Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
241791	7.5	危険	ewebquiz	-	eWebQuiz の eWebQuiz.asp における SQL インジェクションの脆弱性	-	CVE-2007-1706	2012-06-26 15:46	2007-03-26	Show	GitHub Exploit DB Packet Storm

241792	7.5	危険	active trade	-	Active Trade の default.asp における SQL インジェクションの脆弱性	-	CVE-2007-1705	2012-06-26 15:46	2007-03-26	Show	GitHub Exploit DB Packet Storm

241793	7.5	危険	Activewebsoftwares	-	Active Newsletter の ViewNewspapers.asp における SQL インジェクションの脆弱性	-	CVE-2007-1696	2012-06-26 15:46	2007-03-26	Show	GitHub Exploit DB Packet Storm

241794	9.3	危険	callisto	-	Callisto PhotoParade Player の PhPInfo ActiveX コントロールにおけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2007-1688	2012-06-26 15:46	2007-09-13	Show	GitHub Exploit DB Packet Storm

241795	10	危険	ブルーコートシステムズ	-	BlueCoat K9 Web Protection の k9filter.exe におけるバッファオーバーフローの脆弱性	-	CVE-2007-1685	2012-06-26 15:46	2007-06-8	Show	GitHub Exploit DB Packet Storm

241796	4.3	警告	fizzle	-	Firefox の Fizzle 拡張におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-1678	2012-06-26 15:46	2007-03-26	Show	GitHub Exploit DB Packet Storm

241797	7.8	危険	amavis	-	AMaViS などで使用される複数の製品の unzoo.c におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2007-1673	2012-06-26 15:46	2007-05-8	Show	GitHub Exploit DB Packet Storm

241798	7.8	危険	AVAST Software s.r.o.	-	avast! antivirus におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-1672	2012-06-26 15:46	2007-05-8	Show	GitHub Exploit DB Packet Storm

241799	7.8	危険	Avira	-	Avira AntiVir の avpack32.dll におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-1671	2012-06-26 15:46	2007-05-8	Show	GitHub Exploit DB Packet Storm

241800	7.8	危険	amavis バラクーダネットワークス	-	Barracuda Spam Firewall などで使用される zoo decoder におけるサービス運用妨害 (DoS) の脆弱性	CWE-DesignError	CVE-2007-1669	2012-06-26 15:46	2007-05-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 20, 2026, 4:09 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
250521	-		-	-	Unrestricted Upload of File with Dangerous Type vulnerability in Ecomerciar Woocommerce Custom Profile Picture allows Upload a Web Shell to a Web Server.This issue affects Woocommerce Custom Profile …	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2024-49658	2024-10-25 21:56	2024-10-24	Show	GitHub Exploit DB Packet Storm

250522	-		-	-	Missing Authorization vulnerability in ReneeCussack 3D Work In Progress allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects 3D Work In Progress: from n/a throug…	CWE-862 Missing Authorization	CVE-2024-49657	2024-10-25 21:56	2024-10-24	Show	GitHub Exploit DB Packet Storm

250523	-		-	-	Unrestricted Upload of File with Dangerous Type vulnerability in James Eggers Portfolleo portfolleo allows Upload a Web Shell to a Web Server.This issue affects Portfolleo: from n/a through 1.2.	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2024-49653	2024-10-25 21:56	2024-10-24	Show	GitHub Exploit DB Packet Storm

250524	-		-	-	Unrestricted Upload of File with Dangerous Type vulnerability in ReneeCussack 3D Work In Progress allows Upload a Web Shell to a Web Server.This issue affects 3D Work In Progress: from n/a through 1.…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2024-49652	2024-10-25 21:56	2024-10-24	Show	GitHub Exploit DB Packet Storm

250525	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: cachefiles: fix dentry leak in cachefiles_open_file() A dentry leak may be caused when a lookup cookie and a cull are concurrent:…	CWE-401 Missing Release of Memory after Effective Lifetime	CVE-2024-49870	2024-10-25 21:55	2024-10-22	Show	GitHub Exploit DB Packet Storm

250526	6.4	MEDIUM Network	-	-	The Beek Widget Extention plugin for WordPress is vulnerable to Stored Cross-Site Scripting via shortcodes in versions up to, and including, 0.9.5 due to insufficient input sanitization and output es…	CWE-79 Cross-site Scripting	CVE-2024-10343	2024-10-25 18:15	2024-10-25	Show	GitHub Exploit DB Packet Storm

250527	6.4	MEDIUM Network	-	-	The Simple News plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'news' shortcode in all versions up to, and including, 2.8 due to insufficient input sanitization an…	CWE-79 Cross-site Scripting	CVE-2024-10112	2024-10-25 18:15	2024-10-25	Show	GitHub Exploit DB Packet Storm

250528	6.4	MEDIUM Network	-	-	The File Upload Types by WPForms plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 1.4.0 due to insufficient input sanitizat…	CWE-79 Cross-site Scripting	CVE-2024-10016	2024-10-25 18:15	2024-10-25	Show	GitHub Exploit DB Packet Storm

250529	6.1	MEDIUM Network	wpfactory	eu\/uk_vat_manager_for_woocommerce	: Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in WPFactory EU/UK VAT Manager for WooCommerce allows Cross-Site Scripting (XSS).This issue affects EU/UK…	CWE-79 Cross-site Scripting	CVE-2024-44061	2024-10-25 18:15	2024-10-20	Show	GitHub Exploit DB Packet Storm

250530	8.8	HIGH Network	-	-	The AMP for WP – Accelerated Mobile Pages plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0.99.1. This is due to missing or incorrect nonce va…	CWE-352 Origin Validation Error	CVE-2024-9598	2024-10-25 17:15	2024-10-25	Show	GitHub Exploit DB Packet Storm