Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 20, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252601	4.3	警告	IBM	-	IBM Lotus Domino におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-3576	2011-11-4 11:34	2011-09-19	Show	GitHub Exploit DB Packet Storm

252602	9	危険	IBM	-	IBM Lotus Domino の NSFComputeEvaluateExt 関数におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-3575	2011-11-4 11:34	2011-09-19	Show	GitHub Exploit DB Packet Storm

252603	5.1	警告	Google	-	Google Chrome におけるサービス運用妨害 (DoS) の脆弱性	CWE-362 競合状態	CVE-2011-3878	2011-11-2 16:33	2011-10-25	Show	GitHub Exploit DB Packet Storm

252604	7.5	危険	Google	-	Google Chrome におけるサービス運用妨害 (DoS) の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-3891	2011-11-2 16:29	2011-10-25	Show	GitHub Exploit DB Packet Storm

252605	7.5	危険	Google	-	Google Chrome におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-3890	2011-11-2 16:28	2011-10-25	Show	GitHub Exploit DB Packet Storm

252606	7.5	危険	Google	-	Google Chrome の Web Audio の実装におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-3889	2011-11-2 16:27	2011-10-25	Show	GitHub Exploit DB Packet Storm

252607	6.8	警告	Google	-	Google Chrome にて使用される Google V8 におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2011-3886	2011-11-2 16:24	2011-10-25	Show	GitHub Exploit DB Packet Storm

252608	6.8	警告	Google	-	Google Chrome におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2011-3884	2011-11-2 16:20	2011-10-25	Show	GitHub Exploit DB Packet Storm

252609	7.5	危険	Google	-	Google Chrome におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-3883	2011-11-2 16:19	2011-10-25	Show	GitHub Exploit DB Packet Storm

252610	7.5	危険	Google	-	Google Chrome におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-3882	2011-11-2 16:18	2011-10-25	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 20, 2026, 4:14 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
310941	6.5	MEDIUM Adjacent	gotenna	gotenna_pro	The goTenna Pro App does not encrypt callsigns in messages. It is recommended to not use sensitive information in callsigns when using this and previous versions of the app and update your app to t…	CWE-319 Cleartext Transmission of Sensitive Information	CVE-2024-47124	2024-10-18 03:15	2024-09-27	Show	GitHub Exploit DB Packet Storm

310942	6.5	MEDIUM Adjacent	gotenna	gotenna_pro	In the goTenna Pro App, the encryption keys are stored along with a static IV on the End User Device (EUD). This allows for complete decryption of keys stored on the EUD if physically compromised. …	CWE-922 Insecure Storage of Sensitive Information	CVE-2024-47122	2024-10-18 03:15	2024-09-27	Show	GitHub Exploit DB Packet Storm

310943	4.3	MEDIUM Adjacent	gotenna	gotenna	The goTenna Pro ATAK Plugin's default settings are to share Automatic Position, Location, and Information (PLI) updates every 60 seconds once the plugin is active and goTenna is connected. Users th…	NVD-CWE-Other	CVE-2024-43814	2024-10-18 03:15	2024-09-27	Show	GitHub Exploit DB Packet Storm

310944	5.4	MEDIUM Network	cacti	cacti	Cacti is an open source performance and fault management framework. The `fileurl` parameter is not properly sanitized when saving external links in `links.php` . Morever, the said fileurl is placed i…	CWE-79 Cross-site Scripting	CVE-2024-43362	2024-10-18 03:14	2024-10-8	Show	GitHub Exploit DB Packet Storm

310945	9.8	CRITICAL Network	oretnom23	online_veterinary_appointment_system	A vulnerability classified as critical has been found in SourceCodester Online Veterinary Appointment System 1.0. Affected is an unknown function of the file /admin/categories/manage_category.php. Th…	CWE-89 SQL Injection	CVE-2024-9818	2024-10-18 03:13	2024-10-11	Show	GitHub Exploit DB Packet Storm

310946	8.8	HIGH Network	blood_bank_system_project	blood_bank_system	A vulnerability was found in code-projects Blood Bank System 1.0. It has been classified as critical. This affects an unknown part of the file /update.php. The manipulation of the argument name leads…	CWE-89 SQL Injection	CVE-2024-9817	2024-10-18 03:12	2024-10-11	Show	GitHub Exploit DB Packet Storm

310947	9.8	CRITICAL Network	taismartfactory	qplant_sf	SQL injection vulnerability in TAI Smart Factory's QPLANT SF version 1.0. Exploitation of this vulnerability could allow a remote attacker to retrieve all database information by sending a specially …	CWE-89 SQL Injection	CVE-2024-9925	2024-10-18 03:09	2024-10-15	Show	GitHub Exploit DB Packet Storm

310948	8.2	HIGH Network	cacti	cacti	Cacti is an open source performance and fault management framework. The `title` parameter is not properly sanitized when saving external links in links.php . Morever, the said title parameter is stor…	CWE-79 Cross-site Scripting	CVE-2024-43364	2024-10-18 03:09	2024-10-8	Show	GitHub Exploit DB Packet Storm

310949	8.8	HIGH Network	formosasoft	ee-class	The ee-class from FormosaSoft does not properly validate a specific page parameter, allowing remote attackers with regular privileges to upload a malicious PHP file first and then exploit this vulner…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2024-9981	2024-10-18 03:05	2024-10-15	Show	GitHub Exploit DB Packet Storm

310950	8.8	HIGH Network	formosasoft	ee-class	The ee-class from FormosaSoft does not properly validate a specific page parameter, allowing remote attackers with regular privileges to inject arbitrary SQL commands to read, modify and delete datab…	CWE-89 SQL Injection	CVE-2024-9980	2024-10-18 03:03	2024-10-15	Show	GitHub Exploit DB Packet Storm