Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
241221	7.8	危険	Drupal	-	Drupal 用の Print モジュールにおけるノードアクセスモジュール内の制限された投稿を読まれる脆弱性	-	CVE-2007-3689	2012-06-26 15:46	2007-07-9	Show	GitHub Exploit DB Packet Storm

241222	2.6	注意	Dotclear	-	DotClear におけるクロスサイトリクエストフォージェリの脆弱性	-	CVE-2007-3688	2012-06-26 15:46	2007-07-11	Show	GitHub Exploit DB Packet Storm

241223	7.5	危険	aigaion	-	Aigaion の pagetopic.php における SQL インジェクションの脆弱性	-	CVE-2007-3683	2012-06-26 15:46	2007-07-11	Show	GitHub Exploit DB Packet Storm

241224	4.3	警告	シトリックス・システムズ	-	Citrix EPA ActiveX コントロールにおける任意のプログラムをクライアントシステム上にダウンロードされる脆弱性	-	CVE-2007-3679	2012-06-26 15:46	2007-07-25	Show	GitHub Exploit DB Packet Storm

241225	4.3	警告	Dotclear	-	DotClear の ecrire/tools.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-3672	2012-06-26 15:46	2007-07-10	Show	GitHub Exploit DB Packet Storm

241226	5	警告	activereportsexcelreport	-	ActiveReportsExcelReport の EXCLEXPT.DLL におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-3667	2012-06-26 15:46	2007-07-10	Show	GitHub Exploit DB Packet Storm

241227	5	警告	eltima software	-	Eltima Software RunService ActiveX コントロールにおけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-3664	2012-06-26 15:46	2007-07-10	Show	GitHub Exploit DB Packet Storm

241228	5	警告	eltima software	-	VSPort.DLL におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-3661	2012-06-26 15:46	2007-07-10	Show	GitHub Exploit DB Packet Storm

241229	4.3	警告	fascript	-	Farsi Script FaName におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-3653	2012-06-26 15:46	2008-07-8	Show	GitHub Exploit DB Packet Storm

241230	6.8	警告	fascript	-	Farsi Script FaName の class/page.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-3652	2012-06-26 15:46	2008-07-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 21, 2026, 4:10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
250981	8.8	HIGH Network	northernbeacheswebsites	ideapush	Cross-Site Request Forgery (CSRF) vulnerability in Martin Gibson IdeaPush allows Cross Site Request Forgery.This issue affects IdeaPush: from n/a through 8.69.	CWE-352 Origin Validation Error	CVE-2024-49275	2024-10-23 03:36	2024-10-20	Show	GitHub Exploit DB Packet Storm

250982	8.8	HIGH Network	wp-buy	wp_content_copy_protection_\&_no_right_click	Cross-Site Request Forgery (CSRF) vulnerability in WP-buy WP Content Copy Protection & No Right Click allows Cross Site Request Forgery.This issue affects WP Content Copy Protection & No Right Click:…	CWE-352 Origin Validation Error	CVE-2024-49306	2024-10-23 03:35	2024-10-20	Show	GitHub Exploit DB Packet Storm

250983	8.8	HIGH Network	boxystudio	cooked	Cross-Site Request Forgery (CSRF) vulnerability in Gora Tech LLC Cooked Pro allows Cross Site Request Forgery.This issue affects Cooked Pro: from n/a before 1.8.0.	CWE-352 Origin Validation Error	CVE-2024-49290	2024-10-23 03:35	2024-10-20	Show	GitHub Exploit DB Packet Storm

250984	5.4	MEDIUM Network	phpgurukul	hospital_management_system	PHPGurukul Hospital Management System 4.0 is vulnerable to Cross Site Scripting (XSS) via the patname, pataddress, and medhis parameters in doctor/add-patient.php and doctor/edit-patient.php.	CWE-79 Cross-site Scripting	CVE-2024-46237	2024-10-23 03:35	2024-10-9	Show	GitHub Exploit DB Packet Storm

250985	8.8	HIGH Network	noorsplugin	wordpress_image_seo	Cross-Site Request Forgery (CSRF) vulnerability in Noor Alam WordPress Image SEO allows Cross Site Request Forgery.This issue affects WordPress Image SEO: from n/a through 1.1.4.	CWE-352 Origin Validation Error	CVE-2024-49627	2024-10-23 03:33	2024-10-20	Show	GitHub Exploit DB Packet Storm

250986	8.8	HIGH Network	wpdiscover	photo_gallery_builder	Subscriber Broken Access Control in Photo Gallery Builder <= 3.0 versions.	CWE-862 Missing Authorization	CVE-2024-49325	2024-10-23 03:33	2024-10-20	Show	GitHub Exploit DB Packet Storm

250987	8.8	HIGH Network	whiletrue	most_and_least_read_posts_widget	Cross-Site Request Forgery (CSRF) vulnerability in WhileTrue Most And Least Read Posts Widget allows Cross Site Request Forgery.This issue affects Most And Least Read Posts Widget: from n/a through 2…	CWE-352 Origin Validation Error	CVE-2024-49628	2024-10-23 03:31	2024-10-20	Show	GitHub Exploit DB Packet Storm

250988	6.0	MEDIUM Local	cisco	ata_191_firmware ata_192_firmware	A vulnerability in the CLI of Cisco ATA 190 Series Analog Telephone Adapter firmware could allow an authenticated, local attacker with high privileges to execute arbitrary commands as the root u…	CWE-78 OS Command	CVE-2024-20461	2024-10-23 03:26	2024-10-17	Show	GitHub Exploit DB Packet Storm

250989	5.4	MEDIUM Network	code-projects	blood_bank_system	A vulnerability has been found in code-projects Blood Bank System 1.0 and classified as problematic. This vulnerability affects unknown code of the file /viewrequest.php. The manipulation leads to cr…	CWE-79 Cross-site Scripting	CVE-2024-10142	2024-10-23 03:11	2024-10-20	Show	GitHub Exploit DB Packet Storm

250990	8.8	HIGH Network	esafenet	cdg	A vulnerability was found in ESAFENET CDG 5 and classified as critical. Affected by this issue is the function connectLogout of the file /com/esafenet/servlet/ajax/MultiServerAjax.java. The manipulat…	CWE-89 SQL Injection	CVE-2024-10134	2024-10-23 03:10	2024-10-19	Show	GitHub Exploit DB Packet Storm