Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
208981 9 危険 Schneider Electric - Schneider Electric ProClima の MDraw30.ocx の ActiveX コントロールにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2014-9188 2015-01-6 10:46 2014-12-10 Show GitHub Exploit DB Packet Storm
208982 7.5 危険 Schneider Electric - Schneider Electric ProClima の MDraw30.ocx の ActiveX コントロールにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2014-8514 2015-01-6 10:45 2014-12-10 Show GitHub Exploit DB Packet Storm
208983 7.5 危険 Schneider Electric - Schneider Electric ProClima の MDraw30.ocx の ActiveX コントロールにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2014-8513 2015-01-6 10:45 2014-12-10 Show GitHub Exploit DB Packet Storm
208984 7.5 危険 Schneider Electric - Schneider Electric ProClima の Atx45.ocx の ActiveX コントロールにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2014-8512 2015-01-6 10:45 2014-12-10 Show GitHub Exploit DB Packet Storm
208985 10 危険 Schneider Electric - Schneider Electric ProClima の Atx45.ocx の ActiveX コントロールにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2014-8511 2015-01-6 10:44 2014-12-10 Show GitHub Exploit DB Packet Storm
208986 7.2 危険 Cray Inc. - Cray Linux Environment の Cray デバイス上で稼動する apinit における権限を取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2014-0748 2015-01-6 10:19 2014-01-31 Show GitHub Exploit DB Packet Storm
208987 4.3 警告 Eucalyptus Systems - Eucalyptus のクラウドコントローラコンポーネントにおけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2013-4769 2015-01-5 19:53 2013-07-5 Show GitHub Exploit DB Packet Storm
208988 3.5 注意 Owl Intranet Engine - Owl Intranet Knowledgebase におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-4754 2015-01-5 19:44 2013-07-2 Show GitHub Exploit DB Packet Storm
208989 3.5 注意 Claroline Consortium - Claroline におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-4753 2015-01-5 19:36 2013-07-2 Show GitHub Exploit DB Packet Storm
208990 4.9 警告 Linux - Linux Kernel の fs/isofs/rock.c の rock_continue 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2014-9420 2015-01-5 18:55 2014-12-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 24, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
251811 5.4 MEDIUM
Network 		ultimatemember ultimate_member The Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's '… CWE-79
Cross-site Scripting 		CVE-2024-8519 2024-10-16 23:06 2024-10-4 Show GitHub Exploit DB Packet Storm
251812 4.8 MEDIUM
Network 		enalean tuleap Tuleap is a tool for end to end traceability of application and system developments. Prior to Tuleap Community Edition 15.13.99.37, Tuleap Enterprise Edition 15.13-3, and Tuleap Enterprise Edition 15… CWE-79
Cross-site Scripting 		CVE-2024-46980 2024-10-16 23:05 2024-10-15 Show GitHub Exploit DB Packet Storm
251813 7.5 HIGH
Network 		acronis cyber_protect Cleartext transmission of sensitive information in acep-collector service. The following products are affected: Acronis Cyber Protect 16 (Linux, Windows) before build 38690. CWE-319
Cleartext Transmission of Sensitive Information 		CVE-2024-49387 2024-10-16 22:58 2024-10-15 Show GitHub Exploit DB Packet Storm
251814 9.1 CRITICAL
Network 		acronis cyber_protect Sensitive information manipulation due to improper authorization. The following products are affected: Acronis Cyber Protect 16 (Linux, Windows) before build 38690. CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2024-49388 2024-10-16 22:57 2024-10-15 Show GitHub Exploit DB Packet Storm
251815 4.3 MEDIUM
Adjacent 		acronis cyber_protect Excessive attack surface in acep-importer service due to binding to an unrestricted IP address. The following products are affected: Acronis Cyber Protect 16 (Linux, Windows) before build 38690. NVD-CWE-Other
CVE-2024-49383 2024-10-16 22:53 2024-10-15 Show GitHub Exploit DB Packet Storm
251816 4.3 MEDIUM
Adjacent 		acronis cyber_protect Excessive attack surface in archive-server service due to binding to an unrestricted IP address. The following products are affected: Acronis Cyber Protect 16 (Linux, Windows) before build 38690. NVD-CWE-Other
CVE-2024-49382 2024-10-16 22:53 2024-10-15 Show GitHub Exploit DB Packet Storm
251817 4.3 MEDIUM
Adjacent 		acronis cyber_protect Excessive attack surface in acep-collector service due to binding to an unrestricted IP address. The following products are affected: Acronis Cyber Protect 16 (Linux, Windows) before build 38690. NVD-CWE-Other
CVE-2024-49384 2024-10-16 22:52 2024-10-15 Show GitHub Exploit DB Packet Storm
251818 7.8 HIGH
Local 		electronics.jtekt kostac_plc_programming_software Out-of-bounds write vulnerability exists in Kostac PLC Programming Software (Former name: Koyo PLC Programming Software) Version 1.6.14.0 and earlier. Having a user open a specially crafted project f… CWE-787
 Out-of-bounds Write 		CVE-2024-47134 2024-10-16 22:50 2024-10-3 Show GitHub Exploit DB Packet Storm
251819 8.8 HIGH
Network 		rems drag_and_drop_image_upload A vulnerability was found in SourceCodester Drag and Drop Image Upload 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /upload.php. The manipulati… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2024-9975 2024-10-16 22:44 2024-10-15 Show GitHub Exploit DB Packet Storm
251820 9.8 CRITICAL
Network 		code-projects pharmacy_management_system A vulnerability classified as critical has been found in code-projects Pharmacy Management System 1.0. This affects an unknown part of the file /php/manage_customer.php?action=search. The manipulatio… CWE-89
SQL Injection 		CVE-2024-9976 2024-10-16 22:42 2024-10-15 Show GitHub Exploit DB Packet Storm