Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
210831 7.5 危険 Digium - Asterisk Open Source の res_pjsip_acl モジュールにおける PJSIP ACL ルールを回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-8413 2014-11-26 15:57 2014-11-20 Show GitHub Exploit DB Packet Storm
210832 5 警告 Digium - Asterisk Open Source および Certified Asterisk における ACL 制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-8412 2014-11-26 15:57 2014-11-20 Show GitHub Exploit DB Packet Storm
210833 4.3 警告 jQuery - jQuery UI の Tooltip ウィジェットの jquery.ui.tooltip.js のデフォルトコンテンツオプションにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-6662 2014-11-26 15:50 2012-11-27 Show GitHub Exploit DB Packet Storm
210834 3.5 注意 Liferay - Liferay Portal Enterprise Edition におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-8349 2014-11-26 15:27 2014-11-14 Show GitHub Exploit DB Packet Storm
210835 7.1 危険 Xen プロジェクト - Xen の arch/x86/mm.c 内の do_mmu_update 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2014-9030 2014-11-26 15:20 2014-11-20 Show GitHub Exploit DB Packet Storm
210836 4 警告 MantisBT Group - MantisBT における $g_download_attachments_threshold および $g_view_attachments_threshold の制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-8988 2014-11-26 13:46 2014-11-16 Show GitHub Exploit DB Packet Storm
210837 3.5 注意 MantisBT Group - MantisBT の Configuration Report ページのフィルタのセレクションリストにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-8986 2014-11-26 13:45 2014-06-1 Show GitHub Exploit DB Packet Storm
210838 5 警告 ARM Ltd. (旧 Offspark) - PolarSSL におけるダウングレード攻撃を実行される脆弱性 CWE-310
暗号の問題 		CVE-2014-8627 2014-11-26 11:57 2014-10-22 Show GitHub Exploit DB Packet Storm
210839 6.4 警告 Canonical - Ubuntu の apparmor パッケージの apparmor_parser における AppArmor ポリシーを回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-1424 2014-11-25 20:32 2014-11-20 Show GitHub Exploit DB Packet Storm
210840 5 警告 Moodle - Moodle の LTI モジュールにおける任意のメッセージの生成を誘発される脆弱性 CWE-20
不適切な入力確認 		CVE-2014-9060 2014-11-25 18:39 2014-11-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 25, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
251921 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Add NULL check for clk_mgr and clk_mgr->funcs in dcn30_init_hw This commit addresses a potential null pointer de… CWE-476
 NULL Pointer Dereference 		CVE-2024-49917 2024-10-25 01:54 2024-10-22 Show GitHub Exploit DB Packet Storm
251922 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Add null check for head_pipe in dcn32_acquire_idle_pipe_for_head_pipe_in_layer This commit addresses a potential… CWE-476
 NULL Pointer Dereference 		CVE-2024-49918 2024-10-25 01:49 2024-10-22 Show GitHub Exploit DB Packet Storm
251923 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: wifi: rtw88: always wait for both firmware loading attempts In 'rtw_wait_firmware_completion()', always wait for both (regular an… CWE-416
 Use After Free 		CVE-2024-47718 2024-10-25 01:31 2024-10-21 Show GitHub Exploit DB Packet Storm
251924 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: iommufd: Protect against overflow of ALIGN() during iova allocation Userspace can supply an iova and uptr such that the target io… CWE-787
 Out-of-bounds Write 		CVE-2024-47719 2024-10-25 01:21 2024-10-21 Show GitHub Exploit DB Packet Storm
251925 9.8 CRITICAL
Network 		vasiliskerasiotis affiliator Unrestricted Upload of File with Dangerous Type vulnerability in Vasilis Kerasiotis Affiliator allows Upload a Web Shell to a Web Server.This issue affects Affiliator: from n/a through 2.1.3. CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2024-49326 2024-10-25 01:13 2024-10-20 Show GitHub Exploit DB Packet Storm
251926 3.3 LOW
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: usb: typec: tipd: Free IRQ only if it was requested before In polling mode, if no IRQ was requested there is no need to free it. … CWE-763
 Release of Invalid Pointer or Reference 		CVE-2024-50057 2024-10-25 01:12 2024-10-22 Show GitHub Exploit DB Packet Storm
251927 9.8 CRITICAL
Network 		sovratec sovratec_case_management Unrestricted Upload of File with Dangerous Type vulnerability in Sovratec Sovratec Case Management allows Upload a Web Shell to a Web Server.This issue affects Sovratec Case Management: from n/a thro… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2024-49324 2024-10-25 01:11 2024-10-20 Show GitHub Exploit DB Packet Storm
251928 9.8 CRITICAL
Network 		asepbagjapriandana woostagram_connect Unrestricted Upload of File with Dangerous Type vulnerability in Asep Bagja Priandana Woostagram Connect allows Upload a Web Shell to a Web Server.This issue affects Woostagram Connect: from n/a thro… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2024-49327 2024-10-25 01:07 2024-10-20 Show GitHub Exploit DB Packet Storm
251929 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: soc: xilinx: rename cpu_number1 to dummy_cpu_number The per cpu variable cpu_number1 is passed to xlnx_event_handler as argument … NVD-CWE-noinfo
CVE-2024-43851 2024-10-25 01:07 2024-08-17 Show GitHub Exploit DB Packet Storm
251930 9.8 CRITICAL
Network 		vivektamrakar wp_rest_api_fns Unrestricted Upload of File with Dangerous Type vulnerability in Vivek Tamrakar WP REST API FNS allows Upload a Web Shell to a Web Server.This issue affects WP REST API FNS: from n/a through 1.0.0. CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2024-49329 2024-10-25 01:05 2024-10-20 Show GitHub Exploit DB Packet Storm