Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
240841 7.5 危険 eb design pty ltd - EB Design ebCrypt の EbCrypt.eb_c_PRNGenerator.1 ActiveX コントロールにおける絶対パストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-5110 2012-06-26 15:54 2007-09-26 Show GitHub Exploit DB Packet Storm
240842 4.3 警告 flatnuke - FlatNuke の index.php におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2007-5109 2012-06-26 15:54 2007-09-26 Show GitHub Exploit DB Packet Storm
240843 10 危険 ask.com - IAC Search & Media ask.com toolbar における詳細不明な脆弱性 CWE-noinfo
情報不足 		CVE-2007-5108 2012-06-26 15:54 2007-09-26 Show GitHub Exploit DB Packet Storm
240844 9.3 危険 ask.com - IAC Search & Media ask.com Ask Toolbar の askBar.dll の AskJeevesToolBar.SettingsPlugin.1 ActiveX コントロールにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-5107 2012-06-26 15:54 2007-09-26 Show GitHub Exploit DB Packet Storm
240845 7.5 危険 bcoos - bcoos の Arcade モジュールの index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-5104 2012-06-26 15:54 2007-09-26 Show GitHub Exploit DB Packet Storm
240846 7.2 危険 furquim - ChironFS における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-5101 2012-06-26 15:54 2007-09-26 Show GitHub Exploit DB Packet Storm
240847 7.5 危険 david watters - David Watters Helplink の show.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-5099 2012-06-26 15:54 2007-09-26 Show GitHub Exploit DB Packet Storm
240848 6.8 警告 dragonfrugal - DFD Cart における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-5098 2012-06-26 15:54 2007-09-26 Show GitHub Exploit DB Packet Storm
240849 7.5 危険 guanxicrm - guanxiCRM Business Solution の modules/webmail2/inc/rfc822.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-5096 2012-06-26 15:54 2007-09-26 Show GitHub Exploit DB Packet Storm
240850 4.3 警告 EGroupware - eGroupWare におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-5091 2012-06-26 15:54 2007-09-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 25, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
251221 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: pinctrl: stm32: check devm_kasprintf() returned value devm_kasprintf() can return a NULL pointer on failure but this returned val… CWE-476
 NULL Pointer Dereference 		CVE-2024-50070 2024-10-31 01:59 2024-10-29 Show GitHub Exploit DB Packet Storm
251222 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: pinctrl: apple: check devm_kasprintf() returned value devm_kasprintf() can return a NULL pointer on failure but this returned val… CWE-476
 NULL Pointer Dereference 		CVE-2024-50069 2024-10-31 01:58 2024-10-29 Show GitHub Exploit DB Packet Storm
251223 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: mm/damon/tests/sysfs-kunit.h: fix memory leak in damon_sysfs_test_add_targets() The sysfs_target->regions allocated in damon_sysf… CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2024-50068 2024-10-31 01:57 2024-10-29 Show GitHub Exploit DB Packet Storm
251224 9.8 CRITICAL
Network 		codezips sales_management_system A vulnerability was found in Codezips Sales Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /addcustcom.php. The manipu… CWE-89
SQL Injection 		CVE-2024-10369 2024-10-31 01:50 2024-10-25 Show GitHub Exploit DB Packet Storm
251225 9.8 CRITICAL
Network 		codezips sales_management_system A vulnerability was found in Codezips Sales Management System 1.0. It has been classified as critical. Affected is an unknown function of the file /addstock.php. The manipulation of the argument prod… CWE-89
SQL Injection 		CVE-2024-10368 2024-10-31 01:46 2024-10-25 Show GitHub Exploit DB Packet Storm
251226 9.8 CRITICAL
Network 		codezips sales_management_system A vulnerability was found in Codezips Sales Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /addcustind.php. The manipulation of… CWE-89
SQL Injection 		CVE-2024-10370 2024-10-31 01:38 2024-10-25 Show GitHub Exploit DB Packet Storm
251227 6.1 MEDIUM
Network 		heateor sassy_social_share The Sassy Social Share plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'urls' parameter called via the 'heateor_sss_sharing_count' AJAX action in versions up to, and incl… CWE-79
Cross-site Scripting 		CVE-2022-4971 2024-10-31 01:37 2024-10-16 Show GitHub Exploit DB Packet Storm
251228 7.5 HIGH
Network 		apple macos A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Ventura 13.7.1, macOS Sonoma 14.7.1. An app may be able to read sensitive location inf… NVD-CWE-noinfo
CVE-2024-44289 2024-10-31 01:35 2024-10-29 Show GitHub Exploit DB Packet Storm
251229 - - - A logic issue was addressed with improved validation. This issue is fixed in macOS Ventura 13.7.1, macOS Sonoma 14.7.1. A sandboxed process may be able to circumvent sandbox restrictions. - CVE-2024-44270 2024-10-31 01:35 2024-10-29 Show GitHub Exploit DB Packet Storm
251230 - - - The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.1, macOS Sonoma 14.7.1. A malicious application may be able to modify protected parts of the file system. - CVE-2024-44267 2024-10-31 01:35 2024-10-29 Show GitHub Exploit DB Packet Storm