Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 27, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251771	6.4	警告	富士通	-	Fujitsu Interstage Application Server の Interstage 管理コンソールにおける任意のファイル読込/削除の脆弱性	CWE-noinfo 情報不足	CVE-2008-2674	2012-02-15 18:12	2008-06-10	Show	GitHub Exploit DB Packet Storm

251772	-	-	日本電気 PNG Development Group フェンリル株式会社	-	libpng における sCAL チャンクの処理に脆弱性	-	-	2012-02-15 16:45	2011-07-8	Show	GitHub Exploit DB Packet Storm

251773	5.8	警告	Netcreators	-	TYPO3 用 Modern FAQ エクステンションにおけるオープンリダイレクトの脆弱性	CWE-20 不適切な入力確認	CVE-2011-5079	2012-02-15 16:04	2012-02-14	Show	GitHub Exploit DB Packet Storm

251774	5	警告	The PHP Group	-	PHP のタイムゾーン機能におけるサービス運用妨害 (メモリ破損) の脆弱性	CWE-399 リソース管理の問題	CVE-2012-0789	2012-02-15 16:03	2012-01-10	Show	GitHub Exploit DB Packet Storm

251775	5	警告	The PHP Group	-	PHP の PDORow 実装におけるサービス運用妨害 (アプリケーションクラッシュ) の脆弱性	CWE-20 不適切な入力確認	CVE-2012-0788	2012-02-15 16:02	2012-01-10	Show	GitHub Exploit DB Packet Storm

251776	7.5	危険	Zoho Corporation	-	ManageEngine Applications Manager における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-1063	2012-02-15 15:55	2012-02-14	Show	GitHub Exploit DB Packet Storm

251777	4.3	警告	Zoho Corporation	-	ManageEngine Applications Manager におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-1062	2012-02-15 15:55	2012-02-14	Show	GitHub Exploit DB Packet Storm

251778	7.5	危険	GForge Group	-	GForge Advanced Server における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-1061	2012-02-15 15:54	2012-02-14	Show	GitHub Exploit DB Packet Storm

251779	2.1	注意	Rik de Boer	-	Drupal 用 Revisioning モジュールの revisioning_theme.inc におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-1060	2012-02-15 15:51	2012-02-14	Show	GitHub Exploit DB Packet Storm

251780	4.3	警告	osCommerce	-	OSCommerce Online Merchant の shirt モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-1059	2012-02-15 15:51	2012-02-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
310681	-		-	-	AIML Chatbot 1.0 (fixed in 2.0) is vulnerable to Cross Site Scripting (XSS). The vulnerability is exploited through the message input field, where attackers can inject malicious HTML or JavaScript co…	-	CVE-2024-48396	2024-10-31 05:35	2024-10-26	Show	GitHub Exploit DB Packet Storm

310682	7.5	HIGH Network	octavolabs	vernemq	A memory allocation issue in vernemq v2.0.1 allows attackers to cause a Denial of Service (DoS) via excessive memory consumption.	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2024-44459	2024-10-31 05:35	2024-09-13	Show	GitHub Exploit DB Packet Storm

310683	-		-	-	A cross-site scripting (XSS) vulnerability in the component /email/welcome.php of Mini Inventory and Sales Management System commit 18aa3d allows attackers to execute arbitrary web scripts or HTML vi…	-	CVE-2024-42550	2024-10-31 05:35	2024-08-22	Show	GitHub Exploit DB Packet Storm

310684	6.8	MEDIUM Physics	gncchome	gncc_c2_firmware	Authentication Bypass in GNCC's GC2 Indoor Security Camera 1080P allows an attacker with physical access to gain a privileged command shell via the UART Debugging Port.	CWE-287 Improper Authentication	CVE-2024-31800	2024-10-31 05:35	2024-08-16	Show	GitHub Exploit DB Packet Storm

310685	4.3	MEDIUM Network	google	chrome	Inappropriate implementation in FedCM in Google Chrome prior to 127.0.6533.72 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTM…	NVD-CWE-noinfo	CVE-2024-6999	2024-10-31 05:35	2024-08-7	Show	GitHub Exploit DB Packet Storm

310686	8.1	HIGH Network	mozilla	firefox	A select option could partially obscure security prompts. This could be used by a malicious site to trick a user into granting permissions. This issue only affects Android versions of Firefox. Thi…	NVD-CWE-Other	CVE-2024-7523	2024-10-31 05:35	2024-08-6	Show	GitHub Exploit DB Packet Storm

310687	4.1	MEDIUM Network	solarwinds	serv-u	Application is vulnerable to Cross Site Scripting (XSS) an authenticated attacker with users’ permissions can modify a variable with a payload.	CWE-79 Cross-site Scripting	CVE-2024-45714	2024-10-31 05:33	2024-10-16	Show	GitHub Exploit DB Packet Storm

310688	4.9	MEDIUM Network	topdata	inner_rep_plus	A vulnerability was found in Topdata Inner Rep Plus WebServer 2.01. It has been rated as problematic. Affected by this issue is some unknown functionality of the file td.js.gz. The manipulation leads…	CWE-327 Use of a Broken or Risky Cryptographic Algorithm	CVE-2024-10128	2024-10-31 05:31	2024-10-19	Show	GitHub Exploit DB Packet Storm

310689	9.8	CRITICAL Network	riskengine	radar	A vulnerability has been found in wfh45678 Radar up to 1.0.8 and classified as critical. This vulnerability affects unknown code of the file /services/v1/common/upload. The manipulation of the argume…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2024-10120	2024-10-31 05:20	2024-10-19	Show	GitHub Exploit DB Packet Storm

310690	7.8	HIGH Local	lakesidesoftware	systrack_lsiagent	Lakeside Software’s SysTrack LsiAgent Installer version 10.7.8 for Windows contains a local privilege escalation vulnerability which allows attackers SYSTEM level access.	NVD-CWE-Other	CVE-2023-6080	2024-10-31 05:12	2024-10-19	Show	GitHub Exploit DB Packet Storm