Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
241171	10	危険	アップル	-	Apple Mac OS X の mDNSResponder における任意のコードを実行される脆弱性	-	CVE-2007-3828	2012-06-26 15:54	2007-07-17	Show	GitHub Exploit DB Packet Storm

241172	9.3	危険	CA Technologies	-	複数の CA 製品で使用される CA Alert Notification Server の RPC 実装におけるスタックベースのバッファオーバーフローの脆弱性	-	CVE-2007-3825	2012-06-26 15:54	2007-07-17	Show	GitHub Exploit DB Packet Storm

241173	2.6	注意	citadel	-	Webcit におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-3822	2012-06-26 15:54	2007-07-16	Show	GitHub Exploit DB Packet Storm

241174	7.5	危険	citadel	-	Webcit におけるクロスサイトリクエストフォージェリの脆弱性	-	CVE-2007-3821	2012-06-26 15:54	2007-07-16	Show	GitHub Exploit DB Packet Storm

241175	3.5	注意	Drupal	-	Drupal 用の LoginToboggan モジュールにおけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-3818	2012-06-26 15:54	2007-07-12	Show	GitHub Exploit DB Packet Storm

241176	4.3	警告	Drupal	-	Drupal 用の LoginToboggan モジュールにおけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-3817	2012-06-26 15:54	2007-07-12	Show	GitHub Exploit DB Packet Storm

241177	7.5	危険	CMScout	-	CMScout の forums.php における SQL インジェクションの脆弱性	-	CVE-2007-3812	2012-06-26 15:54	2007-07-16	Show	GitHub Exploit DB Packet Storm

241178	7.5	危険	eSyndiCat	-	eSyndiCat における SQL インジェクションの脆弱性	-	CVE-2007-3811	2012-06-26 15:54	2007-07-16	Show	GitHub Exploit DB Packet Storm

241179	5.4	警告	Clavister AB	-	Clavister CorePlus の IKE 実装におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-3805	2012-06-26 15:54	2007-07-16	Show	GitHub Exploit DB Packet Storm

241180	5	警告	Clavister AB	-	Clavister CorePlus の AntiVirus エンジンにおけるスキャンを回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2007-3804	2012-06-26 15:54	2007-07-16	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 23, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
251251	6.1	MEDIUM Network	-	-	The ReDi Restaurant Reservation plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in all versions up to, and…	-	CVE-2024-9240	2024-10-18 21:53	2024-10-17	Show	GitHub Exploit DB Packet Storm

251252	8.8	HIGH Network	-	-	The Co-Authors, Multiple Authors and Guest Authors in an Author Box with PublishPress Authors plugin for WordPress is vulnerable to Insecure Direct Object Reference to Privilege Escalation/Account Ta…	CWE-639 Authorization Bypass Through User-Controlled Key	CVE-2024-9215	2024-10-18 21:53	2024-10-17	Show	GitHub Exploit DB Packet Storm

251253	-		-	-	Dell OpenManage Enterprise, version(s) OME 4.1 and prior, contain(s) an Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability. A low privileged attacker w…	CWE-89 SQL Injection	CVE-2024-45767	2024-10-18 21:53	2024-10-17	Show	GitHub Exploit DB Packet Storm

251254	-		-	-	Dell OpenManage Enterprise, version(s) OME 4.1 and prior, contain(s) an Improper Control of Generation of Code ('Code Injection') vulnerability. A low privileged attacker with remote access could pot…	CWE-94 Code Injection	CVE-2024-45766	2024-10-18 21:53	2024-10-17	Show	GitHub Exploit DB Packet Storm

251255	-		-	-	dingfanzu CMS V1.0 was discovered to contain a Cross-Site Request Forgery (CSRF) via the addPro parameter of the component doAdminAction.php which allows a remote attacker to execute arbitrary code	-	CVE-2024-48758	2024-10-18 21:53	2024-10-17	Show	GitHub Exploit DB Packet Storm

251256	-		-	-	ClassCMS <=4.8 is vulnerable to file inclusion in the nowView method in/class/cms/cms.php, which can include a file uploaded to the/class/template directory to execute PHP code.	-	CVE-2024-48180	2024-10-18 21:53	2024-10-17	Show	GitHub Exploit DB Packet Storm

251257	-		-	-	REDAXO CMS v2.11.0 was discovered to contain a remote code execution (RCE) vulnerability.	-	CVE-2024-46213	2024-10-18 21:53	2024-10-17	Show	GitHub Exploit DB Packet Storm

251258	-		-	-	An issue in the component /index.php?page=backup/export of REDAXO CMS v5.17.1 allows attackers to execute a directory traversal.	-	CVE-2024-46212	2024-10-18 21:53	2024-10-17	Show	GitHub Exploit DB Packet Storm

251259	-		-	-	A discrepancy in error messages for invalid login attempts in Webmin Usermin v2.100 allows attackers to enumerate valid user accounts.	-	CVE-2024-44762	2024-10-18 21:53	2024-10-17	Show	GitHub Exploit DB Packet Storm

251260	-		-	-	LibHTP is a security-aware parser for the HTTP protocol and the related bits and pieces. Prior to version 0.5.49, unbounded processing of HTTP request and response headers can lead to excessive CPU t…	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2024-45797	2024-10-18 21:53	2024-10-17	Show	GitHub Exploit DB Packet Storm