Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
239691 7.5 危険 ecshop - Comsenz EPShop における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3412 2012-06-26 16:02 2008-07-31 Show GitHub Exploit DB Packet Storm
239692 10 危険 Axesstel - Axesstel AXW-D800 モデムにおける設定を変更される脆弱性 CWE-287
不適切な認証 		CVE-2008-3411 2012-06-26 16:02 2008-07-31 Show GitHub Exploit DB Packet Storm
239693 5 警告 epic games - Unreal Tournament 3 におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
CWE-399
CVE-2008-3410 2012-06-26 16:02 2008-07-31 Show GitHub Exploit DB Packet Storm
239694 7.5 危険 epic games - Unreal Tournament 3 におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-3409 2012-06-26 16:02 2008-07-31 Show GitHub Exploit DB Packet Storm
239695 6.8 警告 coolplayer - CoolPlayer におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-3408 2012-06-26 16:02 2008-07-31 Show GitHub Exploit DB Packet Storm
239696 5 警告 epic games - UT2004 におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2008-3396 2012-06-26 16:02 2008-07-31 Show GitHub Exploit DB Packet Storm
239697 5 警告 Linux
calacode		 - CalaCode @Mail における重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-3395 2012-06-26 16:02 2008-07-31 Show GitHub Exploit DB Packet Storm
239698 7.5 危険 easy-script - Def-Blog における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3388 2012-06-26 16:02 2008-07-30 Show GitHub Exploit DB Packet Storm
239699 7.5 危険 AlstraSoft - AlstraSoft Video Share Enterprise の album.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3386 2012-06-26 16:02 2008-07-30 Show GitHub Exploit DB Packet Storm
239700 7.5 危険 cce-interact - Interact Learning Community Environment Interact の help/help.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-3384 2012-06-26 16:02 2008-07-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 24, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
257381 6.5 MEDIUM
Adjacent 		- - Permanent DOS when DL NAS transport receives multiple payloads such that one payload contains SOR container whose integrity check has failed, and the other is LPP where UE needs to send status messag… - CVE-2024-23350 2024-08-7 01:30 2024-08-6 Show GitHub Exploit DB Packet Storm
257382 8.4 HIGH
Local 		- - Memory corruption when preparing a shared memory notification for a memparcel in Resource Manager. - CVE-2024-21481 2024-08-7 01:30 2024-08-6 Show GitHub Exploit DB Packet Storm
257383 5.4 MEDIUM
Network 		- - Rejected reason: **REJECT** Accidental CVE Assignment. Please use CVE-2023-0285. - CVE-2023-0253 2024-08-6 23:16 2023-02-3 Show GitHub Exploit DB Packet Storm
257384 - - - Initialization of a resource with an insecure default vulnerability exists in JavaTM Platform Ver.12.89 and earlier. If this vulnerability is exploited, the product may be affected by some known TLS1… - CVE-2024-41995 2024-08-6 16:15 2024-08-6 Show GitHub Exploit DB Packet Storm
257385 - - - A vulnerability was found in FFmpeg up to 7.0.1. It has been classified as critical. This affects the function pnm_decode_frame in the library /libavcodec/pnmdec.c. The manipulation leads to heap-bas… - CVE-2024-7055 2024-08-6 15:15 2024-08-6 Show GitHub Exploit DB Packet Storm
257386 - - - The shortcodes-ultimate-pro WordPress plugin before 7.2.1 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which … - CVE-2024-6766 2024-08-6 15:15 2024-08-6 Show GitHub Exploit DB Packet Storm
257387 - - - The WordPress File Upload WordPress plugin before 4.24.8 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be use… - CVE-2024-6651 2024-08-6 15:15 2024-08-6 Show GitHub Exploit DB Packet Storm
257388 8.8 HIGH
Network 		- - The WPBakery Visual Composer plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 7.7 via the 'layout_name' parameter. This makes it possible for authentic… - CVE-2024-5709 2024-08-6 15:15 2024-08-6 Show GitHub Exploit DB Packet Storm
257389 6.4 MEDIUM
Network 		- - The WPBakery Visual Composer plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘link’ parameter in all versions up to, and including, 7.7 due to insufficient input sanitizatio… - CVE-2024-5708 2024-08-6 15:15 2024-08-6 Show GitHub Exploit DB Packet Storm
257390 - - - Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Gitea Gitea Open Source Git Server allows Stored XSS.This issue affects Gitea Open Source … - CVE-2024-6886 2024-08-6 13:16 2024-08-6 Show GitHub Exploit DB Packet Storm