Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
208991 2.1 注意 Linux - Linux Kernel の arch/x86/kernel/process_64.c の __switch_to 関数における ASLR 保護メカニズムを回避される脆弱性 CWE-200
情報漏えい 		CVE-2014-9419 2015-01-5 18:51 2014-12-11 Show GitHub Exploit DB Packet Storm
208992 3.5 注意 The phpMyAdmin Project - phpMyAdmin の js/sql.js の PMA_unInlineEditRow 関数におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-3592 2015-01-5 18:20 2011-09-3 Show GitHub Exploit DB Packet Storm
208993 3.5 注意 The phpMyAdmin Project - phpMyAdmin におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-3591 2015-01-5 18:20 2011-09-9 Show GitHub Exploit DB Packet Storm
208994 7.5 危険 MPlayer project
VideoLAN		 - VideoLAN VLC media player および MPlayer で使用される real.c における整数アンダーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2010-2062 2015-01-5 18:18 2010-06-4 Show GitHub Exploit DB Packet Storm
208995 5 警告 Maxthon - Android 用 Maxthon Cloud Browser アプリケーションにおけるアドレスバーを偽装される脆弱性 CWE-Other
その他 		CVE-2014-1449 2015-01-5 18:07 2014-01-22 Show GitHub Exploit DB Packet Storm
208996 5 警告 MongoDB Inc. - MongoDB の mongod の db/commands/authentication_commands.cpp におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2014-3971 2015-01-5 17:55 2014-04-30 Show GitHub Exploit DB Packet Storm
208997 5.8 警告 hapi.js - Node.js 用 crumb プラグインにおける重要な情報を取得される脆弱性 CWE-Other
その他 		CVE-2014-7193 2015-01-5 17:55 2014-08-1 Show GitHub Exploit DB Packet Storm
208998 7.5 危険 VideoLAN - VideoLAN VLC media player におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-3623 2015-01-5 17:33 2011-09-21 Show GitHub Exploit DB Packet Storm
208999 7.5 危険 VideoLAN - VideoLAN VLC media player におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-1445 2015-01-5 17:30 2010-04-21 Show GitHub Exploit DB Packet Storm
209000 7.5 危険 VideoLAN - VideoLAN VLC media player の ZIP アーカイブのデコンプレッサにおけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2010-1444 2015-01-5 17:29 2010-04-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 24, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
252021 6.5 MEDIUM
Network 		- - The WordPress Comments Import & Export plugin for WordPress is vulnerable to to arbitrary file read due to insufficient file path validation during the comments import process, in versions up to, and… CWE-22
Path Traversal 		CVE-2024-7514 2024-10-15 21:58 2024-10-11 Show GitHub Exploit DB Packet Storm
252022 - - - A path traversal vulnerability exists in the parisneo/lollms-webui repository, specifically in the `lollms_file_system.py` file. The functions `add_rag_database`, `toggle_mount_rag_database`, and `ve… CWE-22
Path Traversal 		CVE-2024-6971 2024-10-15 21:58 2024-10-11 Show GitHub Exploit DB Packet Storm
252023 - - - An issue has been discovered discovered in GitLab EE/CE affecting all versions starting from 11.4 before 17.2.9, all versions starting from 17.3 before 17.3.5, all versions starting from 17.4 before … - CVE-2024-5005 2024-10-15 21:58 2024-10-11 Show GitHub Exploit DB Packet Storm
252024 - - - Snipe-IT before 7.0.10 allows remote code execution (associated with cookie serialization) when an attacker knows the APP_KEY. This is exacerbated by .env files, available from the product's reposito… - CVE-2024-48987 2024-10-15 21:58 2024-10-11 Show GitHub Exploit DB Packet Storm
252025 - - - A Server-Side Request Forgery (SSRF) vulnerability in SMA1000 appliance firmware versions 12.4.3-02676 and earlier allows a remote, unauthenticated attacker to cause the SMA1000 server-side applicati… CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2024-45317 2024-10-15 21:58 2024-10-11 Show GitHub Exploit DB Packet Storm
252026 - - - The Improper link resolution before file access ('Link Following') vulnerability in SonicWall Connect Tunnel (version 12.4.3.271 and earlier of Windows client) allows users with standard privileges t… CWE-59
Link Following 		CVE-2024-45316 2024-10-15 21:58 2024-10-11 Show GitHub Exploit DB Packet Storm
252027 - - - PAX Android based POS devices allow for escalation of privilege via improperly configured scripts. An attacker must have shell access with system account privileges in order to exploit this vulnerab… - CVE-2023-42133 2024-10-15 21:58 2024-10-11 Show GitHub Exploit DB Packet Storm
252028 - - - A vulnerability, which was classified as critical, has been found in Codezips Pharmacy Management System 1.0. This issue affects some unknown processing of the file product/register.php. The manipula… CWE-89
SQL Injection 		CVE-2024-9813 2024-10-15 21:58 2024-10-11 Show GitHub Exploit DB Packet Storm
252029 - - - A vulnerability classified as critical was found in code-projects Crud Operation System 1.0. This vulnerability affects unknown code of the file delete.php. The manipulation of the argument sid leads… CWE-89
SQL Injection 		CVE-2024-9812 2024-10-15 21:58 2024-10-11 Show GitHub Exploit DB Packet Storm
252030 - - - A vulnerability classified as critical has been found in code-projects Restaurant Reservation System 1.0. This affects an unknown part of the file filter3.php. The manipulation of the argument compan… CWE-89
SQL Injection 		CVE-2024-9811 2024-10-15 21:58 2024-10-11 Show GitHub Exploit DB Packet Storm