Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 23, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251461	6	警告	Broadwin アドバンテック株式会社	-	Advantech/BroadWin WebAccess におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2012-1235	2012-02-23 11:47	2012-02-21	Show	GitHub Exploit DB Packet Storm

251462	6.5	警告	Broadwin アドバンテック株式会社	-	Advantech/BroadWin WebAccess における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-1234	2012-02-23 11:46	2012-02-21	Show	GitHub Exploit DB Packet Storm

251463	7.5	危険	Broadwin アドバンテック株式会社	-	Advantech/BroadWin WebAccess における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-0244	2012-02-23 11:41	2012-02-21	Show	GitHub Exploit DB Packet Storm

251464	7.5	危険	Broadwin アドバンテック株式会社	-	Advantech/BroadWin WebAccess の ActiveX コントロールにおけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-0243	2012-02-23 11:40	2012-02-21	Show	GitHub Exploit DB Packet Storm

251465	7.5	危険	Broadwin アドバンテック株式会社	-	Advantech/BroadWin WebAccess におけるフォーマットストリングの脆弱性	CWE-134 書式文字列の問題	CVE-2012-0242	2012-02-23 11:37	2012-02-21	Show	GitHub Exploit DB Packet Storm

251466	5	警告	Broadwin アドバンテック株式会社	-	Advantech/BroadWin WebAccess におけるサービス運用妨害 (メモリ破損) の脆弱性	CWE-20 不適切な入力確認	CVE-2012-0241	2012-02-23 11:36	2012-02-21	Show	GitHub Exploit DB Packet Storm

251467	7.5	危険	Broadwin アドバンテック株式会社	-	Advantech/BroadWin WebAccess の GbScriptAddUp.asp における任意のコードを実行される脆弱性	CWE-287 不適切な認証	CVE-2012-0240	2012-02-23 11:33	2012-02-21	Show	GitHub Exploit DB Packet Storm

251468	5	警告	Broadwin アドバンテック株式会社	-	Advantech/BroadWin WebAccess の uaddUpAdmin.asp における管理者パスワードを変更される脆弱性	CWE-287 不適切な認証	CVE-2012-0239	2012-02-23 11:32	2012-02-21	Show	GitHub Exploit DB Packet Storm

251469	7.5	危険	Broadwin アドバンテック株式会社	-	Advantech/BroadWin WebAccess の opcImg.asp におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-0238	2012-02-23 11:29	2012-02-21	Show	GitHub Exploit DB Packet Storm

251470	6.4	警告	Broadwin アドバンテック株式会社	-	Advantech/BroadWin WebAccess における日付と時刻の同期設定を変更される脆弱性	CWE-119 バッファエラー	CVE-2012-0237	2012-02-23 11:27	2012-02-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
309831	-		-	-	Press, a Frappe custom app that runs Frappe Cloud, manages infrastructure, subscription, marketplace, and software-as-a-service (SaaS). The password could be reset by anyone who have access to the ma…	CWE-640 Weak Password Recovery Mechanism for Forgotten Password	CVE-2024-50356	2024-11-1 23:35	2024-11-1	Show	GitHub Exploit DB Packet Storm

309832	7.1	HIGH Network	paloaltonetworks	pan-os	A vulnerability in the GlobalProtect portal in Palo Alto Networks PAN-OS software enables a malicious authenticated GlobalProtect user to impersonate another GlobalProtect user. Active GlobalProtect …	CWE-863 Incorrect Authorization	CVE-2024-8691	2024-11-1 23:26	2024-09-12	Show	GitHub Exploit DB Packet Storm

309833	6.5	MEDIUM Network	mattermost	mattermost_desktop	Mattermost Desktop App versions <=5.8.0 fail to sufficiently configure Electron Fuses which allows an attacker to gather Chromium cookies or abuse other misconfigurations via remote/local access.	NVD-CWE-Other	CVE-2024-45835	2024-11-1 23:20	2024-09-17	Show	GitHub Exploit DB Packet Storm

309834	5.3	MEDIUM Network	mattermost	mattermost_desktop	Mattermost Desktop App versions <=5.8.0 fail to safeguard screen capture functionality which allows an attacker to silently capture high-quality screenshots via JavaScript APIs.	NVD-CWE-noinfo	CVE-2024-39772	2024-11-1 23:20	2024-09-17	Show	GitHub Exploit DB Packet Storm

309835	7.5	HIGH Network	gaizhenbiao	chuanhuchatgpt	An arbitrary file read vulnerability exists in gaizhenbiao/chuanhuchatgpt version 20240628 due to insufficient validation when loading prompt template files. An attacker can read any file that matche…	CWE-22 Path Traversal	CVE-2024-7962	2024-11-1 23:19	2024-10-29	Show	GitHub Exploit DB Packet Storm

309836	5.4	MEDIUM Network	ysoft	safeq	Multiple Stored Cross-Site Scripting vulnerabilities were discovered in Y Soft SAFEQ 6 Build 53. Multiple fields in the YSoft SafeQ web application can be used to inject malicious inputs that, due to…	CWE-79 Cross-site Scripting	CVE-2022-23861	2024-11-1 23:19	2024-10-23	Show	GitHub Exploit DB Packet Storm

309837	8.8	HIGH Network	tenda	rx9_pro_firmware	A vulnerability, which was classified as critical, has been found in Tenda RX9 and RX9 Pro 22.03.02.20. Affected by this issue is the function sub_4337EC of the file /goform/SetNetControlList. The ma…	CWE-787 Out-of-bounds Write	CVE-2024-10283	2024-11-1 23:08	2024-10-24	Show	GitHub Exploit DB Packet Storm

309838	7.5	HIGH Network	tenda	ac15_firmware ac7_firmware ac10u_firmware ac500_firmware ac18_firmware ac9_firmware ac1206_firmware ac6_firmware ac10_firmware ac8_firmware	A vulnerability was found in Tenda AC6, AC7, AC8, AC9, AC10, AC10U, AC15, AC18, AC500 and AC1206 up to 20241022. It has been rated as problematic. This issue affects the function websReadEvent of the…	CWE-476 NULL Pointer Dereference	CVE-2024-10280	2024-11-1 23:03	2024-10-23	Show	GitHub Exploit DB Packet Storm

309839	8.8	HIGH Network	tenda	rx9_pro_firmware	A vulnerability classified as critical has been found in Tenda RX9 and RX9 Pro 22.03.02.10/22.03.02.20. Affected is the function sub_42EEE0 of the file /goform/SetStaticRouteCfg. The manipulation of …	CWE-787 Out-of-bounds Write	CVE-2024-10281	2024-11-1 22:52	2024-10-23	Show	GitHub Exploit DB Packet Storm

309840	8.8	HIGH Network	tenda	rx9_pro_firmware	A vulnerability classified as critical was found in Tenda RX9 and RX9 Pro 22.03.02.10/22.03.02.20. Affected by this vulnerability is the function sub_42EA38 of the file /goform/SetVirtualServerCfg. T…	CWE-787 Out-of-bounds Write	CVE-2024-10282	2024-11-1 22:47	2024-10-24	Show	GitHub Exploit DB Packet Storm