Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228521 4.3 警告 EGroupware - eGroupware におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2211 2012-11-26 15:35 2012-04-5 Show GitHub Exploit DB Packet Storm
228522 4.3 警告 Joao Ventura - Drupal 用 Printer, email and PDF versions モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2084 2012-11-26 15:35 2012-04-4 Show GitHub Exploit DB Packet Storm
228523 2.1 注意 シトリックス・システムズ - Xen におけるサービス運用妨害 (Xen クラッシュ) の脆弱性 CWE-noinfo
情報不足 		CVE-2012-4536 2012-11-26 15:32 2012-11-13 Show GitHub Exploit DB Packet Storm
228524 6.8 警告 Mcrypt - mcrypt におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-4527 2012-11-26 15:31 2012-11-2 Show GitHub Exploit DB Packet Storm
228525 6.8 警告 Mcrypt - mcrypt におけるフォーマットストリングの脆弱性 CWE-134
書式文字列の問題 		CVE-2012-4426 2012-11-26 15:30 2012-11-21 Show GitHub Exploit DB Packet Storm
228526 6.8 警告 Mcrypt - mcrypt の extra.c におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-4409 2012-11-26 15:30 2012-11-21 Show GitHub Exploit DB Packet Storm
228527 5 警告 日立 - JP1/Automatic Job Management System 3 および JP1/Automatic Job Management System 2 におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		- 2012-11-22 16:06 2012-11-16 Show GitHub Exploit DB Packet Storm
228528 5 警告 日立 - Hitachi Device Manager Software 製品におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		- 2012-11-22 16:05 2012-11-16 Show GitHub Exploit DB Packet Storm
228529 4 警告 Moodle - Moodle における全てのケイパビリティデータを読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-5481 2012-11-22 15:30 2012-11-19 Show GitHub Exploit DB Packet Storm
228530 6.4 警告 Moodle - Moodle における他の参加者のエントリの閲覧制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-5480 2012-11-22 15:21 2012-11-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 24, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
248891 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fix crash caused by calling __xfrm_state_delete() twice The km.state is not checked in driver's delayed work. When xfr… CWE-672
 Operation on a Resource after Expiration or Release 		CVE-2024-49953 2024-11-8 02:44 2024-10-22 Show GitHub Exploit DB Packet Storm
248892 - - - An issue was discovered in the IhisiServiceSmm module in Insyde InsydeH2O with kernel 5.2 before 05.28.42, 5.3 before 05.37.42, 5.4 before 05.45.39, 5.5 before 05.53.39, and 5.6 before 05.60.39 that … - CVE-2023-28149 2024-11-8 02:35 2024-08-1 Show GitHub Exploit DB Packet Storm
248893 4.8 MEDIUM
Network 		agendaless waitress Waitress is a Web Server Gateway Interface server for Python 2 and 3. A remote client may send a request that is exactly recv_bytes (defaults to 8192) long, followed by a secondary request using HTTP… CWE-444
CWE-367
HTTP Request Smuggling
 Time-of-check Time-of-use (TOCTOU) Race Condition 		CVE-2024-49768 2024-11-8 02:28 2024-10-30 Show GitHub Exploit DB Packet Storm
248894 2.7 LOW
Network 		nirmata kyverno Kyverno is a policy engine designed for Kubernetes. A kyverno ClusterPolicy, ie. "disallow-privileged-containers," can be overridden by the creation of a PolicyException in a random namespace. By des… CWE-863
 Incorrect Authorization 		CVE-2024-48921 2024-11-8 02:20 2024-10-30 Show GitHub Exploit DB Packet Storm
248895 9.8 CRITICAL
Network 		servicenow servicenow ServiceNow has addressed an input validation vulnerability that was identified in the Now Platform. This vulnerability could enable an unauthenticated user to remotely execute code within the context… CWE-94
Code Injection 		CVE-2024-8923 2024-11-8 02:18 2024-10-30 Show GitHub Exploit DB Packet Storm
248896 7.5 HIGH
Network 		servicenow servicenow ServiceNow has addressed a blind SQL injection vulnerability that was identified in the Now Platform. This vulnerability could enable an unauthenticated user to extract unauthorized information. Serv… CWE-89
SQL Injection 		CVE-2024-8924 2024-11-8 02:16 2024-10-30 Show GitHub Exploit DB Packet Storm
248897 7.8 HIGH
Local 		autodesk autocad_architecture
autocad_electrical
autocad_mechanical
autocad_mep
autocad_plant_3d
civil_3d
advance_steel
autocad 		A maliciously crafted SLDPRT file when parsed in odxsw_dll.dll through Autodesk AutoCAD can force a Heap Based Buffer Overflow vulnerability. A malicious actor can leverage this vulnerability to cau… CWE-787
 Out-of-bounds Write 		CVE-2024-8587 2024-11-8 02:15 2024-10-30 Show GitHub Exploit DB Packet Storm
248898 3.3 LOW
Local 		hashicorp vagrant_vmware_utility The Vagrant VMWare Utility Windows installer targeted a custom location with a non-protected path that could be modified by an unprivileged user, introducing potential for unauthorized file system wr… CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2024-10228 2024-11-8 02:12 2024-10-30 Show GitHub Exploit DB Packet Storm
248899 8.8 HIGH
Network 		anisha university_event_management_system A vulnerability was found in code-projects University Event Management System 1.0. It has been classified as critical. This affects an unknown part of the file doedit.php. The manipulation of the arg… CWE-89
SQL Injection 		CVE-2024-10805 2024-11-8 02:09 2024-11-5 Show GitHub Exploit DB Packet Storm
248900 6.5 MEDIUM
Network 		tenda i22_firmware A vulnerability has been found in Tenda i22 1.0.0.3(4687) and classified as problematic. Affected by this vulnerability is the function websReadEvent of the file /goform/GetIPTV?fgHPOST/goform/SysToo… CWE-476
 NULL Pointer Dereference 		CVE-2024-10750 2024-11-8 02:09 2024-11-4 Show GitHub Exploit DB Packet Storm