Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
239791 7.5 危険 eztechhelp company - EZTechhelp EZCMS の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2921 2012-06-26 16:02 2008-06-30 Show GitHub Exploit DB Packet Storm
239792 7.5 危険 ezcms - EZTechhelp EZCMS の ファイルマネージャにおけるファイル削除される脆弱性 CWE-287
不適切な認証 		CVE-2008-2920 2012-06-26 16:02 2008-06-30 Show GitHub Exploit DB Packet Storm
239793 6.8 警告 gryphonllc - Gryphon gllcTS2 の listing.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2919 2012-06-26 16:02 2008-06-30 Show GitHub Exploit DB Packet Storm
239794 7.5 危険 application dynamics - Application Dynamics Cartweaver の details.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2918 2012-06-26 16:02 2008-06-30 Show GitHub Exploit DB Packet Storm
239795 6.8 警告 devalcms - Devalcms の func.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-2913 2012-06-26 16:02 2008-06-30 Show GitHub Exploit DB Packet Storm
239796 7.5 危険 CONTENIDO - Contenido CMS における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-2912 2012-06-26 16:02 2008-06-30 Show GitHub Exploit DB Packet Storm
239797 4.3 警告 CONTENIDO - Contenido の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2911 2012-06-26 16:02 2008-06-30 Show GitHub Exploit DB Packet Storm
239798 7.5 危険 clever copy - Clever Copy の results.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2909 2012-06-26 16:02 2008-06-30 Show GitHub Exploit DB Packet Storm
239799 6.8 警告 awbs - AWBS の news.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2903 2012-06-26 16:02 2008-06-30 Show GitHub Exploit DB Packet Storm
239800 7.5 危険 AlstraSoft - AlstraSoft AskMe Pro の profile.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2902 2012-06-26 16:02 2008-06-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 20, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
256321 8.8 HIGH
Network 		linksys e1500_firmware A Command Injection vulnerability exists in the do_upgrade_post function of the httpd binary in Linksys E1500 v1.0.06.001. As a result, an authenticated attacker can execute OS commands with root pri… CWE-78
OS Command  		CVE-2024-42633 2024-08-21 01:18 2024-08-20 Show GitHub Exploit DB Packet Storm
256322 7.5 HIGH
Network 		nissan-global blind_spot_protection_sensor_ecu_firmware Predictable seed generation in the security access mechanism of UDS in the Blind Spot Protection Sensor ECU in Nissan Altima (2022) allows attackers to predict the requested seeds and bypass security… CWE-330
 Use of Insufficiently Random Values 		CVE-2024-6348 2024-08-21 01:17 2024-08-20 Show GitHub Exploit DB Packet Storm
256323 9.8 CRITICAL
Network 		horizoncloud caterease An issue in Horizon Business Services Inc. Caterease 16.0.1.1663 through 24.0.1.2405 and possibly later versions, allows a remote attacker to expand control over the operating system from the databas… CWE-78
OS Command  		CVE-2024-38887 2024-08-21 01:17 2024-08-3 Show GitHub Exploit DB Packet Storm
256324 7.8 HIGH
Local 		google android In sendDeviceState_1_6 of RadioExt.cpp, there is a possible use after free due to improper locking. This could lead to local escalation of privilege with no additional execution privileges needed. Us… CWE-416
 Use After Free 		CVE-2024-32927 2024-08-21 01:15 2024-08-20 Show GitHub Exploit DB Packet Storm
256325 7.5 HIGH
Network 		nepstech ntpl-xpon1gfevn_firmware An issue in wishnet Nepstech Wifi Router NTPL-XPON1GFEVN v1.0 allows a remote attacker to obtain sensitive information via the lack of encryption during login process CWE-311
Missing Encryption of Sensitive Data 		CVE-2024-42657 2024-08-21 01:13 2024-08-20 Show GitHub Exploit DB Packet Storm
256326 5.9 MEDIUM
Network 		google
haxx 		nest_mini_firmware
libcurl 		The libcurl CURLOPT_SSL_VERIFYPEER option was disabled on a subset of requests made by Nest production devices which enabled a potential man-in-the-middle attack on requests to Google cloud services … NVD-CWE-noinfo
CVE-2024-32928 2024-08-21 01:13 2024-08-20 Show GitHub Exploit DB Packet Storm
256327 9.8 CRITICAL
Network 		nepstech ntpl-xpon1gfevn_firmware An issue in wishnet Nepstech Wifi Router NTPL-XPON1GFEVN v1.0 allows a remote attacker to obtain sensitive information via the cookie's parameter NVD-CWE-noinfo
CVE-2024-42658 2024-08-21 01:12 2024-08-20 Show GitHub Exploit DB Packet Storm
256328 5.4 MEDIUM
Network 		xwiki xwiki XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. It is possible for a user without Script or Programming rights to craft a URL pointing to a pa… CWE-79
Cross-site Scripting 		CVE-2024-43400 2024-08-21 01:10 2024-08-20 Show GitHub Exploit DB Packet Storm
256329 8.0 HIGH
Network 		xwiki xwiki XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. A user without script/programming right can trick a user with elevated rights to edit a conten… CWE-862
 Missing Authorization 		CVE-2024-43401 2024-08-21 01:09 2024-08-20 Show GitHub Exploit DB Packet Storm
256330 7.5 HIGH
Network 		zzcms zzcms A vulnerability was found in ZZCMS 2023. It has been declared as critical. This vulnerability affects unknown code of the file /I/list.php. The manipulation of the argument skin leads to path travers… CWE-22
Path Traversal 		CVE-2024-7924 2024-08-21 01:07 2024-08-20 Show GitHub Exploit DB Packet Storm