Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 24, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251261	5	警告	TIBCO Software	-	複数の TIBCO Spotfire 製品における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2012-0690	2012-03-15 11:16	2012-03-8	Show	GitHub Exploit DB Packet Storm

251262	5	警告	TIBCO Software	-	複数の TIBCO 製品における証明書情報を発見される脆弱性	CWE-200 情報漏えい	CVE-2012-0689	2012-03-15 11:15	2012-03-8	Show	GitHub Exploit DB Packet Storm

251263	4.3	警告	TIBCO Software	-	複数の TIBCO 製品におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-0688	2012-03-15 11:15	2012-03-8	Show	GitHub Exploit DB Packet Storm

251264	5	警告	TIBCO Software	-	複数の TIBCO 製品における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2012-0687	2012-03-15 11:14	2012-03-8	Show	GitHub Exploit DB Packet Storm

251265	5	警告	IBM	-	複数の IBM 製品におけるサービス運用妨害 (メモリ消費) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-1394	2012-03-14 16:24	2012-02-14	Show	GitHub Exploit DB Packet Storm

251266	4.3	警告	IBM	-	IBM Maximo Asset Management および Maximo Asset Management Essentials におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-1395	2012-03-14 16:23	2012-02-14	Show	GitHub Exploit DB Packet Storm

251267	4.3	警告	IBM	-	IBM Maximo Asset Management および Maximo Asset Management Essentials におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-1396	2012-03-14 16:23	2012-02-14	Show	GitHub Exploit DB Packet Storm

251268	6.8	警告	IBM	-	複数の IBM 製品の Labor Reporting ページにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2011-1397	2012-03-14 16:22	2012-02-14	Show	GitHub Exploit DB Packet Storm

251269	6.5	警告	IBM	-	複数の IBM 製品の KPI コンポーネントにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-4816	2012-03-14 16:08	2012-02-14	Show	GitHub Exploit DB Packet Storm

251270	4	警告	IBM	-	複数の IBM 製品の Help メニューの About オプションにおける詳細不明な脆弱性	CWE-200 情報漏えい	CVE-2011-4817	2012-03-14 16:07	2012-02-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 24, 2026, 4:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
309431	-		-	-	Incomplete cleanup in the ASP may expose the Master Encryption Key (MEK) to a privileged attacker with access to the BIOS menu or UEFI shell and a memory exfiltration vulnerability, potentially resul…	-	CVE-2023-20518	2024-11-6 02:35	2024-08-14	Show	GitHub Exploit DB Packet Storm

309432	7.8	HIGH Local	iconics mitsubishielectric	genesis64 mc_works64	Incorrect Default Permissions vulnerability in GenBroker32, which is included in the installers for ICONICS GENESIS64 version 10.97.3 and prior, Mitsubishi Electric GENESIS64 version 10.97.3 and prio…	CWE-276 Incorrect Default Permissions	CVE-2024-7587	2024-11-6 02:24	2024-10-23	Show	GitHub Exploit DB Packet Storm

309433	-		-	-	System logs could be accessed through web management application due to a lack of access control. An attacker can obtain the following sensitive information: • Wi-Fi access point credentials t…	-	CVE-2023-29114	2024-11-6 02:15	2024-11-6	Show	GitHub Exploit DB Packet Storm

309434	7.8	HIGH Local	okta	verify	The Okta Device Access features, provided by the Okta Verify agent for Windows, provides access to the OktaDeviceAccessPipe, which enables attackers in a compromised device to retrieve passwords asso…	CWE-276 Incorrect Default Permissions	CVE-2024-9191	2024-11-6 02:06	2024-11-2	Show	GitHub Exploit DB Packet Storm

309435	8.8	HIGH Network	esafenet	cdg	A vulnerability was found in ESAFENET CDG 5. It has been classified as critical. Affected is the function docHistory of the file /com/esafenet/servlet/fileManagement/FileDirectoryService.java. The ma…	CWE-89 SQL Injection	CVE-2024-10594	2024-11-6 02:05	2024-11-1	Show	GitHub Exploit DB Packet Storm

309436	5.4	MEDIUM Network	webcraftplugins	image_map_pro	The Image Map Pro plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'save_project' function with an arbitrary shortcode in versions up to, and including, 6.0.20 due to insuffi…	CWE-79 Cross-site Scripting	CVE-2024-9585	2024-11-6 02:05	2024-10-26	Show	GitHub Exploit DB Packet Storm

309437	9.8	CRITICAL Network	esafenet	cdg	A vulnerability, which was classified as critical, was found in ESAFENET CDG 5. This affects the function deleteHook of the file /com/esafenet/servlet/policy/HookService.java. The manipulation of the…	CWE-89 SQL Injection	CVE-2024-10660	2024-11-6 02:04	2024-11-2	Show	GitHub Exploit DB Packet Storm

309438	9.8	CRITICAL Network	esafenet	cdg	A vulnerability, which was classified as critical, has been found in ESAFENET CDG 5. Affected by this issue is the function delSystemEncryptPolicy of the file /com/esafenet/servlet/document/CDGAuthor…	CWE-89 SQL Injection	CVE-2024-10659	2024-11-6 02:04	2024-11-2	Show	GitHub Exploit DB Packet Storm

309439	5.4	MEDIUM Network	webcraftplugins	image_map_pro	The Image Map Pro plugin for WordPress is vulnerable to unauthorized modification of data and loss of data due to a missing capability check on the AJAX functions in versions up to, and including, 6.…	CWE-862 Missing Authorization	CVE-2024-9584	2024-11-6 02:04	2024-10-26	Show	GitHub Exploit DB Packet Storm

309440	3.5	LOW Network	mattermost	mattermost	Mattermost versions 9.11.X <= 9.11.1, 9.5.x <= 9.5.9 icorrectly issues two sessions when using desktop SSO - one in the browser and one in desktop with incorrect settings.	NVD-CWE-Other	CVE-2024-10214	2024-11-6 02:03	2024-10-29	Show	GitHub Exploit DB Packet Storm