Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251671	4.3	警告	Zoho Corporation	-	ManageEngine ServiceDesk Plus の SolutionSearch.do におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-1510	2011-09-26 15:41	2011-09-20	Show	GitHub Exploit DB Packet Storm

251672	10	危険	Measuresoft Development Ltd.	-	Measuresoft ScadaPro の service.exe における任意のコマンドを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2011-3496	2011-09-26 15:40	2011-09-7	Show	GitHub Exploit DB Packet Storm

251673	10	危険	Measuresoft Development Ltd.	-	Measuresoft ScadaPro の service.exe における任意の DLL を実行される脆弱性	CWE-200 情報漏えい	CVE-2011-3497	2011-09-26 15:40	2011-09-16	Show	GitHub Exploit DB Packet Storm

251674	10	危険	Measuresoft Development Ltd.	-	Measuresoft ScadaPro の service.exe におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2011-3495	2011-09-26 15:39	2011-09-16	Show	GitHub Exploit DB Packet Storm

251675	4.3	警告	TIBCO Software	-	TIBCO Managed File Transfer および Slingshot におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-3423	2011-09-26 15:38	2011-09-13	Show	GitHub Exploit DB Packet Storm

251676	4.3	警告	TIBCO Software	-	TIBCO Managed File Transfer および Slingshot における Web セッションをハイジャックされる脆弱性	CWE-Other その他	CVE-2011-3424	2011-09-26 15:37	2011-09-13	Show	GitHub Exploit DB Packet Storm

251677	10	危険	シスコシステムズ	-	Cisco Unified Service Monitor における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2011-2738	2011-09-22 15:55	2011-09-14	Show	GitHub Exploit DB Packet Storm

251678	6.8	警告	Jaspersoft	-	JasperServer にクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2011-1911	2011-09-22 15:54	2011-09-16	Show	GitHub Exploit DB Packet Storm

251679	7.5	危険	LifeSize Communications	-	LifeSize Room appliance の Web インターフェイスにおける任意のコマンドを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2011-2763	2011-09-22 15:50	2011-09-2	Show	GitHub Exploit DB Packet Storm

251680	5	警告	LifeSize Communications	-	LifeSize Room appliance の Web インターフェイスにおける認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2011-2762	2011-09-22 15:49	2011-09-2	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
305521	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: bpf, arm64: Fix address emission with tag-based KASAN enabled When BPF_TRAMP_F_CALL_ORIG is enabled, the address of a bpf_tramp_i…	CWE-787 Out-of-bounds Write	CVE-2024-50203	2024-11-20 01:16	2024-11-8	Show	GitHub Exploit DB Packet Storm

305522	-		-	-	Cachi2 is a command-line interface tool that pre-fetches a project's dependencies to aid in making the project's build process network-isolated. Prior to version 0.14.0, secrets may be shown in logs …	CWE-497 Exposure of Sensitive System Information to an Unauthorized Control Sphere	CVE-2024-52582	2024-11-20 01:15	2024-11-20	Show	GitHub Exploit DB Packet Storm

305523	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: nilfs2: propagate directory read errors from nilfs_find_entry() Syzbot reported that a task hang occurs in vcs_open() during a fu…	CWE-755 Improper Handling of Exceptional Conditions	CVE-2024-50202	2024-11-20 01:12	2024-11-8	Show	GitHub Exploit DB Packet Storm

305524	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: drm/radeon: Fix encoder->possible_clones Include the encoder itself in its possible_clones bitmask. In the past nothing validated…	NVD-CWE-noinfo	CVE-2024-50201	2024-11-20 01:08	2024-11-8	Show	GitHub Exploit DB Packet Storm

305525	4.8	MEDIUM Network	open-emr	openemr	A stored cross-site scripting (XSS) vulnerability exists in openemr/openemr version 7.0.1. An attacker can inject malicious payloads into the 'inputBody' field in the Secure Messaging feature, which …	CWE-79 Cross-site Scripting	CVE-2024-0875	2024-11-20 01:03	2024-11-15	Show	GitHub Exploit DB Packet Storm

305526	7.5	HIGH Network	schneider-electric	powerlogic_pm5341_firmware powerlogic_pm5340_firmware powerlogic_pm5320_firmware	CWE-400: An Uncontrolled Resource Consumption vulnerability exists that could cause the device to become unresponsive resulting in communication loss when a large amount of IGMP packets is present in…	CWE-400 Uncontrolled Resource Consumption	CVE-2024-9409	2024-11-20 00:59	2024-11-13	Show	GitHub Exploit DB Packet Storm

305527	4.8	MEDIUM Network	vektor-inc	vk_all_in_one_expansion_unit	Cross-site scripting vulnerability exists in VK All in One Expansion Unit versions prior to 9.100.1.0. If this vulnerability is exploited, an arbitrary script may be executed on the web browser of th…	CWE-79 Cross-site Scripting	CVE-2024-52268	2024-11-20 00:57	2024-11-13	Show	GitHub Exploit DB Packet Storm

305528	4.8	MEDIUM Network	pimcore	pimcore	A stored Cross-site Scripting (XSS) vulnerability exists in the Conditions tab of Pricing Rules in pimcore/pimcore versions 10.5.19. The vulnerability is present in the From and To fields of the Date…	CWE-79 Cross-site Scripting	CVE-2023-2332	2024-11-20 00:55	2024-11-15	Show	GitHub Exploit DB Packet Storm

305529	5.4	MEDIUM Network	royal-elementor-addons	royal_elementor_addons	The Royal Elementor Addons and Templates plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Countdown widget in all versions up to, and including, 1.7.1001 due to insu…	CWE-79 Cross-site Scripting	CVE-2024-9668	2024-11-20 00:55	2024-11-13	Show	GitHub Exploit DB Packet Storm

305530	5.5	MEDIUM Local	gpac	gpac	A use after free vulnerability exists in GPAC version 2.3-DEV-revrelease, specifically in the gf_filterpacket_del function in filter_core/filter.c at line 38. This vulnerability can lead to a double-…	CWE-416 Use After Free	CVE-2023-4679	2024-11-20 00:54	2024-11-15	Show	GitHub Exploit DB Packet Storm