Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 20, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
251211 7.5 危険 White Papers - TYPO3 用 White Papers エクステンションにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-1074 2012-02-17 14:33 2012-02-14 Show GitHub Exploit DB Packet Storm
251212 4.3 警告 Category-System - TYPO3 用 Category-System エクステンションにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1073 2012-02-17 14:31 2012-02-14 Show GitHub Exploit DB Packet Storm
251213 7.5 危険 Category-System - TYPO3 用 Category-System エクステンションにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-1072 2012-02-17 14:31 2012-02-14 Show GitHub Exploit DB Packet Storm
251214 7.5 危険 Mathieu Vidal - TYPO3 用 Kitchen recipe エクステンションにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-1071 2012-02-17 14:29 2012-02-14 Show GitHub Exploit DB Packet Storm
251215 4.3 警告 Netcreators - TYPO3 用 Modern FAQ エクステンションにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1070 2012-02-17 14:29 2012-02-14 Show GitHub Exploit DB Packet Storm
251216 4.3 警告 Juergen Furrer - TYPO3 用 Additional TCA Forms エクステンションにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-5080 2012-02-17 14:27 2012-02-14 Show GitHub Exploit DB Packet Storm
251217 5 警告 NetSarang - NetSarang の Xlpd および Xmanager Enterprise におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2012-1009 2012-02-17 11:54 2012-02-14 Show GitHub Exploit DB Packet Storm
251218 4.3 警告 Instant Php - lknSupport の module/kb/search_word におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1069 2012-02-17 11:17 2012-02-14 Show GitHub Exploit DB Packet Storm
251219 4.3 警告 mg12 - WordPress 用 WP-RecentComments プラグインの rc_ajax 関数におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1068 2012-02-17 11:17 2012-02-14 Show GitHub Exploit DB Packet Storm
251220 7.5 危険 mg12 - WordPress 用 WP-RecentComments プラグインにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-1067 2012-02-17 11:16 2012-02-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 20, 2026, 4:14 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
309071 9.8 CRITICAL
Network 		tongda2000 office_anywhere A vulnerability, which was classified as critical, was found in Tongda OA 2017 up to 11.6. Affected is an unknown function of the file pda/appcenter/submenu.php. The manipulation of the argument appi… CWE-89
SQL Injection 		CVE-2024-10600 2024-11-5 04:45 2024-11-1 Show GitHub Exploit DB Packet Storm
309072 7.5 HIGH
Network 		tongda2000 office_anywhere A vulnerability, which was classified as problematic, has been found in Tongda OA 2017 up to 11.7. This issue affects some unknown processing of the file /inc/package_static_resources.php. The manipu… CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2024-10599 2024-11-5 04:44 2024-11-1 Show GitHub Exploit DB Packet Storm
309073 6.5 MEDIUM
Network 		tongda2000 office_anywhere A vulnerability classified as critical was found in Tongda OA 11.2/11.3/11.4/11.5/11.6. This vulnerability affects unknown code of the file general/hr/setting/attendance/leave/data.php of the compone… CWE-862
 Missing Authorization 		CVE-2024-10598 2024-11-5 04:44 2024-11-1 Show GitHub Exploit DB Packet Storm
309074 - - - Floodlight SDN Open Flow Controller v.1.2 has an issue that allows local hosts to build fake LLDP packets that allow specific clusters to be missed by Floodlight, which in turn leads to missed hosts … - CVE-2024-51406 2024-11-5 04:35 2024-11-1 Show GitHub Exploit DB Packet Storm
309075 - - - An issue in the component /logins of oasys v1.1 allows attackers to access sensitive information via a burst attack. - CVE-2024-48270 2024-11-5 04:35 2024-11-1 Show GitHub Exploit DB Packet Storm
309076 - - - A SQL Injection vulnerability was discovered in AbanteCart 1.4.0 in the update() function in public_html/admin/controller/responses/listing_grid/email_templates.php. The vulnerability is exploitable … - CVE-2024-50802 2024-11-5 04:35 2024-11-1 Show GitHub Exploit DB Packet Storm
309077 - - - A SQL Injection vulnerability was discovered in AbanteCart 1.4.0 in the update() function in public_html/admin/controller/responses/listing_grid/collections.php. The vulnerability is exploitable via … - CVE-2024-50801 2024-11-5 04:35 2024-11-1 Show GitHub Exploit DB Packet Storm
309078 - - - Unrestricted file upload in /SASStudio/SASStudio/sasexec/{sessionID}/{InternalPath} in SAS Studio 9.4 allows remote attacker to upload malicious files. NOTE: this is disputed by the vendor because fi… - CVE-2024-48734 2024-11-5 04:35 2024-10-31 Show GitHub Exploit DB Packet Storm
309079 - - - SQL injection vulnerability in /SASStudio/sasexec/sessions/{sessionID}/sql in SAS Studio 9.4 allows remote attacker to execute arbitrary SQL commands via the POST body request. NOTE: this is disputed… - CVE-2024-48733 2024-11-5 04:35 2024-10-31 Show GitHub Exploit DB Packet Storm
309080 - - - http.zig commit 76cf5 was discovered to contain a CRLF injection vulnerability via the url parameter. - CVE-2023-52066 2024-11-5 04:35 2024-10-31 Show GitHub Exploit DB Packet Storm