Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 6, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
251971 9.3 危険 アップル
アドビシステムズ
レッドハット
オラクル		 - Adobe Flash Player における任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2010-3645 2011-02-2 15:05 2010-11-4 Show GitHub Exploit DB Packet Storm
251972 10 危険 アドバンテック株式会社 - Advantech Studio Test Web Server にバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-0488 2011-02-2 15:00 2011-01-13 Show GitHub Exploit DB Packet Storm
251973 10 危険 WellinTech - WellinTech KingView 6.53 にヒープオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-0406 2011-02-2 14:59 2011-01-13 Show GitHub Exploit DB Packet Storm
251974 6.8 警告 PNG Development Group - libpng 1.5.0 の png_set_rgb_to_gray() 関数に脆弱性 CWE-189
数値処理の問題 		CVE-2011-0408 2011-02-2 14:59 2011-01-12 Show GitHub Exploit DB Packet Storm
251975 5 警告 PolyVision - PolyVision RoomWizard に脆弱性 CWE-200
情報漏えい 		CVE-2010-0214 2011-02-2 14:59 2011-01-11 Show GitHub Exploit DB Packet Storm
251976 5.1 警告 Opera Software ASA - Opera における実行ファイル読み込みに関する脆弱性 CWE-Other
その他 		CVE-2011-0450 2011-02-2 14:02 2011-02-2 Show GitHub Exploit DB Packet Storm
251977 4.3 警告 株式会社ロックオン - EC-CUBE におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-0451 2011-02-2 14:01 2011-02-2 Show GitHub Exploit DB Packet Storm
251978 9.3 危険 アップル
アドビシステムズ
レッドハット
オラクル		 - Adobe Flash Player における任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2010-3644 2011-02-1 16:29 2010-11-4 Show GitHub Exploit DB Packet Storm
251979 9.3 危険 アップル
アドビシステムズ
レッドハット
オラクル		 - Adobe Flash Player における任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2010-3643 2011-02-1 16:28 2010-11-4 Show GitHub Exploit DB Packet Storm
251980 9.3 危険 アップル
アドビシステムズ
レッドハット
オラクル		 - Adobe Flash Player における任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2010-3642 2011-02-1 16:27 2010-11-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
305891 - - - YesWiki is a wiki system written in PHP. Prior to 4.4.5, the use of a weak cryptographic algorithm and a hard-coded salt to hash the password reset key allows it to be recovered and used to reset the… CWE-327
 Use of a Broken or Risky Cryptographic Algorithm 		CVE-2024-51478 2024-11-1 21:57 2024-11-1 Show GitHub Exploit DB Packet Storm
305892 - - - Cross Site Scripting vulnerability in online diagnostic lab management system using php v.1.0 allows a remote attacker to execute arbitrary code via the Test Name parameter on the diagnostic/add-test… - CVE-2024-51430 2024-11-1 21:57 2024-11-1 Show GitHub Exploit DB Packet Storm
305893 - - - Vault Community and Vault Enterprise (“Vault”) clusters using Vault’s Integrated Storage backend are vulnerable to a denial-of-service (DoS) attack through memory exhaustion through a Raft cluster jo… - CVE-2024-8185 2024-11-1 21:57 2024-11-1 Show GitHub Exploit DB Packet Storm
305894 - - - DrayTek Vigor3900 1.5.1.3 allows attackers to inject malicious commands into mainfunction.cgi and execute arbitrary commands by calling the acme_process function. - CVE-2024-51260 2024-11-1 21:57 2024-11-1 Show GitHub Exploit DB Packet Storm
305895 - - - DrayTek Vigor3900 1.5.1.3 allows attackers to inject malicious commands into mainfunction.cgi and execute arbitrary commands by calling the ruequest_certificate function. - CVE-2024-51255 2024-11-1 21:57 2024-11-1 Show GitHub Exploit DB Packet Storm
305896 - - - gnark is a fast zk-SNARK library that offers a high-level API to design circuits. In gnark 0.11.0 and earlier, deserialization of Groth16 verification keys allocate excessive memory, consuming a lot … - CVE-2024-50354 2024-11-1 21:57 2024-11-1 Show GitHub Exploit DB Packet Storm
305897 - - - Nix is a package manager for Linux and other Unix systems. On macOS, built-in builders (such as `builtin:fetchurl`, exposed to users with `import <nix/fetchurl.nix>`) were not executed in the macOS s… CWE-693
 Protection Mechanism Failure 		CVE-2024-51481 2024-11-1 21:57 2024-11-1 Show GitHub Exploit DB Packet Storm
305898 - - - DOMPurify is a DOM-only, super-fast, uber-tolerant XSS sanitizer for HTML, MathML and SVG. DOMPurify was vulnerable to prototype pollution. This vulnerability is fixed in 2.4.2. CWE-1321
 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') 		CVE-2024-48910 2024-11-1 21:57 2024-11-1 Show GitHub Exploit DB Packet Storm
305899 - - - DrayTek Vigor3900 1.5.1.3 allows attackers to inject malicious commands into mainfunction.cgi and execute arbitrary commands by calling the setup_cacertificate function. - CVE-2024-51259 2024-11-1 21:57 2024-10-31 Show GitHub Exploit DB Packet Storm
305900 - - - DrayTek Vigor3900 1.5.1.3 allows attackers to inject malicious commands into mainfunction.cgi and execute arbitrary commands by calling the sign_cacertificate function. - CVE-2024-51254 2024-11-1 21:57 2024-10-31 Show GitHub Exploit DB Packet Storm