Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
241111	9	危険	frank yaul	-	Frank Yaul corehttp の http.c の HttpSprockMake 関数におけるバッファオーバーフローの脆弱性	-	CVE-2007-4060	2012-06-26 15:54	2007-07-30	Show	GitHub Exploit DB Packet Storm

241112	4.3	警告	DELL EMC (旧 EMC Corporation)	-	EMC VMware の vielib.dll の特定の ActiveX コントロールにおける絶対パストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2007-4058	2012-06-26 15:54	2007-07-30	Show	GitHub Exploit DB Packet Storm

241113	7.5	危険	adult directory	-	Prozilla Adult Directory の Directory.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-4056	2012-06-26 15:54	2007-07-30	Show	GitHub Exploit DB Packet Storm

241114	7.5	危険	8pixel	-	SimpleBlog の comments_get.asp における SQL インジェクションの脆弱性	-	CVE-2007-4055	2012-06-26 15:54	2007-07-30	Show	GitHub Exploit DB Packet Storm

241115	10	危険	adempiere	-	ADempiere Bazaar の WebUI におけるシステムレベルのウインドウにアクセスされる脆弱性	-	CVE-2007-4050	2012-06-26 15:54	2007-07-30	Show	GitHub Exploit DB Packet Storm

241116	6.4	警告	geoblog	-	geoBlog における任意のブログを削除される脆弱性	-	CVE-2007-4047	2012-06-26 15:54	2007-07-27	Show	GitHub Exploit DB Packet Storm

241117	6.8	警告	crystal reality llc	-	CrystalPlayer Pro におけるバッファオーバーフローの脆弱性	-	CVE-2007-4032	2012-06-26 15:54	2007-07-27	Show	GitHub Exploit DB Packet Storm

241118	6.6	警告	areca	-	Areca CLI の cli32 におけるバッファオーバーフローの脆弱性	-	CVE-2007-4027	2012-06-26 15:54	2007-07-26	Show	GitHub Exploit DB Packet Storm

241119	4.3	警告	cPanel	-	cPanel の frontend/x/htaccess/changepro.html におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-4022	2012-06-26 15:54	2007-07-26	Show	GitHub Exploit DB Packet Storm

241120	4.3	警告	brain book software	-	Brain Book Software Secure の login.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-4021	2012-06-26 15:54	2007-07-26	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 22, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
250971	8.8	HIGH Network	microsoft	windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2022_23h2 windows_server_2022 windows_server_2019	Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability	NVD-CWE-noinfo	CVE-2024-43453	2024-10-23 04:29	2024-10-9	Show	GitHub Exploit DB Packet Storm

250972	8.8	HIGH Network	microsoft	windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2022_23h2 windows_server_2022 windows_server_2019	Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability	NVD-CWE-noinfo	CVE-2024-43607	2024-10-23 04:03	2024-10-9	Show	GitHub Exploit DB Packet Storm

250973	8.8	HIGH Network	microsoft	windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2022_23h2 windows_server_2022 windows_server_2019	Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability	NVD-CWE-noinfo	CVE-2024-43608	2024-10-23 03:58	2024-10-9	Show	GitHub Exploit DB Packet Storm

250974	6.1	MEDIUM Network	androidbubbles	endless_posts_navigation	Cross-Site Request Forgery (CSRF) vulnerability in Fahad Mahmood Endless Posts Navigation allows Stored XSS.This issue affects Endless Posts Navigation: from n/a through 2.2.7.	CWE-352 Origin Validation Error	CVE-2024-49629	2024-10-23 03:57	2024-10-20	Show	GitHub Exploit DB Packet Storm

250975	8.8	HIGH Network	naudinvladimir	ferma.ru.net	Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Naudin Vladimir FERMA.Ru.Net allows Blind SQL Injection.This issue affects FERMA.Ru.Net: from n/a…	CWE-89 SQL Injection	CVE-2024-49620	2024-10-23 03:50	2024-10-20	Show	GitHub Exploit DB Packet Storm

250976	8.8	HIGH Network	acespritech	social_link_groups	Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Acespritech Solutions Pvt. Ltd. Social Link Groups allows Blind SQL Injection.This issue affects …	CWE-89 SQL Injection	CVE-2024-49619	2024-10-23 03:48	2024-10-20	Show	GitHub Exploit DB Packet Storm

250977	9.8	CRITICAL Network	majas-lapu-izstrade	cartbounty	Cross-Site Request Forgery (CSRF) vulnerability in Streamline.Lv CartBounty – Save and recover abandoned carts for WooCommerce allows Cross Site Request Forgery.This issue affects CartBounty – Save a…	CWE-352 Origin Validation Error	CVE-2024-47634	2024-10-23 03:46	2024-10-20	Show	GitHub Exploit DB Packet Storm

250978	8.8	HIGH Network	dublue	table_of_contents_plus	Cross-Site Request Forgery (CSRF) vulnerability in Michael Tran Table of Contents Plus allows Cross Site Request Forgery.This issue affects Table of Contents Plus: from n/a through 2408.	CWE-352 Origin Validation Error	CVE-2024-49250	2024-10-23 03:44	2024-10-20	Show	GitHub Exploit DB Packet Storm

250979	8.8	HIGH Network	wpwebinfotech	social_auto_poster	Cross-Site Request Forgery (CSRF) vulnerability in WPWeb Social Auto Poster allows Cross Site Request Forgery.This issue affects Social Auto Poster: from n/a through 5.3.15.	CWE-352 Origin Validation Error	CVE-2024-49272	2024-10-23 03:40	2024-10-20	Show	GitHub Exploit DB Packet Storm

250980	8.8	HIGH Network	infomaniak	vod_infomaniak	Cross-Site Request Forgery (CSRF) vulnerability in Infomaniak Staff VOD Infomaniak allows Cross Site Request Forgery.This issue affects VOD Infomaniak: from n/a through 1.5.7.	CWE-352 Origin Validation Error	CVE-2024-49274	2024-10-23 03:39	2024-10-20	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed