Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 7, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252231 9.3 危険 アップル
アドビシステムズ
レッドハット
ターボリナックス
オラクル		 - Adobe Flash に脆弱性 CWE-119
バッファエラー 		CVE-2010-3654 2011-02-25 13:50 2010-10-29 Show GitHub Exploit DB Packet Storm
252232 4 警告 サイバートラスト株式会社
MySQL AB
ターボリナックス
レッドハット		 - MySQL の sql/spatial.cc におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2010-3840 2011-02-25 13:48 2010-09-10 Show GitHub Exploit DB Packet Storm
252233 7.8 危険 シスコシステムズ - Cisco IOS の H.323 実装の gk_circuit_info_do_in_acf 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2009-5039 2011-02-24 16:39 2011-01-7 Show GitHub Exploit DB Packet Storm
252234 7.8 危険 シスコシステムズ - Cisco IOS におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2009-5038 2011-02-24 16:37 2011-01-7 Show GitHub Exploit DB Packet Storm
252235 7.8 危険 シスコシステムズ - Cisco IOS の Neighbor Discovery プロトコル実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2010-4671 2011-02-24 16:35 2011-01-7 Show GitHub Exploit DB Packet Storm
252236 7.8 危険 シスコシステムズ - Cisco Adaptive Security Appliances デバイスにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2010-4682 2011-02-24 16:33 2011-01-7 Show GitHub Exploit DB Packet Storm
252237 7.5 危険 シスコシステムズ - Cisco Adaptive Security Appliances デバイスにおける SMTP 検査機能を回避される脆弱性 CWE-noinfo
情報不足 		CVE-2010-4681 2011-02-24 16:30 2011-01-7 Show GitHub Exploit DB Packet Storm
252238 9 危険 シスコシステムズ - Cisco Adaptive Security Appliances デバイスの WebVPN 実装におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-4680 2011-02-24 16:28 2011-01-7 Show GitHub Exploit DB Packet Storm
252239 7.8 危険 シスコシステムズ - Cisco Adaptive Security Appliances デバイスにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2010-4679 2011-02-24 16:26 2011-01-7 Show GitHub Exploit DB Packet Storm
252240 7.5 危険 シスコシステムズ - Cisco Adaptive Security Appliances デバイスにおけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-4678 2011-02-24 16:24 2011-01-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
303601 4.3 MEDIUM
Network 		themify builder The Themify Builder plugin for WordPress is vulnerable to unauthorized post duplication due to missing checks on the duplicate_page_ajaxify function in all versions up to, and including, 7.6.1. This … CWE-863
 Incorrect Authorization 		CVE-2024-7836 2024-11-21 00:09 2024-08-22 Show GitHub Exploit DB Packet Storm
303602 9.6 CRITICAL
Network 		github cli The GitHub CLI version 2.6.1 and earlier are vulnerable to remote code execution through a malicious codespace SSH server when using `gh codespace ssh` or `gh codespace logs` commands. This has been … CWE-77
Command Injection 		CVE-2024-52308 2024-11-21 00:07 2024-11-15 Show GitHub Exploit DB Packet Storm
303603 5.4 MEDIUM
Network 		librenms librenms LibreNMS is an open-source, PHP/MySQL/SNMP-based network monitoring system. A Stored Cross-Site Scripting (XSS) vulnerability in the API-Access page allows authenticated users to inject arbitrary Jav… CWE-79
Cross-site Scripting 		CVE-2024-49754 2024-11-21 00:02 2024-11-16 Show GitHub Exploit DB Packet Storm
303604 6.1 MEDIUM
Network 		cleancoder fitnesse Cross-site scripting vulnerability exists in FitNesse releases prior to 20241026. If this vulnerability is exploited, an arbitrary script may be executed on the web browser of the user who is using t… CWE-79
Cross-site Scripting 		CVE-2024-39610 2024-11-21 00:02 2024-11-15 Show GitHub Exploit DB Packet Storm
303605 6.1 MEDIUM
Network 		wpplugins hide_my_wp_ghost The Hide My WP Ghost – Security & Firewall plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the URL in all versions up to, and including, 5.3.01 due to insufficient input sani… CWE-79
Cross-site Scripting 		CVE-2024-10825 2024-11-21 00:01 2024-11-15 Show GitHub Exploit DB Packet Storm
303606 4.3 MEDIUM
Network 		moodle moodle A vulnerability was found in Moodle. Additional checks are required to ensure users can only edit or delete RSS feeds that they have permission to modify. CWE-863
 Incorrect Authorization 		CVE-2024-48897 2024-11-20 23:48 2024-11-18 Show GitHub Exploit DB Packet Storm
303607 4.3 MEDIUM
Network 		moodle moodle A vulnerability was found in Moodle. It is possible for users with the "send message" capability to view other users' names that they may not otherwise have access to via an error message in Messagin… CWE-209
Information Exposure Through an Error Message 		CVE-2024-48896 2024-11-20 23:47 2024-11-18 Show GitHub Exploit DB Packet Storm
303608 4.3 MEDIUM
Network 		moodle moodle A vulnerability was found in Moodle. Users with access to delete audiences from reports could delete audiences from other reports that they do not have permission to delete from. CWE-862
 Missing Authorization 		CVE-2024-48898 2024-11-20 23:46 2024-11-18 Show GitHub Exploit DB Packet Storm
303609 4.3 MEDIUM
Network 		moodle moodle A vulnerability was found in Moodle. Additional checks are required to ensure users can only access the schedule of a report if they have permission to edit that report. CWE-863
 Incorrect Authorization 		CVE-2024-48901 2024-11-20 23:45 2024-11-18 Show GitHub Exploit DB Packet Storm
303610 9.8 CRITICAL
Network 		really-simple-plugins really_simple_security The Really Simple Security (Free, Pro, and Pro Multisite) plugins for WordPress are vulnerable to authentication bypass in versions 9.0.0 to 9.1.1.1. This is due to improper user check error handling… CWE-306
Missing Authentication for Critical Function 		CVE-2024-10924 2024-11-20 23:44 2024-11-15 Show GitHub Exploit DB Packet Storm