Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
253481 5.8 警告 オラクル - Oracle Database Server および Oracle Enterprise Manager Grid Control における脆弱性 CWE-noinfo
情報不足
CVE-2012-0528 2012-05-9 14:11 2012-04-17 Show GitHub Exploit DB Packet Storm
253482 6.4 警告 オラクル - Oracle Database Server の OCI における脆弱性 CWE-noinfo
情報不足
CVE-2012-0511 2012-05-9 13:56 2012-04-17 Show GitHub Exploit DB Packet Storm
253483 6.4 警告 オラクル - Oracle Database Server の Core RDBMS における脆弱性 CWE-noinfo
情報不足
CVE-2012-0510 2012-05-9 13:56 2012-04-17 Show GitHub Exploit DB Packet Storm
253484 7.1 危険 オラクル - Windows 上で稼働する Oracle Database Server の Core RDBMS における脆弱性 CWE-noinfo
情報不足
CVE-2012-0519 2012-05-9 13:55 2012-04-17 Show GitHub Exploit DB Packet Storm
253485 4 警告 オラクル - Oracle MySQL の MySQL Server における Server Optimizer の処理に関する脆弱性 CWE-noinfo
情報不足
CVE-2012-1690 2012-05-9 11:46 2012-04-17 Show GitHub Exploit DB Packet Storm
253486 4 警告 オラクル - Oracle MySQL の MySQL Server における Server Optimizer の処理に関する脆弱性 CWE-noinfo
情報不足
CVE-2012-1696 2012-05-9 11:45 2012-04-17 Show GitHub Exploit DB Packet Storm
253487 4 警告 オラクル - Oracle MySQL の MySQL Server におけるパーティションの処理に関する脆弱性 CWE-noinfo
情報不足
CVE-2012-1697 2012-05-9 11:42 2012-04-17 Show GitHub Exploit DB Packet Storm
253488 4 警告 オラクル - Oracle MySQL の MySQL Server における MyISAM の処理に関する脆弱性 CWE-noinfo
情報不足
CVE-2012-0583 2012-05-9 11:37 2012-04-17 Show GitHub Exploit DB Packet Storm
253489 4.3 警告 アップル - Apple iOS の Safari におけるロケーションバーの URL を偽造される脆弱性 CWE-20
不適切な入力確認
CVE-2012-0674 2012-05-9 11:16 2012-05-8 Show GitHub Exploit DB Packet Storm
253490 9 危険 VMware - 複数の VMware 製品におけるサービス運用妨害 (DoS) の脆弱性 CWE-DesignError
CVE-2012-2450 2012-05-8 16:40 2012-05-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
318151 9.8 CRITICAL
Network
dfactory responsive_lightbox Missing Authorization vulnerability in dFactory Responsive Lightbox allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Responsive Lightbox: from n/a through 2.4.7. CWE-862
 Missing Authorization
CVE-2024-43924 2024-11-7 02:03 2024-10-23 Show GitHub Exploit DB Packet Storm
318152 6.5 MEDIUM
Network
sonatype nexus Use of Hard-coded Credentials vulnerability in Sonatype Nexus Repository has been discovered in the code responsible for encrypting any secrets stored in the Nexus Repository configuration database (… CWE-798
 Use of Hard-coded Credentials
CVE-2024-5764 2024-11-7 01:41 2024-10-24 Show GitHub Exploit DB Packet Storm
318153 7.2 HIGH
Network
wuzhicms wuzhicms A vulnerability was found in wuzhicms 4.1.0. It has been classified as critical. Affected is the function add/edit of the file www/coreframe/app/content/admin/block.php. The manipulation leads to cod… CWE-94
Code Injection
CVE-2024-10505 2024-11-7 01:38 2024-10-30 Show GitHub Exploit DB Packet Storm
318154 - - - Generation of weak and predictable Initialization Vector (IV) in PMFW (Power Management Firmware) may allow an attacker with privileges to reuse IV values to reverse-engineer debug data, potentially … - CVE-2023-31305 2024-11-7 01:35 2024-08-14 Show GitHub Exploit DB Packet Storm
318155 9.8 CRITICAL
Network
esafenet cdg A vulnerability classified as critical has been found in ESAFENET CDG 5. This affects the function delPolicyAction of the file /com/esafenet/servlet/system/PolicyActionService.java. The manipulation … CWE-89
SQL Injection
CVE-2024-10597 2024-11-7 01:28 2024-11-1 Show GitHub Exploit DB Packet Storm
318156 5.3 MEDIUM
Network
choplugins order_notification_for_telegram The Order Notification for Telegram plugin for WordPress is vulnerable to unauthorized test message sending due to a missing capability check on the 'nktgnfw_send_test_message' function in versions u… CWE-862
 Missing Authorization
CVE-2024-9686 2024-11-7 01:19 2024-10-25 Show GitHub Exploit DB Packet Storm
318157 3.6 LOW
Local
chidiwilliams buzz A vulnerability classified as problematic was found in chidiwilliams buzz 1.1.0. This vulnerability affects the function download_model of the file buzz/model_loader.py. The manipulation leads to ins… CWE-377
 Insecure Temporary File
CVE-2024-10372 2024-11-7 01:14 2024-10-25 Show GitHub Exploit DB Packet Storm
318158 5.4 MEDIUM
Network
sohelwpexpert awesome_buttons The Awesome buttons plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's btn2 shortcode in all versions up to, and including, 1.0 due to insufficient input sanitization … CWE-79
Cross-site Scripting
CVE-2024-10148 2024-11-7 01:02 2024-10-25 Show GitHub Exploit DB Packet Storm
318159 7.5 HIGH
Network
63moons aero
wave_2.0
This vulnerability exists in Aero due to improper implementation of OTP validation mechanism in certain API endpoints. An authenticated remote attacker could exploit this vulnerability by interceptin… NVD-CWE-Other
CVE-2024-51561 2024-11-7 00:59 2024-11-4 Show GitHub Exploit DB Packet Storm
318160 6.1 MEDIUM
Network
bna pospratik Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in Bna Informatics PosPratik allows XSS Through HTTP Query Strings.This issue affects PosPratik: before v3.… CWE-79
Cross-site Scripting
CVE-2024-9147 2024-11-7 00:53 2024-11-4 Show GitHub Exploit DB Packet Storm