Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
240611	5.8	警告	devmass	-	DevMass Shopping Cart の admin/kfm/initialise.php における PHP リモートファイルインクルージョンの脆弱性	CWE-20 不適切な入力確認	CVE-2007-6133	2012-06-26 15:54	2007-11-27	Show	GitHub Exploit DB Packet Storm

240612	5	警告	GNU Project	-	gnump3d におけるアクセス制限を回避される脆弱性	CWE-287 不適切な認証	CVE-2007-6130	2012-06-26 15:54	2007-11-26	Show	GitHub Exploit DB Packet Storm

240613	5.8	警告	amber script	-	Amber Script の scripts/include/show_content.php におけるディレクトリトラバーサルの脆弱性	CWE-20 不適切な入力確認	CVE-2007-6129	2012-06-26 15:54	2007-11-26	Show	GitHub Exploit DB Packet Storm

240614	7.5	危険	flor de utopia	-	WorkingOnWeb の events.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-6128	2012-06-26 15:54	2007-11-26	Show	GitHub Exploit DB Packet Storm

240615	7.5	危険	AlstraSoft	-	AlstraSoft E-Friends の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-6106	2012-06-26 15:54	2007-11-23	Show	GitHub Exploit DB Packet Storm

240616	4	警告	Code Crafters Software Limited.	-	Ability Mail Server におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2007-6101	2012-06-26 15:54	2007-11-23	Show	GitHub Exploit DB Packet Storm

240617	7.5	危険	adventnet	-	AdventNet EventLog Analyzer における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2007-6081	2012-06-26 15:54	2007-11-21	Show	GitHub Exploit DB Packet Storm

240618	7.5	危険	bcoos	-	bcoos の banners モジュールの modules/banners/click.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-6080	2012-06-26 15:54	2007-11-21	Show	GitHub Exploit DB Packet Storm

240619	6.8	警告	bcoos	-	bcoos の include/common.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2007-6079	2012-06-26 15:54	2007-11-21	Show	GitHub Exploit DB Packet Storm

240620	5	警告	Audacity	-	Audacity におけるサービス運用妨害 (DoS) の脆弱性	CWE-DesignError	CVE-2007-6061	2012-06-26 15:54	2007-11-20	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 26, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
256581	5.5	MEDIUM Local	samsung	android	Incorrect use of privileged API in UniversalCredentialManager prior to SMR Sep-2024 Release 1 allows local attackers to access privileged API related to UniversalCredentialManager.	NVD-CWE-noinfo	CVE-2024-34655	2024-09-6 03:00	2024-09-4	Show	GitHub Exploit DB Packet Storm

256582	5.5	MEDIUM Local	samsung	android	Improper Export of android application component in My Files prior to SMR Sep-2024 Release 1 allows local attackers to access files with My Files' privilege.	NVD-CWE-noinfo	CVE-2024-34654	2024-09-6 03:00	2024-09-4	Show	GitHub Exploit DB Packet Storm

256583	5.5	MEDIUM Local	samsung	android	Incorrect use of privileged API in DualDarManagerProxy prior to SMR Sep-2024 Release 1 allows local attackers to access privileged APIs related to knox without proper license.	NVD-CWE-noinfo	CVE-2024-34647	2024-09-6 03:00	2024-09-4	Show	GitHub Exploit DB Packet Storm

256584	3.3	LOW Local	samsung	android	Incorrect authorization in kperfmon prior to SMR Sep-2024 Release 1 allows local attackers to access information related to performance including app usage.	CWE-863 Incorrect Authorization	CVE-2024-34652	2024-09-6 02:59	2024-09-4	Show	GitHub Exploit DB Packet Storm

256585	5.5	MEDIUM Local	samsung	android	Improper authorization in My Files prior to SMR Sep-2024 Release 1 allows local attackers to access restricted data in My Files.	CWE-863 Incorrect Authorization	CVE-2024-34651	2024-09-6 02:59	2024-09-4	Show	GitHub Exploit DB Packet Storm

256586	3.3	LOW Local	samsung	android	Incorrect authorization in CocktailbarService prior to SMR Sep-2024 Release 1 allows local attackers to access privileged APIs related to Edge panel.	CWE-863 Incorrect Authorization	CVE-2024-34650	2024-09-6 02:59	2024-09-4	Show	GitHub Exploit DB Packet Storm

256587	2.4	LOW Physics	samsung	android	Improper access control in new Dex Mode in multitasking framework prior to SMR Sep-2024 Release 1 allows physical attackers to temporarily access an unlocked screen.	NVD-CWE-Other	CVE-2024-34649	2024-09-6 02:59	2024-09-4	Show	GitHub Exploit DB Packet Storm

256588	4.3	MEDIUM Network	samsung	assistant	Improper handling of insufficient permissions in Samsung Assistant prior to version 9.1.00.7 allows remote attackers to access location data. User interaction is required for triggering this vulnerab…	CWE-276 Incorrect Default Permissions	CVE-2024-34661	2024-09-6 02:57	2024-09-4	Show	GitHub Exploit DB Packet Storm

256589	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: ipv6: prevent possible UAF in ip6_xmit() If skb_expand_head() returns NULL, skb has been freed and the associated dst/idev could …	CWE-416 Use After Free	CVE-2024-44985	2024-09-6 02:54	2024-09-5	Show	GitHub Exploit DB Packet Storm

256590	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: workqueue: Fix UBSAN 'subtraction overflow' error in shift_and_mask() UBSAN reports the following 'subtraction overflow' error wh…	CWE-190 Integer Overflow or Wraparound	CVE-2024-44981	2024-09-6 02:54	2024-09-5	Show	GitHub Exploit DB Packet Storm