Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 29, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
250971 4.3 警告 ヒューレット・パッカード - HP Insight Recovery におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-4101 2012-03-27 18:42 2010-10-28 Show GitHub Exploit DB Packet Storm
250972 5 警告 ヒューレット・パッカード - HP Insight Control Performance Management における任意のファイルを読まれる脆弱性 CWE-noinfo
情報不足 		CVE-2010-4100 2012-03-27 18:42 2010-10-28 Show GitHub Exploit DB Packet Storm
250973 6.8 警告 nitrosecurity - NitroSecurity NitroView ESM の ess.pm における任意のコマンドを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-4099 2012-03-27 18:42 2010-10-27 Show GitHub Exploit DB Packet Storm
250974 5 警告 monotone - monotone におけるサービス運用妨害 (DoS) の脆弱性 CWE-DesignError
CVE-2010-4098 2012-03-27 18:42 2010-10-27 Show GitHub Exploit DB Packet Storm
250975 4.3 警告 avatic - Aardvark Topsites PHP におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-4097 2012-03-27 18:42 2010-10-27 Show GitHub Exploit DB Packet Storm
250976 4.6 警告 monkeysphere project - Monkeysphere の share/ma/keys_for_user における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-4096 2012-03-27 18:42 2010-10-27 Show GitHub Exploit DB Packet Storm
250977 9.3 危険 robo-ftp - Robo-FTP に組み込まれている Serengeti Systems の FTP クライアントにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-4095 2012-03-27 18:42 2010-10-26 Show GitHub Exploit DB Packet Storm
250978 5 警告 IBM - IBM Rational Quality Manager および Rational Test Lab Manager の Tomcat サーバにおける任意のコードを実行される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2010-4094 2012-03-27 18:42 2010-10-26 Show GitHub Exploit DB Packet Storm
250979 1.9 注意 Linux - Linux kernel の sisfb_ioctl 関数における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2010-4078 2012-03-27 18:42 2010-11-29 Show GitHub Exploit DB Packet Storm
250980 1.9 注意 Linux - Linux kernel の rs_ioctl 関数における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2010-4076 2012-03-27 18:42 2010-11-29 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 29, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
309631 - - - Jenkins Script Security Plugin 1367.vdf2fc45f229c and earlier, except 1365.1367.va_3b_b_89f8a_95b_ and 1362.1364.v4cf2dc5d8776, does not perform a permission check in a method implementing form valid… - CVE-2024-52549 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
309632 - - - baltic-it TOPqw Webportal v1.35.283.2 is vulnerable to Incorrect Access Control in the User Management function in /Apps/TOPqw/BenutzerManagement.aspx. This allows a low privileged user to access all… - CVE-2024-45877 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
309633 - - - Use after free in the UEFI firmware of some Intel(R) Server M20NTP BIOS may allow a privileged user to potentially enable escalation of privilege via local access. CWE-416
 Use After Free 		CVE-2024-40885 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
309634 - - - Improper input validation in firmware for some Intel(R) Server M20NTP Family UEFI may allow a privileged user to potentially enable escalation of privilege via local access. CWE-20
 Improper Input Validation  		CVE-2024-39811 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
309635 - - - Improper neutralization of special elements used in SQL command in some Intel(R) Neural Compressor software before version v3.0 may allow an authenticated user to potentially enable escalation of pri… CWE-1336
 Improper Neutralization of Special Elements Used in a Template Engine 		CVE-2024-39766 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
309636 - - - Improper neutralization of special elements used in an SQL command ('SQL Injection') in some Intel(R) Neural Compressor software before version v3.0 may allow an authenticated user to potentially ena… CWE-89
SQL Injection 		CVE-2024-39368 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
309637 - - - Improper access control in UEFI firmware in some Intel(R) Server M20NTP Family may allow a privileged user to potentially enable information disclosure via local access. CWE-284
Improper Access Control 		CVE-2024-39285 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
309638 - - - Uncontrolled search path for some Intel(R) Quartus(R) Prime Standard Edition software for Windows before version 23.1.1 may allow an authenticated user to potentially enable escalation of privilege v… CWE-427
 Uncontrolled Search Path Element 		CVE-2024-38668 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
309639 - - - Out-of-bounds write in some Intel(R) Graphics Drivers may allow an authenticated user to potentially enable escalation of privilege via local access. CWE-787
 Out-of-bounds Write 		CVE-2024-38665 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
309640 - - - Protection mechanism failure in the SPP for some Intel(R) Xeon(R) processor family (E-Core) may allow an authenticated user to potentially enable escalation of privilege via local access. CWE-693
 Protection Mechanism Failure 		CVE-2024-38660 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm