Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228071 5 警告 VMware - VMware View におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2012-5978 2012-12-20 15:27 2012-12-13 Show GitHub Exploit DB Packet Storm
228072 3.5 注意 IBM - IBM Lotus Foundations Start におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-4848 2012-12-20 15:23 2012-12-12 Show GitHub Exploit DB Packet Storm
228073 4.3 警告 IBM - IBM Lotus Notes における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2012-4846 2012-12-20 15:21 2012-12-12 Show GitHub Exploit DB Packet Storm
228074 3.3 注意 IBM - Linux 上で稼働する IBM ASU および BoMC における任意のファイルを上書きされる脆弱性 CWE-59
リンク解釈の問題 		CVE-2012-3329 2012-12-20 15:11 2012-12-19 Show GitHub Exploit DB Packet Storm
228075 4.3 警告 シスコシステムズ - Cisco Wireless LAN Controller デバイスにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-6007 2012-12-20 14:57 2012-12-13 Show GitHub Exploit DB Packet Storm
228076 6.8 警告 シスコシステムズ - Cisco Wireless LAN Controller デバイスにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-5992 2012-12-20 14:52 2012-12-13 Show GitHub Exploit DB Packet Storm
228077 6.3 警告 シスコシステムズ - Cisco Wireless LAN Controller デバイスにおけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2012-5991 2012-12-20 14:46 2012-12-13 Show GitHub Exploit DB Packet Storm
228078 9.3 危険 シスコシステムズ - Cisco Secure Desktop の WebLaunch 機能における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2012-4655 2012-12-20 14:13 2012-06-20 Show GitHub Exploit DB Packet Storm
228079 6.4 警告 Mozilla Foundation - Mozilla Firefox のドラッグ&ドロップにおけるアドレスバーを偽造される脆弱性 CWE-Other
その他 		CVE-2012-1950 2012-12-20 14:11 2012-07-17 Show GitHub Exploit DB Packet Storm
228080 2.6 注意 アップル
サン・マイクロシステムズ
ヒューレット・パッカード
VMware
日立
レッドハット		 - 複数の Oracle 製品の Java Runtime Environment における脆弱性 CWE-noinfo
情報不足 		CVE-2010-4472 2012-12-20 14:10 2011-02-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 23, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
248591 - - - Twig is a template language for PHP. In a sandbox, an attacker can call `__toString()` on an object even if the `__toString()` method is not allowed by the security policy when the object is part of … CWE-668
 Exposure of Resource to Wrong Sphere 		CVE-2024-51754 2024-11-9 04:01 2024-11-7 Show GitHub Exploit DB Packet Storm
248592 - - - Gradio is an open-source Python package designed to enable quick builds of a demo or web application. If File or UploadButton components are used as a part of Gradio application to preview file conte… - CVE-2024-51751 2024-11-9 04:01 2024-11-7 Show GitHub Exploit DB Packet Storm
248593 - - - dingfanzu CMS V1.0 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/doAdminAction.php?act=addAdmin. - CVE-2024-50966 2024-11-9 03:35 2024-11-9 Show GitHub Exploit DB Packet Storm
248594 - - - A vulnerability in the Desktop Client of Mitel MiCollab through 9.7.1.110, and MiVoice Business Solution Virtual Instance (MiVB SVI) 1.0.0.25, could allow an unauthenticated attacker to conduct a com… - CVE-2024-35314 2024-11-9 03:15 2024-10-22 Show GitHub Exploit DB Packet Storm
248595 6.5 MEDIUM
Adjacent 		- - A Missing Release of Memory after Effective Lifetime vulnerability in the Packet Forwarding Engine (PFE) of the Juniper Networks Junos OS on the MX Series platforms with Trio-based FPCs allows an una… CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2024-47493 2024-11-9 03:15 2024-10-12 Show GitHub Exploit DB Packet Storm
248596 5.8 MEDIUM
Network 		hashicorp consul A vulnerability was identified in Consul and Consul Enterprise (“Consul”) such that using Headers in L7 traffic intentions could bypass HTTP header based access rules. CWE-116
 Improper Encoding or Escaping of Output 		CVE-2024-10006 2024-11-9 03:10 2024-10-31 Show GitHub Exploit DB Packet Storm
248597 5.8 MEDIUM
Network 		hashicorp consul A vulnerability was identified in Consul and Consul Enterprise (“Consul”) such that using URL paths in L7 traffic intentions could bypass HTTP request path-based access rules. CWE-22
Path Traversal 		CVE-2024-10005 2024-11-9 03:10 2024-10-31 Show GitHub Exploit DB Packet Storm
248598 7.5 HIGH
Adjacent 		hp poly_tc8_firmware
poly_tc10_firmware
poly_studio_g7500_firmware
poly_studio_x30_firmware
poly_studio_x50_firmware
poly_studio_x70_firmware
poly_studio_x52_firmware
poly_studio_g6… 		A potential vulnerability was discovered in certain Poly video conferencing devices. The firmware flaw does not properly sanitize user input. The exploitation of this vulnerability is dependent on a … CWE-77
Command Injection 		CVE-2024-9579 2024-11-9 03:08 2024-11-6 Show GitHub Exploit DB Packet Storm
248599 7.8 HIGH
Local 		adobe substance_3d_painter Substance3D - Painter versions 10.0.1 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation o… CWE-787
 Out-of-bounds Write 		CVE-2024-49522 2024-11-9 03:06 2024-11-6 Show GitHub Exploit DB Packet Storm
248600 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: nfsd: cancel nfsd_shrinker_work using sync mode in nfs4_state_shutdown_net In the normal case, when we excute `echo 0 > /proc/fs/… CWE-416
 Use After Free 		CVE-2024-50121 2024-11-9 03:05 2024-11-6 Show GitHub Exploit DB Packet Storm