Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251111	10	危険	アップル	-	Apple iTunes の WebKit における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2010-1769	2010-07-13 17:55	2010-06-18	Show	GitHub Exploit DB Packet Storm

251112	10	危険	アップル	-	Apple iTunes の WebKit における脆弱性	CWE-noinfo 情報不足	CVE-2010-1763	2010-07-13 17:54	2010-06-18	Show	GitHub Exploit DB Packet Storm

251113	5	警告	アップル	-	Apple Safari の WebKit における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2010-1119	2010-07-13 16:39	2010-06-10	Show	GitHub Exploit DB Packet Storm

251114	4.3	警告	アップル	-	Apple Safari の WebKit におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-1391	2010-07-13 16:38	2010-06-10	Show	GitHub Exploit DB Packet Storm

251115	4.3	警告	アップル	-	Apple Safari の WebKit におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-1390	2010-07-13 16:37	2010-06-10	Show	GitHub Exploit DB Packet Storm

251116	4.3	警告	アップル	-	Apple Safari の WebKit におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-1389	2010-07-13 16:36	2010-06-10	Show	GitHub Exploit DB Packet Storm

251117	9.3	危険	アップル	-	Apple Safari の WebKit における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2010-0054	2010-07-13 16:36	2010-03-15	Show	GitHub Exploit DB Packet Storm

251118	9.3	危険	アップル	-	Apple Safari の WebKit における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2010-0053	2010-07-13 16:35	2010-03-15	Show	GitHub Exploit DB Packet Storm

251119	9.3	危険	アップル	-	Apple Safari の WebKit における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2010-0052	2010-07-13 16:35	2010-03-15	Show	GitHub Exploit DB Packet Storm

251120	9.3	危険	アップル	-	Apple Safari の WebKit における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2010-0050	2010-07-13 16:34	2010-03-15	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 26, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
256171	-		-	-	cross-site scripting (XSS) vulnerability in Gibbon Core v26.0.00 allows an attacker to execute arbitrary code via the imageLink parameter in the library_manage_catalog_editProcess.php component.	-	CVE-2024-34831	2024-09-12 01:26	2024-09-11	Show	GitHub Exploit DB Packet Storm

256172	6.5	MEDIUM Network	mozilla	thunderbird	When aborting the verification of an OTR chat session, an attacker could have caused a use-after-free bug leading to a potentially exploitable crash. This vulnerability affects Thunderbird < 128.2.	CWE-416 Use After Free	CVE-2024-8394	2024-09-12 01:25	2024-09-7	Show	GitHub Exploit DB Packet Storm

256173	8.8	HIGH Network	draytek	vigor3900_firmware	DrayTek Vigor3900 v1.5.1.6 was discovered to contain an authenticated command injection vulnerability via the value parameter in the filter_string function.	CWE-78 OS Command	CVE-2024-44845	2024-09-12 01:24	2024-09-7	Show	GitHub Exploit DB Packet Storm

256174	8.8	HIGH Network	draytek	vigor3900_firmware	DrayTek Vigor3900 v1.5.1.6 was discovered to contain an authenticated command injection vulnerability via the name parameter in the run_command function.	CWE-78 OS Command	CVE-2024-44844	2024-09-12 01:24	2024-09-7	Show	GitHub Exploit DB Packet Storm

256175	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: gsmi: fix null-deref in gsmi_get_variable We can get EFI variables without fetching the attribute, so we must allow for that in g…	CWE-476 NULL Pointer Dereference	CVE-2023-52893	2024-09-12 01:24	2024-08-21	Show	GitHub Exploit DB Packet Storm

256176	4.3	MEDIUM Network	ngothang	wp_multitasking	The WP MultiTasking WordPress plugin through 0.1.12 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack	CWE-352 Origin Validation Error	CVE-2024-6852	2024-09-12 01:23	2024-09-8	Show	GitHub Exploit DB Packet Storm

256177	4.3	MEDIUM Network	ngothang	wp_multitasking	The WP MultiTasking WordPress plugin through 0.1.12 does not have CSRF check when updating welcome popups, which could allow attackers to make logged admins perform such action via a CSRF attack	CWE-352 Origin Validation Error	CVE-2024-6853	2024-09-12 01:22	2024-09-8	Show	GitHub Exploit DB Packet Storm

256178	4.7	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: drm/virtio: Fix GEM handle creation UAF Userspace can guess the handle value and try to race GEM object creation with handle clos…	CWE-416 Use After Free	CVE-2022-48899	2024-09-12 01:22	2024-08-21	Show	GitHub Exploit DB Packet Storm

256179	4.3	MEDIUM Network	ngothang	wp_multitasking	The WP MultiTasking WordPress plugin through 0.1.12 does not have CSRF check when updating exit popups, which could allow attackers to make logged admins perform such action via a CSRF attack	CWE-352 Origin Validation Error	CVE-2024-6855	2024-09-12 01:21	2024-09-8	Show	GitHub Exploit DB Packet Storm

256180	4.3	MEDIUM Network	ngothang	wp_multitasking	The WP MultiTasking WordPress plugin through 0.1.12 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack	CWE-352 Origin Validation Error	CVE-2024-6856	2024-09-12 01:20	2024-09-8	Show	GitHub Exploit DB Packet Storm