Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 28, 2026, 4:09 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252671	5	警告	Parallels	-	Parallels Plesk Panel の Server Administration Panel における重要な情報を取得される脆弱性	CWE-DesignError	CVE-2011-4729	2011-12-19 16:33	2011-12-16	Show	GitHub Exploit DB Packet Storm

252672	5	警告	Parallels	-	Parallels Plesk Panel の Server Administration Panel における Cookie をキャプチャされる脆弱性	CWE-200 情報漏えい	CVE-2011-4728	2011-12-19 16:32	2011-12-16	Show	GitHub Exploit DB Packet Storm

252673	10	危険	Parallels	-	Parallels Plesk Panel の Server Administration Panel におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2011-4727	2011-12-19 16:30	2011-12-16	Show	GitHub Exploit DB Packet Storm

252674	4.3	警告	Parallels	-	Parallels Plesk Panel の Server Administration Panel におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-4726	2011-12-19 16:28	2011-12-16	Show	GitHub Exploit DB Packet Storm

252675	7.5	危険	Parallels	-	Parallels Plesk Panel の Server Administration Panel における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-4725	2011-12-19 16:28	2011-12-16	Show	GitHub Exploit DB Packet Storm

252676	9.3	危険	Nullsoft	-	Winamp の in_avi.dll プラグインにおける整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2011-3834	2011-12-19 16:18	2011-12-9	Show	GitHub Exploit DB Packet Storm

252677	10	危険	SmarterTools Inc.	-	SmarterTools SmarterStats における詳細不明な脆弱性	CWE-DesignError	CVE-2011-4752	2011-12-19 16:18	2011-12-16	Show	GitHub Exploit DB Packet Storm

252678	5	警告	SmarterTools Inc.	-	SmarterTools SmarterStats における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2011-4751	2011-12-19 16:17	2011-12-16	Show	GitHub Exploit DB Packet Storm

252679	4.3	警告	SmarterTools Inc.	-	SmarterTools SmarterStats におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-4750	2011-12-19 16:16	2011-12-16	Show	GitHub Exploit DB Packet Storm

252680	4.6	警告	ヒューレット・パッカード IBM オラクル	-	HP ALM 内の getInstalledPackages 関数における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-4834	2011-12-19 15:08	2011-12-15	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
311471	8.8	HIGH Network	agnai	agnai	Agnai is an artificial-intelligence-agnostic multi-user, mult-bot roleplaying chat system. A vulnerability in versions prior to 1.0.330 permits attackers to upload arbitrary files to attacker-chosen …	CWE-434 CWE-35 Unrestricted Upload of File with Dangerous Type Path Traversal: '.../...//'	CVE-2024-47169	2024-10-31 03:25	2024-09-27	Show	GitHub Exploit DB Packet Storm

311472	6.1	MEDIUM Network	cvat	computer_vision_annotation_tool	Computer Vision Annotation Tool (CVAT) is an interactive video and image annotation tool for computer vision. If a malicious CVAT user with permissions to either create a task, or edit an existing ta…	CWE-79 Cross-site Scripting	CVE-2024-47063	2024-10-31 03:24	2024-10-1	Show	GitHub Exploit DB Packet Storm

311473	9.8	CRITICAL Network	filemanagerpro	file_manager	The File Manager plugin for WordPress is vulnerable to authorization bypass due to a missing capability check in the /inc/root.php file in versions up to, and including, 3.0. This makes it possible …	CWE-862 Missing Authorization	CVE-2018-25105	2024-10-31 03:23	2024-10-16	Show	GitHub Exploit DB Packet Storm

311474	6.1	MEDIUM Network	cvat	computer_vision_annotation_tool	Computer Vision Annotation Tool (CVAT) is an interactive video and image annotation tool for computer vision. If an attacker can trick a logged-in CVAT user into visiting a maliciously-constructed UR…	CWE-79 CWE-81 Cross-site Scripting Improper Neutralization of Script in an Error Message Web Page	CVE-2024-47064	2024-10-31 03:23	2024-10-1	Show	GitHub Exploit DB Packet Storm

311475	9.8	CRITICAL Network	codezips	pet_shop_management_system	A vulnerability was found in Codezips Pet Shop Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /deleteanimal.php. The manipulation of the …	CWE-89 SQL Injection	CVE-2024-10427	2024-10-31 03:21	2024-10-28	Show	GitHub Exploit DB Packet Storm

311476	7.5	HIGH Network	vasyltech	advanced_access_manager	The Advanced Access Manager plugin for WordPress is vulnerable to Unauthenticated Arbitrary File Read in versions up to, and including, 5.9.8.1 due to insufficient validation on the aam-media paramet…	CWE-22 Path Traversal	CVE-2019-25213	2024-10-31 03:20	2024-10-16	Show	GitHub Exploit DB Packet Storm

311477	5.4	MEDIUM Network	cvat	computer_vision_annotation_tool	Computer Vision Annotation Tool (CVAT) is an interactive video and image annotation tool for computer vision. An attacker with a CVAT account may retrieve certain information about any project, task,…	CWE-863 Incorrect Authorization	CVE-2024-47172	2024-10-31 03:20	2024-10-1	Show	GitHub Exploit DB Packet Storm

311478	9.8	CRITICAL Network	kaswara_project	kaswara	The Kaswara Modern VC Addons plugin for WordPress is vulnerable to authorization bypass in versions up to, and including, 3.0.1 due to insufficient capability checking on various AJAX actions. This m…	CWE-862 Missing Authorization	CVE-2021-4448	2024-10-31 03:18	2024-10-16	Show	GitHub Exploit DB Packet Storm

311479	9.8	CRITICAL Network	codezips	pet_shop_management_system	A vulnerability was found in Codezips Pet Shop Management System 1.0. It has been classified as critical. This affects an unknown part of the file /animalsadd.php. The manipulation of the argument id…	CWE-89 SQL Injection	CVE-2024-10426	2024-10-31 03:16	2024-10-28	Show	GitHub Exploit DB Packet Storm

311480	-		-	-	ABB is aware of privately reported vulnerabilities in the product versions referenced in this CVE. An attacker could exploit these vulnerabilities by sending a specially crafted firmware or configura…	CWE-347 Improper Verification of Cryptographic Signature	CVE-2024-8036	2024-10-31 03:15	2024-10-26	Show	GitHub Exploit DB Packet Storm