Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
240101 6.8 警告 AVAST Software s.r.o. - avast! Home and Professional の aavmker4.sys における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-1625 2012-06-26 16:02 2008-04-2 Show GitHub Exploit DB Packet Storm
240102 6.8 警告 geertsen holdings inc - GeeCarts における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-1622 2012-06-26 16:02 2008-04-2 Show GitHub Exploit DB Packet Storm
240103 4.3 警告 geertsen holdings inc - GeeCarts におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-1621 2012-06-26 16:02 2008-04-2 Show GitHub Exploit DB Packet Storm
240104 7.5 危険 2X Software - 2X ThinClientServer の 2X TFTP サービスにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-1620 2012-06-26 16:02 2008-04-2 Show GitHub Exploit DB Packet Storm
240105 7.5 危険 clever copy - Clever Copy の postview.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-1608 2012-06-26 16:02 2008-04-1 Show GitHub Exploit DB Packet Storm
240106 6 警告 elastic path - EP におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-1606 2012-06-26 16:02 2008-04-1 Show GitHub Exploit DB Packet Storm
240107 7.5 危険 comix - comix における任意のコマンドを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-1568 2012-06-26 16:02 2008-03-31 Show GitHub Exploit DB Packet Storm
240108 4.3 警告 digiappz - Digiappz DigiDomain におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-1560 2012-06-26 16:02 2008-03-31 Show GitHub Exploit DB Packet Storm
240109 6.8 警告 Joomla!
bernard gilly		 - Joomla! の Bernard Gilly alphacontent コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-1559 2012-06-26 16:02 2008-03-31 Show GitHub Exploit DB Packet Storm
240110 5 警告 bolinos - BolinOS における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2008-1557 2012-06-26 16:02 2008-03-31 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 24, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
256211 6.4 MEDIUM
Network 		mattermost mattermost Mattermost versions 9.9.x <= 9.9.0, 9.5.x <= 9.5.6, 9.7.x <= 9.7.5, 9.8.x <= 9.8.1 fail to disallow the modification of local users when syncing users in shared channels. which allows a malicious rem… NVD-CWE-noinfo
CVE-2024-36492 2024-08-23 23:51 2024-08-2 Show GitHub Exploit DB Packet Storm
256212 6.5 MEDIUM
Network 		mattermost mattermost Mattermost versions 9.9.x <= 9.9.0, 9.5.x <= 9.5.6, 9.7.x <= 9.7.5 and 9.8.x <= 9.8.1 fail to properly validate that the channel that comes from the sync message is a shared channel, when shared chan… NVD-CWE-noinfo
CVE-2024-39274 2024-08-23 23:39 2024-08-2 Show GitHub Exploit DB Packet Storm
256213 9.6 CRITICAL
Network 		mattermost mattermost Mattermost versions 9.9.x <= 9.9.0, 9.5.x <= 9.5.6, 9.7.x <= 9.7.5 and 9.8.x <= 9.8.1 fail to disallow unsolicited invites to expose access to local channels, when shared channels are enabled, which … NVD-CWE-noinfo
CVE-2024-39777 2024-08-23 23:36 2024-08-2 Show GitHub Exploit DB Packet Storm
256214 8.7 HIGH
Network 		mattermost mattermost Mattermost versions 9.9.x <= 9.9.0, 9.5.x <= 9.5.6, 9.7.x <= 9.7.5, 9.8.x <= 9.8.1 fail to properly safeguard an error handling which allows a malicious remote to permanently delete local data by abu… CWE-754
 Improper Check for Unusual or Exceptional Conditions 		CVE-2024-39832 2024-08-23 23:35 2024-08-2 Show GitHub Exploit DB Packet Storm
256215 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: RDMA/cma: Do not change route.addr.src_addr outside state checks If the state is not idle then resolve_prepare_src() should immed… CWE-416
 Use After Free 		CVE-2022-48925 2024-08-23 11:07 2024-08-22 Show GitHub Exploit DB Packet Storm
256216 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: iio: adc: tsc2046: fix memory corruption by preventing array overflow On one side we have indio_dev->num_channels includes all ph… CWE-787
 Out-of-bounds Write 		CVE-2022-48927 2024-08-23 11:05 2024-08-22 Show GitHub Exploit DB Packet Storm
256217 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: usb: gadget: rndis: add spinlock for rndis response list There's no lock for rndis response list. It could cause list corruption … NVD-CWE-noinfo
CVE-2022-48926 2024-08-23 11:05 2024-08-22 Show GitHub Exploit DB Packet Storm
256218 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: bpf: Fix crash due to out of bounds access into reg2btf_ids. When commit e6ac2450d6de ("bpf: Support bpf program calling kernel f… CWE-125
Out-of-bounds Read 		CVE-2022-48929 2024-08-23 11:00 2024-08-22 Show GitHub Exploit DB Packet Storm
256219 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: iio: adc: men_z188_adc: Fix a resource leak in an error handling path If iio_device_register() fails, a previous ioremap() is lef… CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2022-48928 2024-08-23 10:58 2024-08-22 Show GitHub Exploit DB Packet Storm
256220 4.7 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: configfs: fix a race in configfs_{,un}register_subsystem() When configfs_register_subsystem() or configfs_unregister_subsystem() … CWE-362
Race Condition 		CVE-2022-48931 2024-08-23 10:54 2024-08-22 Show GitHub Exploit DB Packet Storm