Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 30, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
251171 7.5 危険 LightNEasy - LightNEasy の common.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-3484 2012-03-27 18:42 2010-09-22 Show GitHub Exploit DB Packet Storm
251172 7.5 危険 bouzouste - Primitive CMS の cms_write.php における管理者権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-3483 2012-03-27 18:42 2010-09-22 Show GitHub Exploit DB Packet Storm
251173 6.5 警告 bouzouste - Primitive CMS の cms_write.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-3482 2012-03-27 18:42 2010-09-22 Show GitHub Exploit DB Packet Storm
251174 6.8 警告 ApPHP - ApPHP PHP MicroCMS における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-3481 2012-03-27 18:42 2010-09-22 Show GitHub Exploit DB Packet Storm
251175 4.3 警告 g.rodola - pyftpdlib の FTPHandler クラスにおけるサービス運用妨害 (DoS) の脆弱性 CWE-362
競合状態 		CVE-2010-3494 2012-03-27 18:42 2009-04-1 Show GitHub Exploit DB Packet Storm
251176 6.8 警告 ApPHP - ApPHP PHP MicroCMS の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-3480 2012-03-27 18:42 2010-09-22 Show GitHub Exploit DB Packet Storm
251177 7.5 危険 boutikone - BoutikOne の list.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-3479 2012-03-27 18:42 2010-09-22 Show GitHub Exploit DB Packet Storm
251178 5 警告 OTRS プロジェクト - OTRS におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2010-3476 2012-03-27 18:42 2010-09-20 Show GitHub Exploit DB Packet Storm
251179 5.8 警告 IBM - IBM FileNet P8AE の Workplace コンポーネントにおけるオープンリダイレクトの脆弱性 CWE-20
不適切な入力確認 		CVE-2010-3473 2012-03-27 18:42 2010-09-20 Show GitHub Exploit DB Packet Storm
251180 4.3 警告 IBM - IBM FileNet P8AE の Workplace コンポーネントにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-3472 2012-03-27 18:42 2010-09-20 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 30, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
309661 7.8 HIGH
Local 		dell smartfabric_os10 Dell SmartFabric OS10 Software, version(s) 10.5.6.x, 10.5.5.x, 10.5.4.x, 10.5.3.x, contain(s) an Execution with Unnecessary Privileges vulnerability. A low privileged attacker with local access could… NVD-CWE-noinfo
CVE-2024-48837 2024-11-19 04:48 2024-11-12 Show GitHub Exploit DB Packet Storm
309662 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: RDMA/bnxt_re: Add a check for memory allocation __alloc_pbl() can return error when memory allocation fails. Driver is not checki… NVD-CWE-noinfo
CVE-2024-50209 2024-11-19 04:44 2024-11-8 Show GitHub Exploit DB Packet Storm
309663 - - - SOCIFI Socifi Guest wifi as SAAS is affected by Cross Site Request Forgery (CSRF) via the Socifi wifi portal. The application does not contain a CSRF token and request validation. An attacker can Add… - CVE-2021-27701 2024-11-19 04:35 2024-11-13 Show GitHub Exploit DB Packet Storm
309664 - - - SOCIFI Socifi Guest wifi as SAAS wifi portal is affected by Insecure Permissions. Any authorized customer with partner mode can switch to another customer dashboard and perform actions like modify us… - CVE-2021-27700 2024-11-19 04:35 2024-11-13 Show GitHub Exploit DB Packet Storm
309665 8.8 HIGH
Network 		microsoft sql_server_2016
sql_server_2017
sql_server_2019 		SQL Server Native Client Remote Code Execution Vulnerability NVD-CWE-noinfo
CVE-2024-38255 2024-11-19 04:35 2024-11-13 Show GitHub Exploit DB Packet Storm
309666 - - - In Advanced Custom Fields (ACF) before 6.3.9 and Secure Custom Fields before 6.3.6.3 (plugins for WordPress), using the Field Group editor to edit one of the plugin's fields can result in execution o… - CVE-2024-49593 2024-11-19 04:35 2024-10-17 Show GitHub Exploit DB Packet Storm
309667 8.8 HIGH
Network 		isellerpal enterprise_resource_management_system File Upload vulnerability in Huizhi enterprise resource management system v.1.0 and before allows a remote attacker to execute arbitrary code via the /nssys/common/Upload. Aspx? Action=DNPageAjaxPost… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2024-42676 2024-11-19 04:15 2024-08-15 Show GitHub Exploit DB Packet Storm
309668 3.3 LOW
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: udf: refactor inode_bmap() to handle error Refactor inode_bmap() to handle error since udf_next_aext() can return error now. On s… NVD-CWE-noinfo
CVE-2024-50211 2024-11-19 04:04 2024-11-8 Show GitHub Exploit DB Packet Storm
309669 5.4 MEDIUM
Network 		vice webopac Webopac from Grand Vice info has Stored Cross-site Scripting vulnerability. Remote attackers with regular privileges can inject arbitrary JavaScript code into the server. When users visit the comprom… CWE-79
Cross-site Scripting 		CVE-2024-11021 2024-11-19 04:00 2024-11-11 Show GitHub Exploit DB Packet Storm
309670 9.8 CRITICAL
Network 		vice webopac Webopac from Grand Vice info has a SQL Injection vulnerability, allowing unauthenticated remote attacks to inject arbitrary SQL commands to read, modify, and delete database contents. CWE-89
SQL Injection 		CVE-2024-11020 2024-11-19 03:59 2024-11-11 Show GitHub Exploit DB Packet Storm