Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
240931 6.8 警告 ghisler - Total Commander の FTP クライアントにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-4756 2012-06-26 15:54 2007-09-7 Show GitHub Exploit DB Packet Storm
240932 5 警告 cor entertainment - Alien Arena 2007 におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2007-4755 2012-06-26 15:54 2007-09-7 Show GitHub Exploit DB Packet Storm
240933 7.5 危険 cor entertainment - Alien Arena 2007 の acesrc/acebot_cmds.c の safe_bprintf 関数におけるフォーマットストリングの脆弱性 CWE-134
書式文字列の問題 		CVE-2007-4754 2012-06-26 15:54 2007-09-7 Show GitHub Exploit DB Packet Storm
240934 1.9 注意 data-vision - RemoteDocs R-Viewer における重要な情報を取得される脆弱性 CWE-310
暗号の問題 		CVE-2007-4751 2012-06-26 15:54 2007-09-18 Show GitHub Exploit DB Packet Storm
240935 9.3 危険 data-vision - RemoteDocs R-Viewer における任意のコードを実行される脆弱性 CWE-310
暗号の問題 		CVE-2007-4750 2012-06-26 15:54 2007-09-18 Show GitHub Exploit DB Packet Storm
240936 6.8 警告 オートデスク株式会社 - Autodesk Backburner の cmdjob ユーティリティにおけるレンダリングサーバ上で任意のコマンドを実行される脆弱性 CWE-16
環境設定 		CVE-2007-4749 2012-06-26 15:54 2007-09-13 Show GitHub Exploit DB Packet Storm
240937 10 危険 シスコシステムズ - Cisco Video Surveillance IP Gateway Encoder/Decoder (Standalone および Module) ファームウェアなどにおける管理者操作を実行される脆弱性 CWE-287
不適切な認証 		CVE-2007-4747 2012-06-26 15:54 2007-09-5 Show GitHub Exploit DB Packet Storm
240938 9 危険 シスコシステムズ - Cisco Video Surveillance IP Gateway Encoder/Decoder (Standalone および Module) ファームウェアなどにおける管理者操作を実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-4746 2012-06-26 15:54 2007-09-5 Show GitHub Exploit DB Packet Storm
240939 6.8 警告 anyinventory - AnyInventory の environment.php における任意の PHP コードが実行される脆弱性 CWE-20
CWE-94
CVE-2007-4744 2012-06-26 15:54 2007-09-6 Show GitHub Exploit DB Packet Storm
240940 4.3 警告 Claroline Consortium - Claroline における重要な情報を取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2007-4742 2012-06-26 15:54 2007-09-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 25, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
250651 - - - Projectworlds Online Admission System v1 is vulnerable to SQL Injection in index.php via the 'a_id' parameter. - CVE-2024-51060 2024-11-2 02:35 2024-11-1 Show GitHub Exploit DB Packet Storm
250652 5.9 MEDIUM
Network 		cisco adaptive_security_appliance_software
firepower_threat_defense_software 		A vulnerability in the session authentication functionality of the Remote Access SSL VPN feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software … CWE-331
 Insufficient Entropy 		CVE-2024-20331 2024-11-2 02:32 2024-10-24 Show GitHub Exploit DB Packet Storm
250653 5.4 MEDIUM
Network 		cisco firepower_management_center A vulnerability in the web-based management interface of Cisco Firepower Management Center (FMC) could allow an authenticated, remote attacker to conduct a stored cross-site scripting (XSS) attack ag… CWE-79
Cross-site Scripting 		CVE-2024-20377 2024-11-2 02:30 2024-10-24 Show GitHub Exploit DB Packet Storm
250654 6.1 MEDIUM
Network 		maxfoundry social_share_buttons The WordPress Social Share Buttons plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in all versions up to, … CWE-79
Cross-site Scripting 		CVE-2024-9219 2024-11-2 02:30 2024-10-19 Show GitHub Exploit DB Packet Storm
250655 6.1 MEDIUM
Network 		cisco adaptive_security_appliance_software
firepower_threat_defense_software 		A vulnerability in the VPN web client services feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote att… CWE-79
Cross-site Scripting 		CVE-2024-20341 2024-11-2 02:22 2024-10-24 Show GitHub Exploit DB Packet Storm
250656 - - - Zusam is a free and open-source way to self-host private forums. Prior to version 0.5.6, specially crafted SVG files uploaded to the service as images allow for unrestricted script execution on (raw)… CWE-79
Cross-site Scripting 		CVE-2024-51492 2024-11-2 02:15 2024-11-2 Show GitHub Exploit DB Packet Storm
250657 - - - changedetection.io is free, open source web page change detection software. Prior to version 0.47.5, when a WebDriver is used to fetch files, `source:file:///etc/passwd` can be used to retrieve local… - CVE-2024-51483 2024-11-2 02:15 2024-11-2 Show GitHub Exploit DB Packet Storm
250658 - - - `oak` is a middleware framework for Deno's native HTTP server, Deno Deploy, Node.js 16.5 and later, Cloudflare Workers and Bun. By default `oak` does not allow transferring of hidden files with `Cont… CWE-22
CWE-35
Path Traversal
 Path Traversal: '.../...//' 		CVE-2024-49770 2024-11-2 02:15 2024-11-2 Show GitHub Exploit DB Packet Storm
250659 6.5 MEDIUM
Network 		- - IBM CICS TX Standard 11.1 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. - CVE-2024-41744 2024-11-2 02:15 2024-11-2 Show GitHub Exploit DB Packet Storm
250660 8.8 HIGH
Network 		microchip timeprovider_4100_firmware Cross-Site Request Forgery (CSRF) vulnerability in Microchip TimeProvider 4100 allows Cross Site Request Forgery, Cross-Site Scripting (XSS).This issue affects TimeProvider 4100: from 1.0. CWE-352
 Origin Validation Error 		CVE-2024-43684 2024-11-2 02:15 2024-10-5 Show GitHub Exploit DB Packet Storm