Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251681	7.5	危険	Myrephp Programming	-	MYRE Real Estate Software の findagent.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-3394	2011-09-21 15:52	2011-09-15	Show	GitHub Exploit DB Packet Storm

251682	4.3	警告	Myrephp Programming	-	MYRE Real Estate Software の findagent.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-3393	2011-09-21 15:51	2011-09-15	Show	GitHub Exploit DB Packet Storm

251683	10	危険	Scadatec Limited	-	Scadatec Limited Procyon SCADA におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-3322	2011-09-21 15:51	2011-09-15	Show	GitHub Exploit DB Packet Storm

251684	2.1	注意	シスコシステムズ	-	Cisco VPN client for Windows の StartServiceCtrlDispatcher 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2009-4118	2011-09-21 15:50	2009-11-19	Show	GitHub Exploit DB Packet Storm

251685	3.3	注意	シスコシステムズ	-	Cisco Security Monitoring, Analysis and Response System における重要な情報を取得される脆弱性	CWE-310 暗号の問題	CVE-2009-2977	2011-09-21 15:48	2009-08-27	Show	GitHub Exploit DB Packet Storm

251686	5	警告	シスコシステムズ	-	Cisco Adaptive Security Appliances デバイスの IPv6 実装におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-4913	2011-09-20 14:09	2010-06-29	Show	GitHub Exploit DB Packet Storm

251687	10	危険	シスコシステムズ	-	Cisco Adaptive Security Appliances デバイスにおけるサービス運用妨害 (DoS) の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-4912	2011-09-20 14:05	2010-06-29	Show	GitHub Exploit DB Packet Storm

251688	7.8	危険	シスコシステムズ	-	Cisco Adaptive Security Appliances デバイスにおけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2009-4911	2011-09-20 14:03	2010-06-29	Show	GitHub Exploit DB Packet Storm

251689	4.3	警告	シスコシステムズ	-	Cisco Adaptive Security Appliances デバイス上の WebVPN ポータルにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4910	2011-09-20 14:00	2010-06-29	Show	GitHub Exploit DB Packet Storm

251690	3.5	注意	SemanticScuttle	-	SemanticScuttle におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-2672	2011-09-16 12:00	2011-09-16	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
309361	6.1	MEDIUM Network	-	-	The Smart Online Order for Clover plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg & remove_query_arg without appropriate escaping on the URL in al…	CWE-79 Cross-site Scripting	CVE-2024-8787	2024-10-16 11:15	2024-10-16	Show	GitHub Exploit DB Packet Storm

309362	7.3	HIGH Local	microsoft	windows_server_2016 windows_server_2019 windows_server_2022 windows_11_22h2 windows_11_21h2 windows_10_22h2 windows_10_21h2 windows_10_1809 windows_10_1607 windows_11_23h2<…	Summary Microsoft was notified that an elevation of privilege vulnerability exists in Windows Update, potentially enabling an attacker with basic user privileges to reintroduce previously mitigated v…	NVD-CWE-Other	CVE-2024-38202	2024-10-16 11:15	2024-08-8	Show	GitHub Exploit DB Packet Storm

309363	-		apple	safari	Use-after-free vulnerability in WebKit in Apple Safari before 4.0.5 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted XML document.	CWE-399 Resource Management Errors	CVE-2010-0048	2024-10-16 06:35	2010-03-15	Show	GitHub Exploit DB Packet Storm

309364	-		apple	safari	Use-after-free vulnerability in WebKit in Apple Safari before 4.0.5 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via vectors related to "HTML obj…	CWE-399 Resource Management Errors	CVE-2010-0047	2024-10-16 06:35	2010-03-15	Show	GitHub Exploit DB Packet Storm

309365	7.8	HIGH Local	adobe	incopy	InCopy versions 18.5.2, 19.4 and earlier are affected by an Integer Overflow or Wraparound vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation…	CWE-190 Integer Overflow or Wraparound	CVE-2024-41858	2024-10-16 05:51	2024-08-14	Show	GitHub Exploit DB Packet Storm

309366	6.1	MEDIUM Network	lemonldap-ng	lemonldap\	A cross-site scripting (XSS) vulnerability in LemonLDAP::NG before 2.19.3 allows remote attackers to inject arbitrary web script or HTML into the login page via a username if userControl has been set…	CWE-79 Cross-site Scripting	CVE-2024-48933	2024-10-16 03:56	2024-10-10	Show	GitHub Exploit DB Packet Storm

309367	9.8	CRITICAL Network	internet-formation	wp-advanced-search	The WP-Advanced-Search WordPress plugin before 3.3.9.2 does not sanitize and escape the t parameter before using it in a SQL statement, allowing unauthenticated users to perform SQL injection attacks	CWE-89 SQL Injection	CVE-2024-9796	2024-10-16 03:46	2024-10-10	Show	GitHub Exploit DB Packet Storm

309368	5.5	MEDIUM Local	paloaltonetworks	cortex_xdr_agent	A problem with a detection mechanism in the Palo Alto Networks Cortex XDR agent on Windows devices enables a user with Windows non-administrative privileges to disable the agent. This issue may be le…	CWE-754 Improper Check for Unusual or Exceptional Conditions	CVE-2024-9469	2024-10-16 03:38	2024-10-10	Show	GitHub Exploit DB Packet Storm

309369	4.4	MEDIUM Local	paloaltonetworks	cortex_xdr_agent	A problem with a detection mechanism in the Palo Alto Networks Cortex XDR agent on Windows devices enables a user with Windows administrator privileges to disable the agent. This issue may be leverag…	NVD-CWE-Other	CVE-2024-8690	2024-10-16 03:38	2024-09-12	Show	GitHub Exploit DB Packet Storm

309370	7.8	HIGH Local	jtekt	kostac_plc	Stack-based buffer overflow vulnerability exists in Kostac PLC Programming Software (Former name: Koyo PLC Programming Software) Version 1.6.14.0 and earlier. Having a user open a specially crafted p…	CWE-787 Out-of-bounds Write	CVE-2024-47135	2024-10-16 03:21	2024-10-3	Show	GitHub Exploit DB Packet Storm