Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
240481	5	警告	ClamAV	-	ClamAV におけるスキャナを回避される脆弱性	CWE-20 不適切な入力確認	CVE-2007-6596	2012-06-26 15:54	2007-12-31	Show	GitHub Exploit DB Packet Storm

240482	2.1	注意	ClamAV	-	ClamAV における任意のファイルを上書きされる脆弱性	CWE-59 リンク解釈の問題	CVE-2007-6595	2012-06-26 15:54	2007-12-31	Show	GitHub Exploit DB Packet Storm

240483	4.3	警告	アップル	-	Apple Safari におけるなりすまされた Web サイトの無効な証明書を承認する脆弱性	CWE-DesignError	CVE-2007-6592	2012-06-26 15:54	2007-12-28	Show	GitHub Exploit DB Packet Storm

240484	6.4	警告	1024cms	-	1024 CMS におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2007-6584	2012-06-26 15:54	2007-12-28	Show	GitHub Exploit DB Packet Storm

240485	7.5	危険	1024cms	-	1024 CMS の admin/ops/findip/ajax/search.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-6583	2012-06-26 15:54	2007-12-28	Show	GitHub Exploit DB Packet Storm

240486	6.4	警告	C97net	-	mBlog の index.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2007-6582	2012-06-26 15:54	2007-12-28	Show	GitHub Exploit DB Packet Storm

240487	7.5	危険	adultscript	-	Adult Script における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-6576	2012-06-26 15:54	2007-12-28	Show	GitHub Exploit DB Packet Storm

240488	7.5	危険	brand039	-	MMSLamp の default.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-6575	2012-06-26 15:54	2007-12-28	Show	GitHub Exploit DB Packet Storm

240489	4.3	警告	Dokeos	-	Dokeos におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-6574	2012-06-26 15:54	2007-12-28	Show	GitHub Exploit DB Packet Storm

240490	7.5	危険	blakord	-	Blakord Portal における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-6565	2012-06-26 15:54	2007-12-28	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 26, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
256421	7.8	HIGH Local	intel	oneapi_base_toolkit advisor	Incorrect default permissions for some Intel(R) Advisor software before version 2024.1 may allow an authenticated user to potentially enable escalation of privilege via local access.	CWE-276 Incorrect Default Permissions	CVE-2024-26025	2024-09-7 03:54	2024-08-14	Show	GitHub Exploit DB Packet Storm

256422	7.8	HIGH Local	intel	simics_package_manager	Uncontrolled search path for some Intel(R) Simics Package Manager software before version 1.8.3 may allow an authenticated user to potentially enable escalation of privilege via local access.	CWE-427 Uncontrolled Search Path Element	CVE-2024-26027	2024-09-7 03:52	2024-08-14	Show	GitHub Exploit DB Packet Storm

256423	5.5	MEDIUM Local	intel	memory_and_storage_tool_gui	Incorrect default permissions in software installer for Intel(R) MAS (GUI) may allow an authenticated user to potentially enable denial of service via local access.	CWE-276 Incorrect Default Permissions	CVE-2024-27461	2024-09-7 03:45	2024-08-14	Show	GitHub Exploit DB Packet Storm

256424	7.8	HIGH Local	intel	graphics_performance_analyzers	Uncontrolled search path in some Intel(R) GPA software before version 2024.1 may allow an authenticated user to potentially enable escalation of privilege via local access.	CWE-427 Uncontrolled Search Path Element	CVE-2024-28046	2024-09-7 03:40	2024-08-14	Show	GitHub Exploit DB Packet Storm

256425	5.5	MEDIUM Local	intel	arc_a_graphics iris_xe_graphics	Improper access control in some Intel(R) Arc(TM) & Iris(R) Xe Graphics software before version 31.0.101.4824 may allow an authenticated user to potentially enable denial of service via local access.	NVD-CWE-noinfo	CVE-2024-28050	2024-09-7 03:38	2024-08-14	Show	GitHub Exploit DB Packet Storm

256426	7.3	HIGH Local	intel	oneapi_hpc_toolkit trace_analyzer_and_collector	Uncontrolled search path for some Intel(R) Trace Analyzer and Collector software before version 2022.1 may allow an authenticated user to potentially enable escalation of privilege via local access.	CWE-427 Uncontrolled Search Path Element	CVE-2024-28172	2024-09-7 03:36	2024-08-14	Show	GitHub Exploit DB Packet Storm

256427	7.3	HIGH Local	intel	mpi_library oneapi_hpc_toolkit	Uncontrolled search path for some Intel(R) MPI Library software before version 2021.12 may allow an authenticated user to potentially enable escalation of privilege via local access.	CWE-427 Uncontrolled Search Path Element	CVE-2024-28876	2024-09-7 03:35	2024-08-14	Show	GitHub Exploit DB Packet Storm

256428	9.8	CRITICAL Network	lopalopa	music_management_system	Kashipara Music Management System v1.0 is vulnerable to SQL Injection via /music/manage_playlist_items.php. An attacker can execute arbitrary SQL commands via the "pid" parameter.	CWE-89 SQL Injection	CVE-2024-42783	2024-09-7 03:31	2024-08-22	Show	GitHub Exploit DB Packet Storm

256429	7.2	HIGH Network	ethyca	fides	Fides is an open-source privacy engineering platform. Starting in version 2.19.0 and prior to version 2.44.0, the Email Templating feature uses Jinja2 without proper input sanitization or rendering e…	CWE-94 Code Injection	CVE-2024-45053	2024-09-7 03:20	2024-09-5	Show	GitHub Exploit DB Packet Storm

256430	5.3	MEDIUM Network	ethyca	fides	Fides is an open-source privacy engineering platform. Prior to version 2.44.0, a timing-based username enumeration vulnerability exists in Fides Webserver authentication. This vulnerability allows an…	CWE-203 Information Exposure Through Discrepancy	CVE-2024-45052	2024-09-7 03:18	2024-09-5	Show	GitHub Exploit DB Packet Storm