Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
241221	7.8	危険	Drupal	-	Drupal 用の Print モジュールにおけるノードアクセスモジュール内の制限された投稿を読まれる脆弱性	-	CVE-2007-3689	2012-06-26 15:46	2007-07-9	Show	GitHub Exploit DB Packet Storm

241222	2.6	注意	Dotclear	-	DotClear におけるクロスサイトリクエストフォージェリの脆弱性	-	CVE-2007-3688	2012-06-26 15:46	2007-07-11	Show	GitHub Exploit DB Packet Storm

241223	7.5	危険	aigaion	-	Aigaion の pagetopic.php における SQL インジェクションの脆弱性	-	CVE-2007-3683	2012-06-26 15:46	2007-07-11	Show	GitHub Exploit DB Packet Storm

241224	4.3	警告	シトリックス・システムズ	-	Citrix EPA ActiveX コントロールにおける任意のプログラムをクライアントシステム上にダウンロードされる脆弱性	-	CVE-2007-3679	2012-06-26 15:46	2007-07-25	Show	GitHub Exploit DB Packet Storm

241225	4.3	警告	Dotclear	-	DotClear の ecrire/tools.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-3672	2012-06-26 15:46	2007-07-10	Show	GitHub Exploit DB Packet Storm

241226	5	警告	activereportsexcelreport	-	ActiveReportsExcelReport の EXCLEXPT.DLL におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-3667	2012-06-26 15:46	2007-07-10	Show	GitHub Exploit DB Packet Storm

241227	5	警告	eltima software	-	Eltima Software RunService ActiveX コントロールにおけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-3664	2012-06-26 15:46	2007-07-10	Show	GitHub Exploit DB Packet Storm

241228	5	警告	eltima software	-	VSPort.DLL におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-3661	2012-06-26 15:46	2007-07-10	Show	GitHub Exploit DB Packet Storm

241229	4.3	警告	fascript	-	Farsi Script FaName におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-3653	2012-06-26 15:46	2008-07-8	Show	GitHub Exploit DB Packet Storm

241230	6.8	警告	fascript	-	Farsi Script FaName の class/page.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-3652	2012-06-26 15:46	2008-07-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 21, 2026, 4:10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
250971	8.8	HIGH Network	microsoft	windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2022_23h2 windows_server_2022 windows_server_2019	Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability	NVD-CWE-noinfo	CVE-2024-43453	2024-10-23 04:29	2024-10-9	Show	GitHub Exploit DB Packet Storm

250972	8.8	HIGH Network	microsoft	windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2022_23h2 windows_server_2022 windows_server_2019	Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability	NVD-CWE-noinfo	CVE-2024-43607	2024-10-23 04:03	2024-10-9	Show	GitHub Exploit DB Packet Storm

250973	8.8	HIGH Network	microsoft	windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2022_23h2 windows_server_2022 windows_server_2019	Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability	NVD-CWE-noinfo	CVE-2024-43608	2024-10-23 03:58	2024-10-9	Show	GitHub Exploit DB Packet Storm

250974	6.1	MEDIUM Network	androidbubbles	endless_posts_navigation	Cross-Site Request Forgery (CSRF) vulnerability in Fahad Mahmood Endless Posts Navigation allows Stored XSS.This issue affects Endless Posts Navigation: from n/a through 2.2.7.	CWE-352 Origin Validation Error	CVE-2024-49629	2024-10-23 03:57	2024-10-20	Show	GitHub Exploit DB Packet Storm

250975	8.8	HIGH Network	naudinvladimir	ferma.ru.net	Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Naudin Vladimir FERMA.Ru.Net allows Blind SQL Injection.This issue affects FERMA.Ru.Net: from n/a…	CWE-89 SQL Injection	CVE-2024-49620	2024-10-23 03:50	2024-10-20	Show	GitHub Exploit DB Packet Storm

250976	8.8	HIGH Network	acespritech	social_link_groups	Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Acespritech Solutions Pvt. Ltd. Social Link Groups allows Blind SQL Injection.This issue affects …	CWE-89 SQL Injection	CVE-2024-49619	2024-10-23 03:48	2024-10-20	Show	GitHub Exploit DB Packet Storm

250977	9.8	CRITICAL Network	majas-lapu-izstrade	cartbounty	Cross-Site Request Forgery (CSRF) vulnerability in Streamline.Lv CartBounty – Save and recover abandoned carts for WooCommerce allows Cross Site Request Forgery.This issue affects CartBounty – Save a…	CWE-352 Origin Validation Error	CVE-2024-47634	2024-10-23 03:46	2024-10-20	Show	GitHub Exploit DB Packet Storm

250978	8.8	HIGH Network	dublue	table_of_contents_plus	Cross-Site Request Forgery (CSRF) vulnerability in Michael Tran Table of Contents Plus allows Cross Site Request Forgery.This issue affects Table of Contents Plus: from n/a through 2408.	CWE-352 Origin Validation Error	CVE-2024-49250	2024-10-23 03:44	2024-10-20	Show	GitHub Exploit DB Packet Storm

250979	8.8	HIGH Network	wpwebinfotech	social_auto_poster	Cross-Site Request Forgery (CSRF) vulnerability in WPWeb Social Auto Poster allows Cross Site Request Forgery.This issue affects Social Auto Poster: from n/a through 5.3.15.	CWE-352 Origin Validation Error	CVE-2024-49272	2024-10-23 03:40	2024-10-20	Show	GitHub Exploit DB Packet Storm

250980	8.8	HIGH Network	infomaniak	vod_infomaniak	Cross-Site Request Forgery (CSRF) vulnerability in Infomaniak Staff VOD Infomaniak allows Cross Site Request Forgery.This issue affects VOD Infomaniak: from n/a through 1.5.7.	CWE-352 Origin Validation Error	CVE-2024-49274	2024-10-23 03:39	2024-10-20	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed