Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 31, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
250881 9.3 危険 Novell - Novell ZHM の ZfHIPCND.exe におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-4299 2012-03-27 18:42 2010-11-2 Show GitHub Exploit DB Packet Storm
250882 7.5 危険 dustincowell - Free Simple Software の download モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4298 2012-03-27 18:42 2010-11-26 Show GitHub Exploit DB Packet Storm
250883 7.5 危険 Artica ST - Pandora FMS における任意の PHP コードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-4283 2012-03-27 18:42 2010-12-2 Show GitHub Exploit DB Packet Storm
250884 7.5 危険 Artica ST - Pandora FMS におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-4282 2012-03-27 18:42 2010-12-2 Show GitHub Exploit DB Packet Storm
250885 7.5 危険 Artica ST - Pandora FMS の safe_url_extraclean 関数における任意の PHP コードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-4281 2012-03-27 18:42 2010-12-2 Show GitHub Exploit DB Packet Storm
250886 7.5 危険 Artica ST - Pandora FMS における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4280 2012-03-27 18:42 2010-12-2 Show GitHub Exploit DB Packet Storm
250887 10 危険 Artica ST - Pandora FMS のディフォルト設定における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2010-4279 2012-03-27 18:42 2010-12-2 Show GitHub Exploit DB Packet Storm
250888 7.5 危険 accimoveis - DescargarVista ACC Imoveis における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4273 2012-03-27 18:42 2010-11-16 Show GitHub Exploit DB Packet Storm
250889 7.5 危険 pulseinfotech
Joomla!		 - Joomla! 用の Pulse Infotech Sponsor Wall コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4272 2012-03-27 18:42 2010-11-16 Show GitHub Exploit DB Packet Storm
250890 7.5 危険 ImpressCMS - ImpressCMS における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4271 2012-03-27 18:42 2010-11-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
312661 6.8 MEDIUM
Adjacent 		safie qbic_cloud_cc-2\/2l_firmware
safie_one_firmware 		QBiC CLOUD CC-2L v1.1.30 and earlier and Safie One v1.8.2 and earlier do not properly validate certificates, which may allow a network-adjacent unauthenticated attacker to obtain and/or alter communi… CWE-295
Improper Certificate Validation  		CVE-2024-39771 2024-10-29 06:35 2024-08-28 Show GitHub Exploit DB Packet Storm
312662 5.4 MEDIUM
Network 		hp poly_clariti_manager_firmware A vulnerability was discovered in the firmware builds up to 10.10.2.2 in Poly Clariti Manager devices. The flaw does not properly neutralize input during a web page generation. CWE-79
Cross-site Scripting 		CVE-2024-41911 2024-10-29 06:35 2024-08-6 Show GitHub Exploit DB Packet Storm
312663 3.3 LOW
Local 		rd_labs_llc who The com.cascadialabs.who (aka Who - Caller ID, Spam Block) application 15.0 for Android places sensitive information in the system log. CWE-532
 Inclusion of Sensitive Information in Log Files 		CVE-2024-40096 2024-10-29 06:35 2024-08-5 Show GitHub Exploit DB Packet Storm
312664 5.3 MEDIUM
Network 		mecodia feripro An Incorrect Access Control vulnerability in "/admin/benutzer/institution/rechteverwaltung/uebersicht" in Feripro <= v2.2.3 allows remote attackers to get a list of all users and their corresponding … NVD-CWE-Other
CVE-2024-41517 2024-10-29 06:35 2024-08-3 Show GitHub Exploit DB Packet Storm
312665 - - - Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2024-37295. Reason: This candidate is a reservation duplicate of CVE-2024-37295. Notes: All CVE users should reference CVE-2024-3729… - CVE-2024-36811 2024-10-29 06:15 2024-06-8 Show GitHub Exploit DB Packet Storm
312666 - - - Android before 2024-10-05 on Google Pixel devices allows privilege escalation in the ABL component, A-329163861. - CVE-2024-47031 2024-10-29 05:35 2024-10-25 Show GitHub Exploit DB Packet Storm
312667 - - - Android before 2024-10-05 on Google Pixel devices allows information disclosure in the ACPM component, A-315191818. - CVE-2024-47030 2024-10-29 05:35 2024-10-25 Show GitHub Exploit DB Packet Storm
312668 - - - An issue was discovered on certain GL-iNet devices, including MT6000, MT3000, MT2500, AXT1800, and AX1800 4.6.2. The params parameter in the call method of the /rpc endpoint is vulnerable to arbitrar… - CVE-2024-45262 2024-10-29 05:35 2024-10-25 Show GitHub Exploit DB Packet Storm
312669 - - - An issue was discovered on certain GL-iNet devices, including MT6000, MT3000, MT2500, AXT1800, and AX1800 4.6.2. The SID generated for a specific user is not tied to that user itself, which allows ot… - CVE-2024-45261 2024-10-29 05:35 2024-10-25 Show GitHub Exploit DB Packet Storm
312670 - - - An issue was discovered on certain GL-iNet devices, including MT6000, MT3000, MT2500, AXT1800, and AX1800 4.6.2. Users who belong to unauthorized groups can invoke any interface of the device, thereb… - CVE-2024-45260 2024-10-29 05:35 2024-10-25 Show GitHub Exploit DB Packet Storm