Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 5, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252101 9.3 危険 レッドハット
リアルネットワークス		 - RealNetworks RealPlayer の ImageMap におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-4392 2011-01-12 15:21 2010-12-10 Show GitHub Exploit DB Packet Storm
252102 9.3 危険 リアルネットワークス - RealNetworks RealPlayer の RMX ヘッダーにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-4391 2011-01-12 15:18 2010-12-10 Show GitHub Exploit DB Packet Storm
252103 9.3 危険 リアルネットワークス - RealNetworks RealPlayer の IVR ファイルヘッダーにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-4390 2011-01-12 15:17 2010-12-10 Show GitHub Exploit DB Packet Storm
252104 7.5 危険 サイバートラスト株式会社
Apache Software Foundation
レッドハット		 - Apache HTTP Server の mod-auth-mysql モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2384 2011-01-12 15:03 2009-01-22 Show GitHub Exploit DB Packet Storm
252105 6 警告 IBM - IBM WebSphere Application Server の管理コンソールにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2010-0785 2011-01-12 15:01 2010-11-9 Show GitHub Exploit DB Packet Storm
252106 4.3 警告 IBM - IBM WebSphere Application Server の管理コンソールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-0783 2011-01-12 15:00 2010-11-9 Show GitHub Exploit DB Packet Storm
252107 5 警告 アップル
サイバートラスト株式会社
IPsec-Tools
レッドハット		 - Ipsec-tools のパケット処理におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2009-1574 2011-01-11 14:39 2009-05-6 Show GitHub Exploit DB Packet Storm
252108 5 警告 アップル
サイバートラスト株式会社
Net-SNMP
サン・マイクロシステムズ
レッドハット		 - net-snmp の netsnmp_create_subtree_cache 関数における整数オーバーフローの脆弱性 CWE-20
CWE-Other
CVE-2008-4309 2011-01-11 14:37 2008-10-31 Show GitHub Exploit DB Packet Storm
252109 4.3 警告 リアルネットワークス - RealNetworks RealPlayer の HandleAction メソッドにおけるクロスゾーンスクリプティングの脆弱性 CWE-20
不適切な入力確認 		CVE-2010-4396 2011-01-11 14:32 2010-12-10 Show GitHub Exploit DB Packet Storm
252110 9.3 危険 リアルネットワークス - RealNetworks RealPlayer の cook コーデックにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-4389 2011-01-11 14:31 2010-12-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 5, 2026, 4:51 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
308731 8.8 HIGH
Network 		oretnom23 employee_and_visitor_gate_pass_logging_system A vulnerability was found in SourceCodester Employee and Visitor Gate Pass Logging System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /admin/maintenance… CWE-89
SQL Injection 		CVE-2024-9315 2024-10-1 22:33 2024-09-29 Show GitHub Exploit DB Packet Storm
308732 8.8 HIGH
Network 		oretnom23 online_eyewear_shop A vulnerability classified as critical was found in SourceCodester Online Eyewear Shop 1.0. Affected by this vulnerability is the function delete_category of the file /classes/Master.php?f=delete_cat… CWE-89
SQL Injection 		CVE-2024-9317 2024-10-1 22:32 2024-09-29 Show GitHub Exploit DB Packet Storm
308733 9.8 CRITICAL
Network 		mayurik advocate_office_management_system A vulnerability, which was classified as critical, has been found in SourceCodester Advocate Office Management System 1.0. Affected by this issue is some unknown functionality of the file /control/ac… CWE-89
SQL Injection 		CVE-2024-9318 2024-10-1 22:31 2024-09-29 Show GitHub Exploit DB Packet Storm
308734 8.8 HIGH
Network 		rems online_timesheet_app A vulnerability, which was classified as critical, was found in SourceCodester Online Timesheet App 1.0. This affects an unknown part of the file /endpoint/delete-timesheet.php. The manipulation of t… CWE-89
SQL Injection 		CVE-2024-9319 2024-10-1 22:29 2024-09-29 Show GitHub Exploit DB Packet Storm
308735 5.3 MEDIUM
Network 		oretnom23 railway_reservation_system A vulnerability was found in SourceCodester Online Railway Reservation System 1.0 and classified as critical. This issue affects some unknown processing of the file /admin/inquiries/view_details.php.… NVD-CWE-noinfo
CVE-2024-9321 2024-10-1 22:28 2024-09-29 Show GitHub Exploit DB Packet Storm
308736 5.4 MEDIUM
Network 		rems online_timesheet_app A vulnerability has been found in SourceCodester Online Timesheet App 1.0 and classified as problematic. This vulnerability affects unknown code of the file /endpoint/add-timesheet.php of the compone… CWE-79
Cross-site Scripting 		CVE-2024-9320 2024-10-1 22:28 2024-09-29 Show GitHub Exploit DB Packet Storm
308737 2.9 LOW
Physics 		opensc_project
redhat 		opensc
enterprise_linux 		A heap-based buffer overflow vulnerability was found in the libopensc OpenPGP driver. A crafted USB device or smart card with malicious responses to the APDUs during the card enrollment process using… CWE-787
 Out-of-bounds Write 		CVE-2024-8443 2024-10-1 22:15 2024-09-10 Show GitHub Exploit DB Packet Storm
308738 5.4 MEDIUM
Network 		mayurik free_and_open_source_inventory_management_system A vulnerability was found in SourceCodester Inventory Management System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /app/action/ad… CWE-79
Cross-site Scripting 		CVE-2024-9323 2024-10-1 21:55 2024-09-29 Show GitHub Exploit DB Packet Storm
308739 9.8 CRITICAL
Network 		endress echo_curve_viewer
fieldcare_sfe500_package
field_xpert_smt79_firmware
field_xpert_smt77_firmware
field_xpert_smt70_firmware
field_xpert_smt50_firmware 		An unauthenticated remote attacker can run malicious c# code included in curve files and execute commands in the users context. CWE-94
Code Injection 		CVE-2024-6596 2024-10-1 21:26 2024-09-10 Show GitHub Exploit DB Packet Storm
308740 9.8 CRITICAL
Network 		openfga openfga OpenFGA is an authorization/permission engine. OpenFGA v1.5.7 and v1.5.8 are vulnerable to authorization bypass when calling Check API with a model that uses `but not` and `from` expressions and a us… CWE-863
 Incorrect Authorization 		CVE-2024-42473 2024-10-1 21:21 2024-08-12 Show GitHub Exploit DB Packet Storm