Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 6, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251921	9.4	危険	オラクル	-	Oracle Fusion Middleware の Oracle Document Capture コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-3599	2011-02-10 11:44	2011-01-18	Show	GitHub Exploit DB Packet Storm

251922	7.5	危険	オラクル	-	Oracle Audit Vault の Audit Vault コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-4449	2011-02-10 11:36	2011-01-18	Show	GitHub Exploit DB Packet Storm

251923	6.4	警告	オラクル	-	Oracle Secure Backup の mod_ssl コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-3596	2011-02-10 11:30	2011-01-18	Show	GitHub Exploit DB Packet Storm

251924	3.6	注意	オラクル	-	Oracle Database Server の Database Vault コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-4420	2011-02-9 16:44	2011-01-18	Show	GitHub Exploit DB Packet Storm

251925	4.3	警告	オラクル	-	Oracle Database Server の Scheduler Agent コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-4413	2011-02-9 16:43	2011-01-18	Show	GitHub Exploit DB Packet Storm

251926	4.9	警告	オラクル	-	Oracle Database Server の Oracle Spatial コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-3590	2011-02-9 16:43	2011-01-18	Show	GitHub Exploit DB Packet Storm

251927	6.9	警告	オラクル	-	Windows 上で稼働する Oracle Database Server の Cluster Verify Utility コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-4423	2011-02-9 16:42	2011-01-18	Show	GitHub Exploit DB Packet Storm

251928	6.8	警告	オラクル	-	Oracle Database Server の Database Vault コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-4421	2011-02-9 16:42	2011-01-18	Show	GitHub Exploit DB Packet Storm

251929	7.5	危険	オラクル	-	複数の Oracle 製品の Client System Analyzer コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-3600	2011-02-9 16:41	2011-01-18	Show	GitHub Exploit DB Packet Storm

251930	7.2	危険	マイクロソフト	-	複数の Microsoft 製品の kernel-mode ドライバにおける権限を取得される脆弱性	CWE-Other その他	CVE-2010-2743	2011-02-9 16:39	2010-10-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
304521	-		-	-	SQL injection in Ivanti Endpoint Manager before 2024 November Security Update or 2022 SU6 November Security Update allows a remote authenticated attacker with admin privileges to achieve remote code …	-	CVE-2024-32839	2024-11-13 11:15	2024-11-13	Show	GitHub Exploit DB Packet Storm

304522	4.3	MEDIUM Network	-	-	The Buy one click WooCommerce plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the buy_one_click_import_options AJAX action in all versions…	CWE-862 Missing Authorization	CVE-2024-10854	2024-11-13 11:15	2024-11-13	Show	GitHub Exploit DB Packet Storm

304523	4.3	MEDIUM Network	-	-	The Buy one click WooCommerce plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the removeorder AJAX action in all versions up to, and inclu…	CWE-862 Missing Authorization	CVE-2024-10853	2024-11-13 11:15	2024-11-13	Show	GitHub Exploit DB Packet Storm

304524	4.3	MEDIUM Network	-	-	The Buy one click WooCommerce plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the buy_one_click_export_options AJAX action in all versions up to…	-	CVE-2024-10852	2024-11-13 11:15	2024-11-13	Show	GitHub Exploit DB Packet Storm

304525	6.5	MEDIUM Network	-	-	The Styler for Ninja Forms plugin for WordPress is vulnerable to unauthorized modification of data that can lead to a denial of service due to a missing capability check on the deactivate_license fun…	CWE-862 Missing Authorization	CVE-2024-10717	2024-11-13 11:15	2024-11-13	Show	GitHub Exploit DB Packet Storm

304526	6.1	MEDIUM Network	-	-	The WP-Strava plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 2.12.1 due to insufficient input sanitization and output escap…	CWE-80 Basic XSS	CVE-2024-10038	2024-11-13 11:15	2024-11-13	Show	GitHub Exploit DB Packet Storm

304527	8.8	HIGH Network	meowapps	photo_engine	Missing Authorization vulnerability in Jordy Meow Photo Engine allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Photo Engine: from n/a through 6.4.0.	CWE-862 Missing Authorization	CVE-2024-43332	2024-11-13 10:25	2024-11-2	Show	GitHub Exploit DB Packet Storm

304528	8.8	HIGH Network	gabelivan	asset_cleanup	Missing Authorization vulnerability in Gabe Livan Asset CleanUp: Page Speed Booster allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Asset CleanUp: Page Spee…	CWE-862 Missing Authorization	CVE-2024-43314	2024-11-13 10:25	2024-11-2	Show	GitHub Exploit DB Packet Storm

304529	9.8	CRITICAL Network	arraytics	wp_timetics	Missing Authorization vulnerability in Arraytics Timetics allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Timetics: from n/a through 1.0.23.	CWE-862 Missing Authorization	CVE-2024-43923	2024-11-13 10:24	2024-11-2	Show	GitHub Exploit DB Packet Storm

304530	8.8	HIGH Network	beardev	joomsport	Missing Authorization vulnerability in BearDev JoomSport allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects JoomSport: from n/a through 5.3.0.	CWE-862 Missing Authorization	CVE-2024-43355	2024-11-13 10:24	2024-11-2	Show	GitHub Exploit DB Packet Storm