Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 6, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251921	9.4	危険	オラクル	-	Oracle Fusion Middleware の Oracle Document Capture コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-3599	2011-02-10 11:44	2011-01-18	Show	GitHub Exploit DB Packet Storm

251922	7.5	危険	オラクル	-	Oracle Audit Vault の Audit Vault コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-4449	2011-02-10 11:36	2011-01-18	Show	GitHub Exploit DB Packet Storm

251923	6.4	警告	オラクル	-	Oracle Secure Backup の mod_ssl コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-3596	2011-02-10 11:30	2011-01-18	Show	GitHub Exploit DB Packet Storm

251924	3.6	注意	オラクル	-	Oracle Database Server の Database Vault コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-4420	2011-02-9 16:44	2011-01-18	Show	GitHub Exploit DB Packet Storm

251925	4.3	警告	オラクル	-	Oracle Database Server の Scheduler Agent コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-4413	2011-02-9 16:43	2011-01-18	Show	GitHub Exploit DB Packet Storm

251926	4.9	警告	オラクル	-	Oracle Database Server の Oracle Spatial コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-3590	2011-02-9 16:43	2011-01-18	Show	GitHub Exploit DB Packet Storm

251927	6.9	警告	オラクル	-	Windows 上で稼働する Oracle Database Server の Cluster Verify Utility コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-4423	2011-02-9 16:42	2011-01-18	Show	GitHub Exploit DB Packet Storm

251928	6.8	警告	オラクル	-	Oracle Database Server の Database Vault コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-4421	2011-02-9 16:42	2011-01-18	Show	GitHub Exploit DB Packet Storm

251929	7.5	危険	オラクル	-	複数の Oracle 製品の Client System Analyzer コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-3600	2011-02-9 16:41	2011-01-18	Show	GitHub Exploit DB Packet Storm

251930	7.2	危険	マイクロソフト	-	複数の Microsoft 製品の kernel-mode ドライバにおける権限を取得される脆弱性	CWE-Other その他	CVE-2010-2743	2011-02-9 16:39	2010-10-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
307451	6.5	MEDIUM Adjacent	gotenna	gotenna_pro	In the goTenna Pro App, the encryption keys are stored along with a static IV on the End User Device (EUD). This allows for complete decryption of keys stored on the EUD if physically compromised. …	CWE-922 Insecure Storage of Sensitive Information	CVE-2024-47122	2024-10-18 03:15	2024-09-27	Show	GitHub Exploit DB Packet Storm

307452	4.3	MEDIUM Adjacent	gotenna	gotenna	The goTenna Pro ATAK Plugin's default settings are to share Automatic Position, Location, and Information (PLI) updates every 60 seconds once the plugin is active and goTenna is connected. Users th…	NVD-CWE-Other	CVE-2024-43814	2024-10-18 03:15	2024-09-27	Show	GitHub Exploit DB Packet Storm

307453	5.4	MEDIUM Network	cacti	cacti	Cacti is an open source performance and fault management framework. The `fileurl` parameter is not properly sanitized when saving external links in `links.php` . Morever, the said fileurl is placed i…	CWE-79 Cross-site Scripting	CVE-2024-43362	2024-10-18 03:14	2024-10-8	Show	GitHub Exploit DB Packet Storm

307454	9.8	CRITICAL Network	oretnom23	online_veterinary_appointment_system	A vulnerability classified as critical has been found in SourceCodester Online Veterinary Appointment System 1.0. Affected is an unknown function of the file /admin/categories/manage_category.php. Th…	CWE-89 SQL Injection	CVE-2024-9818	2024-10-18 03:13	2024-10-11	Show	GitHub Exploit DB Packet Storm

307455	8.8	HIGH Network	blood_bank_system_project	blood_bank_system	A vulnerability was found in code-projects Blood Bank System 1.0. It has been classified as critical. This affects an unknown part of the file /update.php. The manipulation of the argument name leads…	CWE-89 SQL Injection	CVE-2024-9817	2024-10-18 03:12	2024-10-11	Show	GitHub Exploit DB Packet Storm

307456	9.8	CRITICAL Network	taismartfactory	qplant_sf	SQL injection vulnerability in TAI Smart Factory's QPLANT SF version 1.0. Exploitation of this vulnerability could allow a remote attacker to retrieve all database information by sending a specially …	CWE-89 SQL Injection	CVE-2024-9925	2024-10-18 03:09	2024-10-15	Show	GitHub Exploit DB Packet Storm

307457	8.2	HIGH Network	cacti	cacti	Cacti is an open source performance and fault management framework. The `title` parameter is not properly sanitized when saving external links in links.php . Morever, the said title parameter is stor…	CWE-79 Cross-site Scripting	CVE-2024-43364	2024-10-18 03:09	2024-10-8	Show	GitHub Exploit DB Packet Storm

307458	8.8	HIGH Network	formosasoft	ee-class	The ee-class from FormosaSoft does not properly validate a specific page parameter, allowing remote attackers with regular privileges to upload a malicious PHP file first and then exploit this vulner…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2024-9981	2024-10-18 03:05	2024-10-15	Show	GitHub Exploit DB Packet Storm

307459	8.8	HIGH Network	formosasoft	ee-class	The ee-class from FormosaSoft does not properly validate a specific page parameter, allowing remote attackers with regular privileges to inject arbitrary SQL commands to read, modify and delete datab…	CWE-89 SQL Injection	CVE-2024-9980	2024-10-18 03:03	2024-10-15	Show	GitHub Exploit DB Packet Storm

307460	7.2	HIGH Network	cacti	cacti	Cacti is an open source performance and fault management framework. An admin user can create a device with a malicious hostname containing php code and repeat the installation process (completing onl…	CWE-94 Code Injection	CVE-2024-43363	2024-10-18 02:58	2024-10-8	Show	GitHub Exploit DB Packet Storm