Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
251721 5 警告 アップル
サイバートラスト株式会社
VMware
サン・マイクロシステムズ
レッドハット		 - Sun Java SE および OpenJDK の Java Runtime Environment (JRE) における ディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-3728 2010-02-23 11:51 2009-11-9 Show GitHub Exploit DB Packet Storm
251722 9.3 危険 マイクロソフト - Microsoft Internet Explorer における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-0248 2010-02-22 12:15 2010-01-21 Show GitHub Exploit DB Packet Storm
251723 9.3 危険 マイクロソフト - Microsoft Internet Explorer における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-0244 2010-02-22 12:15 2010-01-21 Show GitHub Exploit DB Packet Storm
251724 9.3 危険 マイクロソフト - Microsoft Internet Explorer の URL 検証における任意のローカルプログラムを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-0027 2010-02-22 12:15 2010-01-21 Show GitHub Exploit DB Packet Storm
251725 9.3 危険 マイクロソフト - Microsoft Internet Explorer における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-0247 2010-02-22 12:14 2010-01-21 Show GitHub Exploit DB Packet Storm
251726 9.3 危険 マイクロソフト - Microsoft Internet Explorer における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-0246 2010-02-22 12:14 2010-01-21 Show GitHub Exploit DB Packet Storm
251727 9.3 危険 マイクロソフト - Microsoft Internet Explorer における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-0245 2010-02-22 12:13 2010-01-21 Show GitHub Exploit DB Packet Storm
251728 4.3 警告 マイクロソフト - Microsoft Internet Explorer の XSS フィルタにおけるクロスサイトスクリプティングの脆弱性 CWE-DesignError
CVE-2009-4074 2010-02-22 12:13 2009-11-25 Show GitHub Exploit DB Packet Storm
251729 6.6 警告 マイクロソフト - Microsoft Windows の kernel における権限昇格の脆弱性 CWE-20
不適切な入力確認 		CVE-2010-0232 2010-02-22 12:12 2010-01-20 Show GitHub Exploit DB Packet Storm
251730 10 危険 Rockwell Automation - Rockwell Automation Allen-Bradley MicroLogix PLC に複数の脆弱性 CWE-noinfo
情報不足 		CVE-2009-3739 2010-02-19 14:22 2010-01-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 26, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
248341 9.0 CRITICAL
Network 		xwiki pdf_viewer_macro macro-pdfviewer is a PDF Viewer Macro for XWiki using Mozilla pdf.js. The width parameter of the PDF viewer macro isn't properly escaped, allowing XSS for any user who can edit a page. XSS can impact… CWE-79
Cross-site Scripting 		CVE-2024-52300 2024-11-19 02:29 2024-11-14 Show GitHub Exploit DB Packet Storm
248342 7.5 HIGH
Network 		xwiki pdf_viewer_macro macro-pdfviewer is a PDF Viewer Macro for XWiki using Mozilla pdf.js. Any user with view right on XWiki.PDFViewerService can access any attachment stored in the wiki as the "key" that is passed to pr… NVD-CWE-noinfo
CVE-2024-52299 2024-11-19 02:29 2024-11-14 Show GitHub Exploit DB Packet Storm
248343 7.5 HIGH
Network 		xwiki pdf_viewer_macro macro-pdfviewer is a PDF Viewer Macro for XWiki using Mozilla pdf.js. The PDF Viewer macro allows an attacker to view any attachment using the "Delegate my view right" feature as long as the attacker… NVD-CWE-noinfo
CVE-2024-52298 2024-11-19 02:29 2024-11-14 Show GitHub Exploit DB Packet Storm
248344 8.1 HIGH
Network 		mayurik hospital_management_system A vulnerability classified as problematic has been found in SourceCodester Hospital Management System 1.0. This affects an unknown part of the file /vm/patient/delete-account.php. The manipulation of… CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2024-11073 2024-11-19 02:21 2024-11-12 Show GitHub Exploit DB Packet Storm
248345 5.5 MEDIUM
Local 		isellerpal enterprise_resource_management_system An issue in Huizhi enterprise resource management system v.1.0 and before allows a local attacker to obtain sensitive information via the /nssys/common/filehandle. Aspx component NVD-CWE-noinfo
CVE-2024-42677 2024-11-19 02:15 2024-08-15 Show GitHub Exploit DB Packet Storm
248346 - - - A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to conduct a directory traversal attack and obtain read access to … - CVE-2021-1465 2024-11-19 02:11 2024-11-19 Show GitHub Exploit DB Packet Storm
248347 - - - A vulnerability in the CLI of Cisco SD-WAN vManage Software could allow an authenticated, local attacker to elevate privileges on an affected system. To exploit this vulnerability, an attacker w… CWE-20
 Improper Input Validation  		CVE-2021-1462 2024-11-19 02:11 2024-11-19 Show GitHub Exploit DB Packet Storm
248348 6.1 MEDIUM
Network 		- - A vulnerability in the web services interface of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote at… CWE-79
Cross-site Scripting 		CVE-2021-1444 2024-11-19 02:11 2024-11-19 Show GitHub Exploit DB Packet Storm
248349 4.3 MEDIUM
Network 		- - A vulnerability in the web-based management interface of Cisco AsyncOS Software for Cisco Content Security Management Appliance (SMA) could allow an authenticated, remote attacker to access… CWE-201
 Insertion of Sensitive Information Into Sent Data 		CVE-2021-1425 2024-11-19 02:11 2024-11-19 Show GitHub Exploit DB Packet Storm
248350 4.3 MEDIUM
Network 		- - A vulnerability in the distribution list feature of Cisco Webex Meetings could allow an authenticated, remote attacker to modify a distribution list that belongs to another user of their organiz… CWE-284
Improper Access Control 		CVE-2021-1410 2024-11-19 02:11 2024-11-19 Show GitHub Exploit DB Packet Storm