Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":April 30, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252751 9.3 危険 アドビシステムズ
レッドハット		 - Adobe Reader および Acrobat の CoolType.dll における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2010-2862 2010-08-31 16:41 2010-08-5 Show GitHub Exploit DB Packet Storm
252752 5 警告 無料素材屋 Moo - moobbs2 におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2365 2010-08-31 11:02 2010-08-31 Show GitHub Exploit DB Packet Storm
252753 5 警告 無料素材屋 Moo - moobbs におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2364 2010-08-31 11:01 2010-08-31 Show GitHub Exploit DB Packet Storm
252754 5.1 警告 GNU Project
レッドハット		 - GnuPG の kbx/keybox-blob.c における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2010-2547 2010-08-30 19:01 2010-07-23 Show GitHub Exploit DB Packet Storm
252755 - - Invensys - Wonderware Archestra ConfigurationAccessComponent ActiveX コントロールにおけるバッファオーバーフローの脆弱性 - - 2010-08-30 19:01 2010-08-5 Show GitHub Exploit DB Packet Storm
252756 7.8 危険 シスコシステムズ - 複数の Cisco 製品の IKE におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2010-2817 2010-08-27 16:04 2010-08-4 Show GitHub Exploit DB Packet Storm
252757 7.8 危険 シスコシステムズ - Cisco Adaptive Security Appliances の SIP 検査機能におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2010-2816 2010-08-27 16:04 2010-08-4 Show GitHub Exploit DB Packet Storm
252758 7.8 危険 シスコシステムズ - 複数の Cisco 製品の Transport Layer Security におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2010-2815 2010-08-27 16:03 2010-08-4 Show GitHub Exploit DB Packet Storm
252759 7.8 危険 シスコシステムズ - 複数の Cisco 製品の Transport Layer Security におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2010-2814 2010-08-27 16:03 2010-08-4 Show GitHub Exploit DB Packet Storm
252760 7.8 危険 シスコシステムズ - 複数の Cisco 製品の Transport Layer Security におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2010-1581 2010-08-27 16:03 2010-08-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 30, 2026, 4:58 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
308381 9.9 CRITICAL
Network 		- - The WP Easy Gallery – WordPress Gallery Plugin plugin for WordPress is vulnerable to SQL Injection via the 'edit_imageId' and 'edit_imageDelete' parameters in all versions up to, and including, 4.8.5… CWE-89
SQL Injection 		CVE-2024-8436 2024-09-26 22:32 2024-09-25 Show GitHub Exploit DB Packet Storm
308382 6.4 MEDIUM
Network 		- - The Radio Player – Live Shoutcast, Icecast and Any Audio Stream Player for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'align' attribute within the 'wp:radio-p… CWE-79
Cross-site Scripting 		CVE-2024-8267 2024-09-26 22:32 2024-09-25 Show GitHub Exploit DB Packet Storm
308383 - - - Rocket.Chat 6.12.0, 6.11.2, 6.10.5, 6.9.6, 6.8.6, 6.7.8, and before is vulnerable to a message forgery / impersonation issue. Attackers can abuse the UpdateOTRAck method to send ephemeral messages as… - CVE-2024-46936 2024-09-26 22:32 2024-09-25 Show GitHub Exploit DB Packet Storm
308384 - - - IceCMS v3.4.7 and before was discovered to contain a hardcoded JWT key, allowing an attacker to forge JWT authentication information. - CVE-2024-46612 2024-09-26 22:32 2024-09-25 Show GitHub Exploit DB Packet Storm
308385 - - - Incorrect access control in IceCMS v3.4.7 and before allows attackers to authenticate by entering any arbitrary values as the username and password via the loginAdmin method in the UserController.jav… - CVE-2024-46607 2024-09-26 22:32 2024-09-25 Show GitHub Exploit DB Packet Storm
308386 - - - Cursor is an artificial intelligence code editor. Prior to version 0.41.0, if a user on macOS has granted Cursor access to the camera or microphone, any program that is run on the machine is able to … CWE-277
 Insecure Inherited Permissions 		CVE-2024-45599 2024-09-26 22:32 2024-09-25 Show GitHub Exploit DB Packet Storm
308387 - - - An Incorrect Access Control vulnerability was found in /music/ajax.php?action=delete_playlist in Kashipara Music Management System v1.0. This vulnerability allows an unauthenticated attacker to delet… - CVE-2024-42797 2024-09-26 22:32 2024-09-25 Show GitHub Exploit DB Packet Storm
308388 - - - Command injection vulnerabilities in the underlying CLI service could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI (Aruba's Access Point man… - CVE-2024-42507 2024-09-26 22:32 2024-09-25 Show GitHub Exploit DB Packet Storm
308389 - - - Command injection vulnerabilities in the underlying CLI service could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI (Aruba's Access Point man… - CVE-2024-42506 2024-09-26 22:32 2024-09-25 Show GitHub Exploit DB Packet Storm
308390 - - - Command injection vulnerabilities in the underlying CLI service could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI (Aruba's Access Point man… - CVE-2024-42505 2024-09-26 22:32 2024-09-25 Show GitHub Exploit DB Packet Storm