586 9.8 CRITICAL
Network 		zzcms zzcms A vulnerability has been found in ZZCMS 2023 and classified as critical. This vulnerability affects the function Ebak_DoExecSQL/Ebak_DotranExecutSQL of the file 3/Ebak5.1/upload/phome.php. The manipu… CWE-89
SQL Injection 		CVE-2024-10291 2024-10-30 22:23 2024-10-24 Show GitHub Exploit DB Packet Storm
311587 9.8 CRITICAL
Network 		mayurik best_house_rental_management_system A vulnerability was found in SourceCodester Best House Rental Management System 1.0 and classified as critical. Affected by this issue is the function delete_tenant of the file /ajax.php?action=delet… CWE-89
SQL Injection 		CVE-2024-10349 2024-10-30 22:14 2024-10-25 Show GitHub Exploit DB Packet Storm
311588 5.4 MEDIUM
Network 		mayurik best_house_rental_management_system A vulnerability was found in SourceCodester Best House Rental Management System 1.0. It has been classified as problematic. This affects an unknown part of the file /index.php?page=tenants of the com… CWE-79
Cross-site Scripting 		CVE-2024-10348 2024-10-30 22:03 2024-10-25 Show GitHub Exploit DB Packet Storm
311589 5.4 MEDIUM
Network 		- - A vulnerability was found in aap-gateway. A Cross-site Scripting (XSS) vulnerability exists in the gateway component. This flaw allows a malicious user to perform actions that impact users by using t… CWE-79
Cross-site Scripting 		CVE-2024-10033 2024-10-30 12:15 2024-10-17 Show GitHub Exploit DB Packet Storm
311590 - - - An arbitrary file upload vulnerability in Huly Platform v0.6.295 allows attackers to execute arbitrary code via uploading a crafted HTML file into chat group. - CVE-2024-48450 2024-10-30 06:35 2024-10-26 Show GitHub Exploit DB Packet Storm