Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":April 29, 2026, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252871	4.3	警告	サイバートラスト株式会社 Mozilla Foundation レッドハット	-	Mozilla Firefox/SeaMonkey におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-0162	2010-03-9 11:02	2010-02-17	Show	GitHub Exploit DB Packet Storm

252872	5	警告	サイバートラスト株式会社 Mozilla Foundation レッドハット	-	Mozilla Firefox/SeaMonkey におけるクロスサイトスクリプティングの脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-3988	2010-03-9 11:01	2010-02-17	Show	GitHub Exploit DB Packet Storm

252873	10	危険	サイバートラスト株式会社 Mozilla Foundation レッドハット	-	Mozilla Firefox/SeaMonkey の Web ワーカー機能における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2010-0160	2010-03-9 11:01	2010-02-17	Show	GitHub Exploit DB Packet Storm

252874	2.1	注意	サイバートラスト株式会社 GNOME Project レッドハット	-	NetworkManager の nm-connection-editor における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2009-4145	2010-03-8 12:28	2009-12-23	Show	GitHub Exploit DB Packet Storm

252875	6.8	警告	サイバートラスト株式会社 GNOME Project レッドハット	-	NetworkManager における重要な情報を取得される脆弱性	CWE-310 暗号の問題	CVE-2009-4144	2010-03-8 12:28	2009-12-23	Show	GitHub Exploit DB Packet Storm

252876	5	警告	Squid-cache.org	-	Squid の htcpHandleTstRequest 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-0639	2010-03-8 12:28	2010-02-12	Show	GitHub Exploit DB Packet Storm

252877	9.3	危険	OpenOffice.org Project レッドハット	-	OpenOffice.org の filter/ww8/ww8par2.cxx におけるサービス運用妨害 (DoS) の脆弱性	CWE-94 コード・インジェクション	CVE-2009-3302	2010-03-5 10:33	2010-02-12	Show	GitHub Exploit DB Packet Storm

252878	9.3	危険	OpenOffice.org Project レッドハット	-	OpenOffice.org の filter/ww8/ww8par2.cxx における整数アンダーフローの脆弱性	CWE-189 数値処理の問題	CVE-2009-3301	2010-03-5 10:33	2010-02-12	Show	GitHub Exploit DB Packet Storm

252879	9.3	危険	OpenOffice.org Project レッドハット	-	OpenOffice.org の GIFLZWDecompressor::GIFLZWDecompressor 関数におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-2950	2010-03-5 10:32	2010-02-12	Show	GitHub Exploit DB Packet Storm

252880	9.3	危険	OpenOffice.org Project レッドハット	-	OpenOffice.org の XPMReader::ReadXPM 関数における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2009-2949	2010-03-5 10:32	2010-02-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 29, 2026, 4:51 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
308851	5.3	MEDIUM Network	mezz	justenoughitems	JustEnoughItems (JEI) 19.5.0.33 and before contains an Improper Validation of Specified Index, Position, or Offset in Input vulnerability. The specific issue is a failure to validate slot index in JE…	CWE-129 Improper Validation of Array Index	CVE-2024-41565	2024-09-20 01:19	2024-08-29	Show	GitHub Exploit DB Packet Storm

308852	7.3	HIGH Local	openpolicyagent	open_policy_agent	A SMB force-authentication vulnerability exists in all versions of OPA for Windows prior to v0.68.0. The vulnerability exists because of improper input validation, allowing a user to pass an arbitrar…	CWE-294 Authentication Bypass by Capture-replay	CVE-2024-8260	2024-09-20 01:08	2024-08-30	Show	GitHub Exploit DB Packet Storm

308853	4.6	MEDIUM Physics	ibm	maas360_mdm	IBM MaaS360 for Android 6.31 through 8.60 is using hard coded credentials that can be obtained by a user with physical access to the device.	CWE-798 Use of Hard-coded Credentials	CVE-2024-35118	2024-09-20 00:53	2024-08-30	Show	GitHub Exploit DB Packet Storm

308854	8.1	HIGH Network	zohocorp	manageengine_exchange_reporter_plus	Zohocorp ManageEngine Exchange Reporter Plus versions before 5715 are vulnerable to SQL Injection in the reports module.	CWE-89 SQL Injection	CVE-2024-6204	2024-09-20 00:41	2024-08-31	Show	GitHub Exploit DB Packet Storm

308855	8.1	HIGH Network	master-nan	sweet-cms	A vulnerability was found in master-nan Sweet-CMS up to 5f441e022b8876f07cde709c77b5be6d2f262e3f. It has been rated as problematic. This issue affects the function LogHandler of the file middleware/l…	CWE-117 Improper Output Neutralization for Logs	CVE-2024-8334	2024-09-20 00:39	2024-08-30	Show	GitHub Exploit DB Packet Storm

308856	9.8	CRITICAL Network	openrapid	rapidcms	A vulnerability classified as critical has been found in OpenRapid RapidCMS up to 1.3.1. Affected is an unknown function of the file /resource/runlogon.php. The manipulation of the argument username …	CWE-89 SQL Injection	CVE-2024-8335	2024-09-20 00:31	2024-08-30	Show	GitHub Exploit DB Packet Storm

308857	8.1	HIGH Network	eclipse	eclipse_dataspace_components	In Eclipse Dataspace Components, from version 0.5.0 and before version 0.9.0, the ConsumerPullTransferTokenValidationApiController does not check for token validity (expiry, not-before, issuance date…	CWE-287 Improper Authentication	CVE-2024-8642	2024-09-20 00:18	2024-09-11	Show	GitHub Exploit DB Packet Storm

308858	7.5	HIGH Network	hoverfly	hoverfly	Hoverfly is a lightweight service virtualization/ API simulation / API mocking tool for developers and testers. The `/api/v2/simulation` POST handler allows users to create new simulation views from …	CWE-22 Path Traversal	CVE-2024-45388	2024-09-20 00:18	2024-09-3	Show	GitHub Exploit DB Packet Storm

308859	4.6	MEDIUM Physics	idec	kit-fc6a-24-kc_firmware kit-fc6a-24-pc_firmware kit-fc6a-24-ra_firmware kit-fc6a-24-ra-hg1g_firmware kit-fc6a-24-ra-hg2g-5tn_firmware kit-fc6a-24-ra-hg2g-5tt_firmware kit-fc6a-24-rc…	Cleartext transmission of sensitive information vulnerability exists in multiple IDEC PLCs. If an attacker sends a specific command to PLC's serial communication port, user credentials may be obtaine…	CWE-319 Cleartext Transmission of Sensitive Information	CVE-2024-41927	2024-09-20 00:10	2024-09-4	Show	GitHub Exploit DB Packet Storm

308860	7.8	HIGH Local	adobe	acrobat acrobat_dc acrobat_reader acrobat_reader_dc	Acrobat Reader versions 24.002.21005, 24.001.30159, 20.005.30655, 24.003.20054 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context …	CWE-416 Use After Free	CVE-2024-41869	2024-09-20 00:09	2024-09-13	Show	GitHub Exploit DB Packet Storm