Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
241521 5 警告 bugada andrea - PHP Advanced Transfer Manager (phpATM) の index.php におけるディレクトリトラバーサルの脆弱性 - CVE-2007-2659 2012-06-26 15:46 2007-05-14 Show GitHub Exploit DB Packet Storm
241522 7.5 危険 free-sa - Free-SA における任意のコードを実行される脆弱性 - CVE-2007-2652 2012-06-26 15:46 2007-05-14 Show GitHub Exploit DB Packet Storm
241523 5 警告 ClamAV - ClamAV の OLE2 パーサにおけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-2650 2012-06-26 15:46 2007-05-14 Show GitHub Exploit DB Packet Storm
241524 9.3 危険 clever components - comparerax.ocx におけるスタックベースのバッファオーバーフローの脆弱性 - CVE-2007-2648 2012-06-26 15:46 2007-05-14 Show GitHub Exploit DB Packet Storm
241525 10 危険 efilecabinet - eFileCabinet におけるインターフェースの制限部分へアクセスされる脆弱性 - CVE-2007-2638 2012-06-26 15:46 2007-05-13 Show GitHub Exploit DB Packet Storm
241526 6.8 警告 agner fog - aForum の common/errormsg.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2634 2012-06-26 15:46 2007-05-13 Show GitHub Exploit DB Packet Storm
241527 6.5 警告 activecampaign - FCKeditor モジュールの filemanager/browser/default/connectors/php/config.php における .php4 および .php5 をアップロードされる脆弱性 - CVE-2007-2630 2012-06-26 15:46 2007-05-2 Show GitHub Exploit DB Packet Storm
241528 7.8 危険 Bradford Networks - Bradford CampusManager Network Control Application Server における重要な情報を取得される脆弱性 - CVE-2007-2629 2012-06-26 15:46 2007-05-11 Show GitHub Exploit DB Packet Storm
241529 6.8 警告 aiocp - AIOCP の shared/code/cp_authorization.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-2625 2012-06-26 15:46 2007-05-11 Show GitHub Exploit DB Packet Storm
241530 6.8 警告 aiocp - AIOCP の shared/config/cp_config.php におけるクロスサイトスクリプティング攻撃を誘発する脆弱性 - CVE-2007-2624 2012-06-26 15:46 2007-05-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 20, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
250691 5.4 MEDIUM
Network 		hasthemes wp_education Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in HT Plugins WP Education allows Stored XSS.This issue affects WP Education: from n/a throug… CWE-79
Cross-site Scripting 		CVE-2024-49630 2024-10-24 05:44 2024-10-20 Show GitHub Exploit DB Packet Storm
250692 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid use-after-free in f2fs_stop_gc_thread() syzbot reports a f2fs bug as below: __dump_stack lib/dump_stack.c:88… CWE-416
 Use After Free 		CVE-2024-47691 2024-10-24 05:42 2024-10-21 Show GitHub Exploit DB Packet Storm
250693 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: drm/xe: Use reserved copy engine for user binds on faulting devices User binds map to engines with can fault, faults depend on us… NVD-CWE-noinfo
CVE-2024-47729 2024-10-24 05:40 2024-10-21 Show GitHub Exploit DB Packet Storm
250694 9.8 CRITICAL
Network 		piyushmca shipyaari_shipping_management Deserialization of Untrusted Data vulnerability in Piyushmca Shipyaari Shipping Management allows Object Injection.This issue affects Shipyaari Shipping Management: from n/a through 1.2. CWE-502
 Deserialization of Untrusted Data 		CVE-2024-49626 2024-10-24 05:37 2024-10-20 Show GitHub Exploit DB Packet Storm
250695 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: bpf: Zero former ARG_PTR_TO_{LONG,INT} args in case of error For all non-tracing helpers which formerly had ARG_PTR_TO_{LONG,INT}… CWE-459
 Incomplete Cleanup 		CVE-2024-47728 2024-10-24 05:36 2024-10-21 Show GitHub Exploit DB Packet Storm
250696 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: x86/tdx: Fix "in-kernel MMIO" check TDX only supports kernel-initiated MMIO operations. The handle_mmio() function checks if the … CWE-754
 Improper Check for Unusual or Exceptional Conditions 		CVE-2024-47727 2024-10-24 05:32 2024-10-21 Show GitHub Exploit DB Packet Storm
250697 8.1 HIGH
Network 		jsbroks coco_annotator A vulnerability, which was classified as problematic, was found in jsbroks COCO Annotator 0.11.1. This affects an unknown part of the component Session Handler. The manipulation of the argument SECRE… NVD-CWE-Other
CVE-2024-10141 2024-10-24 05:27 2024-10-20 Show GitHub Exploit DB Packet Storm
250698 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mvm: pause TCM when the firmware is stopped Not doing so will make us send a host command to the transport while t… NVD-CWE-noinfo
CVE-2024-47673 2024-10-24 05:19 2024-10-10 Show GitHub Exploit DB Packet Storm
250699 4.3 MEDIUM
Network 		- - Microsoft Edge (Chromium-based) Spoofing Vulnerability CWE-449
 The UI Performs the Wrong Action 		CVE-2024-43577 2024-10-24 04:15 2024-10-19 Show GitHub Exploit DB Packet Storm
250700 7.3 HIGH
Network 		djangoproject django An issue was discovered in Django 5.0 before 5.0.8 and 4.2 before 4.2.15. QuerySet.values() and values_list() methods on models with a JSONField are subject to SQL injection in column aliases via a c… CWE-89
SQL Injection 		CVE-2024-42005 2024-10-24 03:22 2024-08-8 Show GitHub Exploit DB Packet Storm