Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 29, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251821	2.6	注意	SquirrelMail Project	-	SquirrelMail 用プラグイン Autocomplete におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-0323	2012-03-9 12:01	2012-03-9	Show	GitHub Exploit DB Packet Storm

251822	10	危険	Goforandroid	-	Android 用 GO Message Widget アプリケーションにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2012-1407	2012-03-9 11:26	2011-03-7	Show	GitHub Exploit DB Packet Storm

251823	10	危険	Goforandroid	-	Android 用 GO Bookmark Widget アプリケーションにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2012-1406	2012-03-9 11:24	2011-03-7	Show	GitHub Exploit DB Packet Storm

251824	10	危険	Goforandroid	-	Android 用 GO Note Widget アプリケーションにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2012-1405	2012-03-9 11:23	2011-03-7	Show	GitHub Exploit DB Packet Storm

251825	10	危険	Goforandroid	-	Android 用 GO WeiboWidget アプリケーションにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2012-1398	2012-03-9 11:22	2012-03-7	Show	GitHub Exploit DB Packet Storm

251826	10	危険	Goforandroid	-	Android 用 GO QQWeiboWidget アプリケーションにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2012-1397	2012-03-9 11:16	2012-03-7	Show	GitHub Exploit DB Packet Storm

251827	10	危険	Goforandroid	-	Android 用 GO FBWidget アプリケーションにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2012-1396	2012-03-9 11:15	2012-03-7	Show	GitHub Exploit DB Packet Storm

251828	10	危険	Goforandroid	-	Android 用 GO TwiWidget アプリケーションにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2012-1395	2012-03-9 11:10	2012-03-7	Show	GitHub Exploit DB Packet Storm

251829	10	危険	Goforandroid	-	Android 用 GO Email Widget アプリケーションにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2012-1394	2012-03-9 11:08	2012-03-7	Show	GitHub Exploit DB Packet Storm

251830	10	危険	Goforandroid	-	Android 用 GO SMS Pro アプリケーションにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2012-1393	2012-03-9 11:06	2012-03-7	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 29, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
310841	5.5	MEDIUM Local	huawei	harmonyos	Vulnerability of parameter type not being verified in the WantAgent module Impact: Successful exploitation of this vulnerability may affect availability.	NVD-CWE-noinfo	CVE-2024-51512	2024-11-8 02:03	2024-11-5	Show	GitHub Exploit DB Packet Storm

310842	5.5	MEDIUM Local	huawei	harmonyos	Vulnerability of parameter type not being verified in the WantAgent module Impact: Successful exploitation of this vulnerability may affect availability.	NVD-CWE-noinfo	CVE-2024-51511	2024-11-8 02:03	2024-11-5	Show	GitHub Exploit DB Packet Storm

310843	5.5	MEDIUM Local	huawei	harmonyos emui	Out-of-bounds access vulnerability in the logo module Impact: Successful exploitation of this vulnerability may affect service confidentiality.	CWE-787 Out-of-bounds Write	CVE-2024-51510	2024-11-8 02:03	2024-11-5	Show	GitHub Exploit DB Packet Storm

310844	-		-	-	Use of Default Credentials vulnerability in Maruti Suzuki SmartPlay on Linux (Infotainment Hub modules) allows attacker to try common or default usernames and passwords.The issue was detected on a 20…	-	CVE-2024-6245	2024-11-8 01:15	2024-10-29	Show	GitHub Exploit DB Packet Storm

310845	6.5	MEDIUM Network	mongodb	mongodb	prepareUnique index may cause secondaries to crash due to incorrect enforcement of index constraints on secondaries, where in extreme cases may cause multiple secondaries crashing leading to no prima…	NVD-CWE-Other	CVE-2024-8305	2024-11-8 00:38	2024-10-22	Show	GitHub Exploit DB Packet Storm

310846	6.1	MEDIUM Network	klokantech	maptiler_tileserver_gl	A vulnerability was found in Klokan MapTiler tileserver-gl 2.3.1 and classified as problematic. This issue affects some unknown processing of the component URL Handler. The manipulation of the argume…	CWE-79 Cross-site Scripting	CVE-2024-10503	2024-11-8 00:30	2024-10-30	Show	GitHub Exploit DB Packet Storm

310847	7.5	HIGH Network	nginxui	nginx_ui	Nginx UI is a web user interface for the Nginx web server. Nginx UI v2.0.0-beta.35 and earlier gets the value from the json field without verification, and can construct a value value in the form of …	CWE-22 Path Traversal	CVE-2024-49366	2024-11-8 00:15	2024-10-22	Show	GitHub Exploit DB Packet Storm

310848	7.5	HIGH Network	nginxui	nginx_ui	Nginx UI is a web user interface for the Nginx web server. Prior to version 2.0.0-beta.36, the log path of nginxui is controllable. This issue can be combined with the directory traversal at `/api/co…	CWE-862 Missing Authorization	CVE-2024-49367	2024-11-7 23:57	2024-10-22	Show	GitHub Exploit DB Packet Storm

310849	-		-	-	UnoPim 0.1.3 and below is vulnerable to Cross Site Scripting (XSS) in the Create User function. This allows attackers to perform XSS via an SVG document, which can be used to steal cookies.	-	CVE-2024-50637	2024-11-7 23:15	2024-11-7	Show	GitHub Exploit DB Packet Storm

310850	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: ALSA: seq: Fix function prototype mismatch in snd_seq_expand_var_event With clang's kernel control flow integrity (kCFI, CONFIG_C…	NVD-CWE-noinfo	CVE-2022-48994	2024-11-7 22:52	2024-10-22	Show	GitHub Exploit DB Packet Storm