Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
253451	3.5	注意	LightNEasy	-	LightNEasy の LightNEasy.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-3978	2011-10-11 10:15	2011-10-4	Show	GitHub Exploit DB Packet Storm

253452	7.2	危険	NoMachine	-	NoMachine NX Node および NX Server の nxconfigure.sh における任意のファイルを読まれる脆弱性	CWE-noinfo 情報不足	CVE-2011-3977	2011-10-11 10:13	2011-08-5	Show	GitHub Exploit DB Packet Storm

253453	5	警告	IceWarp, Inc.	-	IceWarp Mail Server の IceWarp WebMail における設定情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2011-3580	2011-10-11 10:11	2011-09-30	Show	GitHub Exploit DB Packet Storm

253454	6.4	警告	IceWarp, Inc.	-	IceWarp Mail Server の server/webmail.php における任意のファイルを読まれる脆弱性	CWE-399 リソース管理の問題	CVE-2011-3579	2011-10-11 10:10	2011-09-30	Show	GitHub Exploit DB Packet Storm

253455	7.5	危険	シマンテック	-	Symantec IM Manager の管理コンソールにおける任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2011-0554	2011-10-11 10:10	2011-09-29	Show	GitHub Exploit DB Packet Storm

253456	7.5	危険	シマンテック	-	Symantec IM Manager の管理コンソールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-0553	2011-10-11 10:09	2011-09-29	Show	GitHub Exploit DB Packet Storm

253457	4.3	警告	シマンテック	-	Symantec IM Manager の管理コンソールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-0552	2011-10-11 10:09	2011-09-29	Show	GitHub Exploit DB Packet Storm

253458	4	警告	株式会社アークウェブ	-	A-Form におけるアクセス制限不備の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-2676	2011-10-7 12:04	2011-10-7	Show	GitHub Exploit DB Packet Storm

253459	5	警告	utage.org	-	宴会くんにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-2675	2011-10-7 12:03	2011-10-7	Show	GitHub Exploit DB Packet Storm

253460	2.6	注意	HTC Corporation	-	複数の Android 用 HTC 製品における電話番号およびその他の重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2011-3975	2011-10-7 11:46	2011-10-3	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
311191	5.4	MEDIUM Network	rebelcode	rss_aggregator	The RSS Aggregator – RSS Import, News Feeds, Feed to Post, and Autoblogging plugin for WordPress is vulnerable to unauthorized use of functionality due to a missing capability check on the wprss_ajax…	CWE-862 Missing Authorization	CVE-2024-9583	2024-10-26 01:28	2024-10-23	Show	GitHub Exploit DB Packet Storm

311192	3.1	LOW Network	umbraco	umbraco_cms	Umbraco, a free and open source .NET content management system, has an insufficient session expiration issue in versions on the 13.x branch prior to 13.5.2, 10.x prior to 10.8.7, and 8.x prior to 8.1…	CWE-613 Insufficient Session Expiration	CVE-2024-48926	2024-10-26 01:19	2024-10-23	Show	GitHub Exploit DB Packet Storm

311193	4.6	MEDIUM Network	umbraco	umbraco_cms	Umbraco, a free and open source .NET content management system, has a remote code execution issue in versions on the 13.x branch prior to 13.5.2, 10.x prior to 10.8.7, and 8.x prior to 8.18.15. There…	CWE-79 Cross-site Scripting	CVE-2024-48927	2024-10-26 01:15	2024-10-23	Show	GitHub Exploit DB Packet Storm

311194	-		-	-	Cross Site Scripting vulnerability in JavaScript Library jquery-ui v.1.13.1 allows a remote attacker to obtain sensitive information and execute arbitrary code via a crafted payload to the window.add…	-	CVE-2024-30875	2024-10-26 01:15	2024-10-18	Show	GitHub Exploit DB Packet Storm

311195	4.2	MEDIUM Network	umbraco	umbraco_cms	Umbraco is a free and open source .NET content management system. In versions on the 13.x branch prior to 13.5.2 and versions on the 10.x branch prior to 10.8.7, during an explicit sign-out, the serv…	CWE-384 Session Fixation	CVE-2024-48929	2024-10-26 01:12	2024-10-23	Show	GitHub Exploit DB Packet Storm

311196	9.8	CRITICAL Network	ibm	concert	IBM Concert 1.0.0 and 1.0.1 vulnerable to attacks that rely on the use of cookies without the SameSite attribute.	CWE-295 Improper Certificate Validation	CVE-2024-43177	2024-10-26 01:05	2024-10-23	Show	GitHub Exploit DB Packet Storm

311197	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: fix use-after-free during gpu recovery [Why] [ 754.862560] refcount_t: underflow; use-after-free. [ 754.862…	CWE-416 Use After Free	CVE-2022-48990	2024-10-26 01:03	2024-10-22	Show	GitHub Exploit DB Packet Storm

311198	4.7	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: fscache: Fix oops due to race with cookie_lru and use_cookie If a cookie expires from the LRU and the LRU_DISCARD flag is set, bu…	CWE-362 Race Condition	CVE-2022-48989	2024-10-26 01:02	2024-10-22	Show	GitHub Exploit DB Packet Storm

311199	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: io_uring: Fix a null-ptr-deref in io_tctx_exit_cb() Syzkaller reports a NULL deref bug as follows: BUG: KASAN: null-ptr-deref i…	CWE-476 NULL Pointer Dereference	CVE-2022-48983	2024-10-26 00:58	2024-10-22	Show	GitHub Exploit DB Packet Storm

311200	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: add list empty check to avoid null pointer issue Add list empty check to avoid null pointer issues in some corner cas…	CWE-476 NULL Pointer Dereference	CVE-2024-49904	2024-10-26 00:54	2024-10-22	Show	GitHub Exploit DB Packet Storm