Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
241631	7.8	危険	Digium	-	Asterisk のSIP チャネルドライバにおけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-2297	2012-06-26 15:46	2007-04-26	Show	GitHub Exploit DB Packet Storm

241632	7.8	危険	Digium	-	Asterisk の Manager Interface におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-2294	2012-06-26 15:46	2007-04-26	Show	GitHub Exploit DB Packet Storm

241633	7.6	危険	Digium	-	Asterisk の SIP チャネル T.38 SDP パーサの chan_sip.c の process_sdp 関数におけるスタックベースのバッファオーバーフローの脆弱性	-	CVE-2007-2293	2012-06-26 15:46	2007-04-26	Show	GitHub Exploit DB Packet Storm

241634	7.5	危険	cafelog	-	B2 Weblog および News Publishing Tool における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2290	2012-06-26 15:46	2007-04-26	Show	GitHub Exploit DB Packet Storm

241635	7.5	危険	alexscriptengine	-	Download-Engine の admin/includes/spaw/dialogs/insert_link.php における任意の PHP コードが実行される脆弱性	-	CVE-2007-2289	2012-06-26 15:46	2007-04-26	Show	GitHub Exploit DB Packet Storm

241636	7.5	危険	doruk100.net	-	Doruk100.net doruk100net の info.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2288	2012-06-26 15:46	2007-04-26	Show	GitHub Exploit DB Packet Storm

241637	7.5	危険	comus	-	comus の accept.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2287	2012-06-26 15:46	2007-04-26	Show	GitHub Exploit DB Packet Storm

241638	7.5	危険	built2go	-	Built2Go PHP Link Portal の config.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2286	2012-06-26 15:46	2007-04-26	Show	GitHub Exploit DB Packet Storm

241639	9.3	危険	abc-view	-	ABC-View Manager におけるバッファオーバーフローの脆弱性	-	CVE-2007-2284	2012-06-26 15:46	2007-04-26	Show	GitHub Exploit DB Packet Storm

241640	9.3	危険	freshdevices	-	Fresh View におけるバッファオーバーフローの脆弱性	-	CVE-2007-2283	2012-06-26 15:46	2007-04-26	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 18, 2026, 4:11 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
251061	-		-	-	PutongOJ is online judging software. Prior to version 2.1.0-beta.1, unprivileged users can escalate privileges by constructing requests. This can lead to unauthorized access, enabling users to perfor…	CWE-306 Missing Authentication for Critical Function	CVE-2024-48920	2024-10-18 21:52	2024-10-18	Show	GitHub Exploit DB Packet Storm

251062	4.8	MEDIUM Network	-	-	A vulnerability was found in Quay, which allows successful authentication even when a truncated password version is provided. This flaw affects the authentication mechanism, reducing the overall secu…	CWE-305 Authentication Bypass by Primary Weakness	CVE-2024-9683	2024-10-18 21:52	2024-10-18	Show	GitHub Exploit DB Packet Storm

251063	-		-	-	Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in CodeFlock FREE DOWNLOAD MANAGER allows Path Traversal.This issue affects FREE DOWNLOAD MANAGER: from n/…	-	CVE-2024-49315	2024-10-18 21:52	2024-10-17	Show	GitHub Exploit DB Packet Storm

251064	-		-	-	Cross-Site Request Forgery (CSRF) vulnerability in WSIFY – Sales can fly Wsify Widget allows Stored XSS.This issue affects Wsify Widget: from n/a through 1.0.	CWE-352 Origin Validation Error	CVE-2024-48048	2024-10-18 21:52	2024-10-17	Show	GitHub Exploit DB Packet Storm

251065	-		-	-	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Supsystic Contact Form by Supsystic allows Stored XSS.This issue affects Contact Form by S…	CWE-79 Cross-site Scripting	CVE-2024-48046	2024-10-18 21:52	2024-10-17	Show	GitHub Exploit DB Packet Storm

251066	-		-	-	Cross-Site Request Forgery (CSRF) vulnerability in A WP Life Contact Form Widget allows Cross Site Request Forgery.This issue affects Contact Form Widget: from n/a through 1.4.2.	CWE-352 Origin Validation Error	CVE-2024-48037	2024-10-18 21:52	2024-10-17	Show	GitHub Exploit DB Packet Storm

251067	-		-	-	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in SKT Themes SKT Blocks – Gutenberg based Page Builder allows Stored XSS.This issue affects …	CWE-79 Cross-site Scripting	CVE-2024-48036	2024-10-18 21:52	2024-10-17	Show	GitHub Exploit DB Packet Storm

251068	-		-	-	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Sumit Surai Featured Posts with Multiple Custom Groups (FPMCG) allows Reflected XSS.This i…	CWE-79 Cross-site Scripting	CVE-2024-48032	2024-10-18 21:52	2024-10-17	Show	GitHub Exploit DB Packet Storm

251069	-		-	-	Cross-Site Request Forgery (CSRF) vulnerability in Sumit Surai Featured Posts with Multiple Custom Groups (FPMCG) allows Cross Site Request Forgery.This issue affects Featured Posts with Multiple Cus…	CWE-352 Origin Validation Error	CVE-2024-48031	2024-10-18 21:52	2024-10-17	Show	GitHub Exploit DB Packet Storm

251070	-		-	-	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in DOGROW.NET Simple Baseball Scoreboard allows Stored XSS.This issue affects Simple Baseball…	CWE-79 Cross-site Scripting	CVE-2024-48025	2024-10-18 21:52	2024-10-17	Show	GitHub Exploit DB Packet Storm