Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 4, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252261 6.4 警告 ヒューレット・パッカード
レッドハット
日立
オラクル		 - Oracle Sun Products Suite の Oracle Communications Messaging Server コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-3564 2010-12-16 15:22 2010-10-12 Show GitHub Exploit DB Packet Storm
252262 9.3 危険 アップル - Apple Safari の WebKit における任意のコードを実行される脆弱性 CWE-DesignError
CVE-2010-3817 2010-12-16 14:18 2010-11-22 Show GitHub Exploit DB Packet Storm
252263 9.3 危険 アップル - Apple Safari の WebKit における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2010-3816 2010-12-16 14:18 2010-11-22 Show GitHub Exploit DB Packet Storm
252264 9.3 危険 アップル - Apple Safari の WebKit における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2010-3811 2010-12-16 14:16 2010-11-22 Show GitHub Exploit DB Packet Storm
252265 5 警告 The PHP Group
サイバートラスト株式会社
レッドハット		 - PHP のセッションシリアライザにおける任意のセッション変数に変更される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-3065 2010-12-15 15:28 2010-05-31 Show GitHub Exploit DB Packet Storm
252266 5 警告 日立 - JP1/NETM 製品 におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		- 2010-12-15 15:27 2010-07-30 Show GitHub Exploit DB Packet Storm
252267 5 警告 The PHP Group
サイバートラスト株式会社
ターボリナックス
レッドハット		 - PHP におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2010-1917 2010-12-15 15:27 2010-05-11 Show GitHub Exploit DB Packet Storm
252268 5 警告 The PHP Group
アップル
ターボリナックス
サイバートラスト株式会社
レッドハット		 - PHP の xmlrpc 拡張におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2010-0397 2010-12-15 15:27 2010-03-16 Show GitHub Exploit DB Packet Storm
252269 6.4 警告 The PHP Group
サイバートラスト株式会社
レッドハット		 - PHP の Linear Congruential Generator における値を推測される脆弱性 CWE-310
暗号の問題 		CVE-2010-1128 2010-12-15 15:26 2010-03-26 Show GitHub Exploit DB Packet Storm
252270 6.9 警告 GNU Project
日本電気
ターボリナックス
サイバートラスト株式会社
レッドハット		 - GNU Libtool の libltdl における権限昇格の脆弱性 CWE-DesignError
CVE-2009-3736 2010-12-15 15:26 2009-11-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 4, 2026, 4:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
304291 - - - A vulnerability was found in Digistar AG-30 Plus 2.6b. It has been classified as problematic. Affected is an unknown function of the component Login Page. The manipulation leads to improper restricti… CWE-307
CWE-799
mproper Restriction of Excessive Authentication Attempts
 Improper Control of Interaction Frequency 		CVE-2024-11126 2024-11-13 00:48 2024-11-13 Show GitHub Exploit DB Packet Storm
304292 6.3 MEDIUM
Network 		- - A vulnerability has been identified in SINEC INS (All versions < V1.0 SP2 Update 3). The affected application does not properly validate authorization of a user to query the "/api/sftp/users" endpoin… - CVE-2024-46894 2024-11-13 00:35 2024-11-12 Show GitHub Exploit DB Packet Storm
304293 5.3 MEDIUM
Network 		- - A vulnerability has been identified in SINEC INS (All versions < V1.0 SP2 Update 3). The affected application does not properly restrict the size of generated log files. This could allow an unauthent… CWE-400
 Uncontrolled Resource Consumption 		CVE-2024-46891 2024-11-13 00:35 2024-11-12 Show GitHub Exploit DB Packet Storm
304294 - - - The RSS Feed Widget WordPress plugin before 3.0.0 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could al… - CVE-2024-9836 2024-11-13 00:35 2024-11-12 Show GitHub Exploit DB Packet Storm
304295 - - - The RSS Feed Widget WordPress plugin before 3.0.1 does not escape the $_SERVER['REQUEST_URI'] parameter before outputting it back in an attribute, which could lead to Reflected Cross-Site Scripting i… - CVE-2024-9835 2024-11-13 00:35 2024-11-12 Show GitHub Exploit DB Packet Storm
304296 - - - A flaw was found in moodle. H5P error messages require additional sanitizing to prevent a reflected cross-site scripting (XSS) risk. - CVE-2024-43439 2024-11-13 00:35 2024-11-12 Show GitHub Exploit DB Packet Storm
304297 - - - A flaw was found in moodle. Insufficient capability checks make it possible for users with access to restore glossaries in courses to restore them into the global site glossary. - CVE-2024-43435 2024-11-13 00:35 2024-11-11 Show GitHub Exploit DB Packet Storm
304298 - - - A flaw was found in moodle. Matrix room membership and power levels are incorrectly applied and revoked for suspended Moodle users. - CVE-2024-43433 2024-11-13 00:35 2024-11-11 Show GitHub Exploit DB Packet Storm
304299 - - - A flaw was found in moodle. External API access to Quiz can override contained insufficient access control. - CVE-2024-43430 2024-11-13 00:35 2024-11-11 Show GitHub Exploit DB Packet Storm
304300 - - - A flaw was found in moodle. When creating an export of site administration presets, some sensitive secrets and keys are not being excluded from the export, which could result in them unintentionally … - CVE-2024-43427 2024-11-13 00:35 2024-11-11 Show GitHub Exploit DB Packet Storm