Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
240901 7.5 危険 ajax - Ajax File Browser の in _includes/settings.inc.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-4921 2012-06-26 15:54 2007-09-17 Show GitHub Exploit DB Packet Storm
240902 7.5 危険 gelatocms - Gelato の classes/gelato.class.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-4918 2012-06-26 15:54 2007-09-17 Show GitHub Exploit DB Packet Storm
240903 10 危険 Boa - Boa 用の Intersil 拡張機能におけるメモリに格納された管理者パスワードを変更される脆弱性 CWE-20
不適切な入力確認 		CVE-2007-4915 2012-06-26 15:54 2007-09-17 Show GitHub Exploit DB Packet Storm
240904 5 警告 JetAudio - JetCast Server の JSMP3OGGWt.dll におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2007-4911 2012-06-26 15:54 2007-09-17 Show GitHub Exploit DB Packet Storm
240905 7.5 危険 AuraCMS - AuraCMS の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-4908 2012-06-26 15:54 2007-09-17 Show GitHub Exploit DB Packet Storm
240906 7.5 危険 AuraCMS - AuraCMS の mod/contak.php における任意の PHP コードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2007-4905 2012-06-26 15:54 2007-09-17 Show GitHub Exploit DB Packet Storm
240907 5.8 警告 AOL - Internet Explorer サーバコントロールにおける任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2007-4901 2012-06-26 15:54 2007-09-14 Show GitHub Exploit DB Packet Storm
240908 4.3 警告 University of California - Boinc Forum におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-4899 2012-06-26 15:54 2007-09-14 Show GitHub Exploit DB Packet Storm
240909 6.8 警告 AuraCMS - AuraCMS の index.php における任意の PHP コードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2007-4886 2012-06-26 15:54 2007-09-13 Show GitHub Exploit DB Packet Storm
240910 4.3 警告 avnex - Avnex AV MP3 Player におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2007-4885 2012-06-26 15:54 2007-09-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 25, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
250731 - - - Missing Authorization vulnerability in creativemotion Social Slider Feed allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Social Slider Feed: from n/a throug… CWE-862
 Missing Authorization 		CVE-2024-43215 2024-11-2 00:15 2024-11-2 Show GitHub Exploit DB Packet Storm
250732 - - - Missing Authorization vulnerability in MagePeople Team WpTravelly allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects WpTravelly: from n/a through 1.7.7. CWE-862
 Missing Authorization 		CVE-2024-43212 2024-11-2 00:15 2024-11-2 Show GitHub Exploit DB Packet Storm
250733 - - - Missing Authorization vulnerability in Bitly allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Bitly: from n/a through 2.7.2. CWE-862
 Missing Authorization 		CVE-2024-43209 2024-11-2 00:15 2024-11-2 Show GitHub Exploit DB Packet Storm
250734 - - - Missing Authorization vulnerability in Miller Media ( Matt Miller ) Send Emails with Mandrill allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Send Emails wi… - CVE-2024-43208 2024-11-2 00:15 2024-11-2 Show GitHub Exploit DB Packet Storm
250735 - - - Missing Authorization vulnerability in Easy Digital Downloads allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Easy Digital Downloads: from n/a through 3.2.1… CWE-862
 Missing Authorization 		CVE-2024-43162 2024-11-2 00:15 2024-11-2 Show GitHub Exploit DB Packet Storm
250736 - - - Missing Authorization vulnerability in Masteriyo Masteriyo - LMS allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Masteriyo - LMS: from n/a through 1.11.6. CWE-862
 Missing Authorization 		CVE-2024-43159 2024-11-2 00:15 2024-11-2 Show GitHub Exploit DB Packet Storm
250737 - - - Missing Authorization vulnerability in Masteriyo Masteriyo - LMS allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Masteriyo - LMS: from n/a through 1.11.4. CWE-862
 Missing Authorization 		CVE-2024-43158 2024-11-2 00:15 2024-11-2 Show GitHub Exploit DB Packet Storm
250738 - - - Missing Authorization vulnerability in nCrafts FormCraft allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects FormCraft: from n/a through 1.2.10. CWE-862
 Missing Authorization 		CVE-2024-43157 2024-11-2 00:15 2024-11-2 Show GitHub Exploit DB Packet Storm
250739 - - - Missing Authorization vulnerability in BracketSpace Advanced Cron Manager allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Advanced Cron Manager – debug & co… CWE-862
 Missing Authorization 		CVE-2024-43154 2024-11-2 00:15 2024-11-2 Show GitHub Exploit DB Packet Storm
250740 - - - Missing Authorization vulnerability in Ahmed Kaludi, Mohammed Kaludi AMP for WP allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects AMP for WP: from n/a through… CWE-862
 Missing Authorization 		CVE-2024-43146 2024-11-2 00:15 2024-11-2 Show GitHub Exploit DB Packet Storm