Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
253651 5 警告 光洋電子工業 - 複数の光洋電子工業社製品の Web サーバにおけるサービス運用妨害 (リソース消費) の脆弱性 CWE-399
リソース管理の問題
CVE-2012-1809 2012-04-17 16:52 2012-04-11 Show GitHub Exploit DB Packet Storm
253652 10 危険 光洋電子工業 - 複数の光洋電子工業社製品の Web サーバおける不特定の機能を実行される脆弱性 CWE-287
不適切な認証
CVE-2012-1808 2012-04-17 16:52 2012-04-11 Show GitHub Exploit DB Packet Storm
253653 4.3 警告 光洋電子工業 - 複数の光洋電子工業社製品の Web サーバにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2012-1807 2012-04-17 16:51 2012-04-11 Show GitHub Exploit DB Packet Storm
253654 7.5 危険 光洋電子工業 - 複数の光洋電子工業社製品の ECOM Ethernet モジュールにおけるアクセス権を取得される脆弱性 CWE-287
不適切な認証
CVE-2012-1806 2012-04-17 16:50 2012-04-11 Show GitHub Exploit DB Packet Storm
253655 10 危険 光洋電子工業 - 複数の光洋電子工業社製品の ECOM Ethernet モジュールにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2012-1805 2012-04-17 16:47 2012-04-11 Show GitHub Exploit DB Packet Storm
253656 7.5 危険 libarchive - libarchive におけるサービス運用妨害 (アプリケーションクラッシュ) の脆弱性 CWE-399
リソース管理の問題
CVE-2011-1779 2012-04-17 16:46 2012-04-13 Show GitHub Exploit DB Packet Storm
253657 7.5 危険 libarchive - libarchive におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2010-4666 2012-04-17 16:29 2012-04-13 Show GitHub Exploit DB Packet Storm
253658 9.3 危険 Mozilla Foundation - Mozilla Firefox および Thunderbird における権限を取得される脆弱性 CWE-94
コード・インジェクション
CVE-2011-3655 2012-04-16 18:09 2011-11-8 Show GitHub Exploit DB Packet Storm
253659 10 危険 Mozilla Foundation - Mozilla Firefox および Thunderbird のブラウザエンジンにおけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー
CVE-2011-3654 2012-04-16 18:07 2011-11-8 Show GitHub Exploit DB Packet Storm
253660 10 危険 Mozilla Foundation - Mozilla Firefox および Thunderbird のブラウザエンジンにおけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー
CVE-2011-3652 2012-04-16 17:16 2011-11-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
318191 9.8 CRITICAL
Network
gvectors wpdiscuz The Comments – wpDiscuz plugin for WordPress is vulnerable to authentication bypass in all versions up to, and including, 7.6.24. This is due to insufficient verification on the user being returned b… NVD-CWE-Other
CVE-2024-9488 2024-11-6 23:57 2024-10-25 Show GitHub Exploit DB Packet Storm
318192 6.1 MEDIUM
Network
markjaquith subscribe_to_comments The Subscribe to Comments plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in all versions up to, and inclu… CWE-79
Cross-site Scripting
CVE-2024-8792 2024-11-6 23:51 2024-10-30 Show GitHub Exploit DB Packet Storm
318193 5.4 MEDIUM
Network
instantcms instantcms InstantCMS is a free and open source content management system. In photo upload function in the photo album page there is no input validation taking place. Due to this attackers are able to inject th… CWE-79
Cross-site Scripting
CVE-2024-50348 2024-11-6 23:49 2024-10-30 Show GitHub Exploit DB Packet Storm
318194 9.8 CRITICAL
Network
codezips online_institute_management_system A vulnerability classified as critical was found in Codezips Online Institute Management System up to 1.0. This vulnerability affects unknown code of the file /profile.php. The manipulation of the ar… CWE-434
 Unrestricted Upload of File with Dangerous Type 
CVE-2024-10765 2024-11-6 23:45 2024-11-5 Show GitHub Exploit DB Packet Storm
318195 9.8 CRITICAL
Network
codezips online_institute_management_system A vulnerability classified as critical has been found in Codezips Online Institute Management System 1.0. This affects an unknown part of the file /pages/save_user.php. The manipulation of the argume… CWE-434
 Unrestricted Upload of File with Dangerous Type 
CVE-2024-10764 2024-11-6 23:44 2024-11-5 Show GitHub Exploit DB Packet Storm
318196 7.1 HIGH
Local
apple iphone_os
ipados
visionos
tvos
This issue was addressed with improved handling of symlinks. This issue is fixed in iOS 18.1 and iPadOS 18.1, iOS 17.7.1 and iPadOS 17.7.1, visionOS 2.1, tvOS 18.1. Restoring a maliciously crafted ba… CWE-59
Link Following
CVE-2024-44258 2024-11-6 23:35 2024-10-29 Show GitHub Exploit DB Packet Storm
318197 8.8 HIGH
Network
combodo itop Combodo iTop is a simple, web based IT Service Management tool. A CSRF can be performed on CSV import simulation. This issue has been fixed in versions 3.1.2 and 3.2.0. All users are advised to upgra… CWE-352
 Origin Validation Error
CVE-2024-31998 2024-11-6 23:31 2024-11-5 Show GitHub Exploit DB Packet Storm
318198 6.1 MEDIUM
Network
combodo itop Combodo iTop is a simple, web based IT Service Management tool. By filling malicious code in a CSV content, an Cross-site Scripting (XSS) attack can be performed when importing this content. This iss… CWE-79
Cross-site Scripting
CVE-2024-31448 2024-11-6 23:31 2024-11-5 Show GitHub Exploit DB Packet Storm
318199 6.1 MEDIUM
Network
combodo itop Combodo iTop is a simple, web based IT Service Management tool. When displaying pages/ajax.render.php XSS are possible for scripts outside of script tags. This issue has been fixed in versions 2.7.9,… CWE-79
Cross-site Scripting
CVE-2023-34445 2024-11-6 23:29 2024-11-5 Show GitHub Exploit DB Packet Storm
318200 6.1 MEDIUM
Network
combodo itop Combodo iTop is a simple, web based IT Service Management tool. When displaying pages/ajax.searchform.php XSS are possible for scripts outside of script tags. This issue has been fixed in versions 2.… CWE-79
Cross-site Scripting
CVE-2023-34444 2024-11-6 23:28 2024-11-5 Show GitHub Exploit DB Packet Storm